An International insurance specialty firm is looking for a Mid-level Information Security Engineer for a full time hire. In this role you will play a critical role in safeguarding the organization’s digital assets and ensuring the confidentiality, integrity, and availability of our systems. You’ll collaborate with cross-functional teams to design, implement, and maintain robust security solutions.
- Essential Functions: Develop and implement security controls, policies, and procedures to protect our networks, systems, and data.
- Apply zero trust principles to network architecture, ensuring secure access and minimizing attack surfaces.
- Leverage your knowledge of cloud services and best practices to secure cloud-based applications and infrastructure.
- Collaborate with the network team to ensure secure configuration and management of firewalls and security groups to prevent unauthorized access and monitor traffic.
- Engage in regular security assessments, vulnerability scans, and penetration tests.
- Design and document best-practice security procedures, standards, and guidelines for other teams or business units.
- When needed, analyze traffic, investigate alerts, set policy and work with other teams to investigate and mitigate security events.
- Work with managed services partner to continue to expand log ingestion, build additional alarms, and maintain infrastructure reliability and stability.
- Identify new cybersecurity risks and work with the team to develop mitigation plans.
- Assist in identifying and managing privileged access across the enterprise
- Assess and provide gap analysis of existing tools and controls to determine areas of increased risk and action those items through remediation.
- Participate and assist team through Tabletop exercises, documenting gaps and maintaining until resolution.
- Partner with other departments and business units to implement security solutions including project & change management.
- Advocate security awareness and teach secure behavior and methods.
- Perform technical risk assessments, triage security testing results and manage security response actions.
- Work closely with IT on the development of security metrics, assisting in compliance audits, and continuous security improvements.
- Assist in compliance activities such as external audits from customers, regulatory compliance projects, and overall information security reviews.
- Education/Experience/Skills: Bachelor's degree in Computer Science/Engineering/Information Security or equivalent experience.
- Minimum 2 years information security engineering experience.
- CISSP or comparable Information Security certification.
- Proficiency in zero trust networking principles.
- Understanding of cloud services and security features.
- Firewall management background, including overseeing the policy management, VPN controls, and traffic analysis processes.
- Self-motivated and capable of managing tasks independently.
- Strong written and oral communication skills.
- Experience working in a team-oriented, collaborative environment.
Are you looking for remote jobs near your area? At Yulys, thousands of employers are looking for exceptional talent like yours. Find a perfect job now.