Cyber Security Engineer

Job Title: Cyber Security Engineer

Duration: 06-12 Months

Shift: Monday through Friday, with one hour for lunch

Location: Phoenix AZ (beginning of Week 3 to a hybrid 3+2 schedule (3 days in the office, 2 days teleworking – telework schedule subject to change.)

Job Description:

The candidate must have 4 or more of the following qualifications and be able to speak on their related work experience:

• Vulnerability remediation experience in a Microsoft Windows environment.
• Experience and/or knowledge with hardening Windows operating systems.
• Experience and/or knowledge of how to monitor and operate Intrusion Prevention Systems
• (IPS) to identify, defend, comprehend, and counter malicious threats and intrusion attempts.
• Knowledge of PCI Data Security Standards.
• Understanding of networks and system security principles for risk identification and analysis.
• Knowledge of standards and best practices related to information security and data
• confidentiality.

ESSENTIAL FUNCTIONS:

• Assist with monitoring the department’s Cisco Firepower Threat Defense IPS.
• Assist with information security and PCI compliance for the Department.
• Assist with the development of standards, policies, and procedures related to information security.
• Routinely review network and security system logs to identify anomalies and/or potential threats and respond accordingly.
• Work closely with the Network Team to review and audit firewall rules.
• Assist technology SMEs with information security incident response procedures.
• Maintain secure configuration guides and documentation and conduct routine audits to validate compliance.
• Perform risk analysis and compliance testing.
• Provide system hardening recommendations and assist technical staff with testing and strategic planning.
• Assist with vulnerability assessments and remediation.
• Work closely with vendors and contractors providing oversight to ensure technical systems and services comply with established security standards and specifications.
• Review project scopes for conformance regarding established administrative, technical, and operating standards.
• Development of policies, standards, and standard operating procedures related to cybersecurity best practices, operational procedures, audits, and compliance.

ACCEPTABLE EXPERIENCE AND TRAINING:

• BA or BS in Computer Science, Information Security, or related field. Three+ years progressive experience in the field of information security working with Cisco IPS solutions. A combination of experience and technical certifications may be considered as a substitute for the educational requirements. Current CISSP, GIAC, CEH, and other security certifications and experience managing PCI compliant environments are desirable

The Company is an Equal Opportunity Employer and is committed to creating an equitable and inclusive environment for all.