The Systems Security Engineer – Night Shift will support the office of the Chief Security Officer (CSO) to provide the highest quality of information security and data protection solutions to the Firm. The Systems Security Engineer helps develop and implement data access security safeguards and protective measures to ensure client data protection. This position reports directly to the Security Operations Manager. An ideal candidate will have a strong background in information and network security, automation, scripting and incident response. Strong communication skills, ability to work in a team environment, and a collaborative mindset are required.

Work Schedule

Monday-Friday from 7:00 PM-3:30 AM (Pacific Time).

Responsibilities:

• Assists the information security team in monitoring networked systems including local area network, wide area network, firewall, endpoint detection & response, security incident event management system, behavioral analytics system, email gateway, and data loss prevention system
• Investigates suspicious or anomalous activity within premise, cloud environments and SaaS technologies. Reports findings to Security Operations Manager for direction or resolution
• Monitors and audits the information system security tools to isolate and identify suspicious or unauthorized access; prepares reports and/or memoranda recommending corrective action.
• Investigates security-related events to ensure the confidentiality, integrity, and availability of information systems.
• Performs analysis of data-security systems to ensure management is informed of system utilization patterns .
• Audits, tests, and assesses locally developed software fixes and vendor-supplied patches to improve system performance and efficiency.
• Scripts basic automation in Python or PowerShell.
• Creates static and correlation rules in security information event management system
• Conduct risk assessments and vulnerability scanning to identify potential weaknesses in the firm's systems, networks, and applications .
• Stay up to date with the latest threats, trends, and technologies, and provide recommendations to improve the company's security stance.
• Assist in the development and maintenance of incident response plans and business continuity strategy .
• Collaborate with IT staff to integrate security measures into the existing infrastructure and systems.

Essential Functions of Job:

• Configure, respond to, and create essential security alerts in multiple platforms.
• Communicate with information security and other stakeholders regarding risk, information security threats, and system configurations.
• Design, implement, and manage security hardware and software systems to protect systems, networks, and data.
• Prepare and maintain detailed documentation regarding the firm’s security processes and procedures.

Qualifications and Experience Required Qualifications:

• Three (3) years of experience in information technology
• Three (3) or more years in a system security engineering or security analyst role.
• Experience analyzing and correlating data loss prevention, security event and audit logs
• Experience in managing security events and performing forensic investigations
• Proven organizational skills with the ability to manage multiple concurrent projects
• Excellent analytical, problem-solving and decision-making skills. Must be creative with application of solutions while remaining within defined compliance frameworks
• Excellent written communication skills. Must have the ability to create clear and concise documentation while maintaining technical accuracy
• Strong self-directed work habits, exhibiting initiative, drive, creativity, maturity, self-assurance and professionalism
• Familiarity with legal and regulatory requirements related to data protection, privacy, and information security (e.g., GDPR, HIPAA, CCPA)
• Excellent teamwork skills

Education

Preferred: Bachelor’s Degree; or equivalent post high school education and/or direct work-related experience preferred

Major (if applicable): Computer Science, Information Technology, Data Science, Information Assurance, Cybersecurity

License and Certification Preferred: Any of the following a plus:

• Security +
• CISSP
• CCSP
• CISA
• CEH
• GCIH
• GSEC

Work Environment

• The work arrangement is hybrid–working in the office up to 3 days per week and working from home in California the rest of the week (subject to change).
• Overtime may be required as the job duties demand.

Travel Requirements Up to 10%.