Job Description

JOB DESCRIPTION Sr. Security Engineer Summary: The Security Engineering team is responsible both for understanding and securing the ACI-developed and hosted applications as well as the direct management and maintenance of all security-related tools and technologies that are leveraged by the organization. The candidate must therefore have both a strong understanding of Information Security as well as a strong general IT/systems background to be able to effectively suggest, implement, and maintain the health of solutions for the organization.As a Sr. Security Engineer, you are expected to have extensive experience in most if not all of the technologies listed and be a sufficient self-starter that is capable of taking high-level directives and driving them through to execution in addition to being a mentor for other engineers and analysts. Responsibilities: Manage the full system lifecycle of enterprise security solutions including: Endpoint Security: Identity Management, Endpoint Protection, Vulnerability Management, and Cryptography systems/platforms, Analytics: Monitoring, logging & SIEM systems Identity Management: Active Directory, LDAP, SailPoint, Kerberos, TACACS/ISE, AAA, Jumpboxes, etc Perform in-depth Proof-of-Concepts and \'bake-offs\' of competing technologies, selecting the right tool via objective scoring criteria Develop in-depth documentation and run-books of security tools and platforms including detailed information on the solution itself as well as wiki-style \'how to\' steps for common processes that can be easily consumed by Operations staff Proactively work with Software Development, Application, and Sales teams to understand our in-house developed solutions and implement an effective strategy to secure them early in the process Reverse engineering, diagramming, and documentation of custom and legacy applications Continuing education of emerging technologies and how to effectively secure them Work with Security Operations team to develop standard procedures for handling routine security events Minimum Requirements: Bachelor\'s degree in Computer Science or Information Security or equivalent experience 5+ years of experience in Information Security Advanced knowledge of Linux and/or Windows Operating Systems Working knowledge of TCP/IP Networking Experience supporting and securing highly complex and custom applications Experience building highly available solutions at enterprise scale Preferred Skills: Scripting (Python preferred) and Automation (Ansible) experience strongly desired DevOps/DevSecOps experience Experience with Endpoint Protection solutions such as Anti-virus/malware, FIM (File Integrity Monitoring), HIDS (Host-based Intrusion Detection Systems), DLP (Data Leak Prevention) Experience with device and system hardening Experience with Identity Management systems Experience with Active Directory, LDAP, Kerberos, Cisco TACACS/ISE, AAA Experience with Containerization technologies Experience with HSM (Hardware Security Modules) #LI-AP

foundit