Security Engineer/ Admin - Generalist, Not operational

Exp - 8-10 yrs

Hybrid - work onsite in NY and NJ 1 Day/week

12 Months contract

Locals/ Willing to relocate candidates

Client wants a security generalist, not operational since another team handles.

1. Handles web traffic rules
2. Web security and system security IT hardening
3. work with IT teams firewalls
4. analyze logs and assess the gaps
5. network security and firewall rules
6. ENGINEERING Team someone with cloud security and email data security
7. Minimun 5-10 years max
8. Team security engineer, existing project and cloud security, analyze reports
9. Team currently 10 people between nj/ny and london NO SECURITY Operations, they have team for this and threat detection team
10. various security projects, network security, must have AUTOMATION SKILLS PYTHON!!!! SIEM, DESIGN And DEPLOYMENT experience, engineering, collaboration with IT teams, action logs
11. DAY to DAY: support and analyze reports, action plans system cloud security, engineering design, cloud security
12. web traffic rules, web security, system security and security firewall and IT hardening

Job Responsibilities:

• Will be part of the team responsible for engineering and implementing various security projects and administration and monitoring of various security systems.

• Collaborate with business units and corporate partners to ensure solutions are built in consistent with the organization's policies, programs, architectural recommendations, and information security standards.

• Build automation in Python or PowerShell to streamline various processes to enrich admin activities and metrics.

• Enforce baseline configuration standards and security hardening on core services such as Active Directory. DNS and DHCP.

• Create and deploy security guardrails to AWS infrastructure as infrastructure as code through Git.

• Help identify and optimizing firewall policy effectiveness.

• Manage simultaneous projects, be part of troubleshooting and reacts to system/network security incidents.

• Understand the common types of cyber-attacks and countermeasures in the industry and engage with the business units to resolve within SLAs.

• Create and maintain technical process documentation (procedures and playbooks) for security systems/processes.

• Develop, build, and implement a mature and robust set of metrics and reports in Splunk/Power BI.

Required Qualifications:

• Knowledge and understanding of security engineering, system and network security, authentication and security protocols, incident management.

• Develop, implement, and manage security standards and operational processes to secure the AWS platform and resources such as EC2, S3, LB, GWs, and other AWS services.

• Experience in both Active Directory, DNS, DHCP, windows and Linux operating system.

• Experience with Security Information and Event Management (SIEM) platforms (Splunk), logical thinking and ability to create searches, dashboards, etc. preferred.

• Ability to communicate network security issues to peers and management.

• Thorough understanding of the latest security principles, techniques, and protocols.

• Strong critical thinking, deductive reasoning, prioritization, and problem-solving skills.

• Experience with analyze/implement best practice configuration standards for systems and network devices.

• Experience with next generation firewalls (Paloalto, Checkpoint) and intrusion detection/prevention systems.

• Ability to manage and lead complex enterprise-wide projects and multi-task.

• Experience with preparing standards/guidelines, playbooks, and procedure documents.

• Experience with managing projects, skills to prioritize project and tasks to meet deadlines.

• Automation experience in Python, PowerShell, and experience with Git for infrastructure as code management using Terraform.

• Knowledge of various Security domains, Compliance requirements and Risk management practices and security industry standards and best practices – NIST, CSA, CIS etc.