This site uses cookies. To find out more, see our Cookies Policy

Information Security Engineer in Charlotte, NC at MDI Group

Date Posted: 1/12/2019

Job Snapshot

Job Description


Information Security Engineer
Charlotte, NC
Contract to Hire

Summary:
This role reports to the Information Security Manager and serves as lead Cyber Security Engineer on multiple concurrent projects. Responsible for performing and documenting security assessments, ensuring that confidentiality, integrity, and availability requirements of information systems and assets are identified and managed appropriately. Typical responsibilities include coordinating corrective action for vulnerabilities, customer expectation management, and guiding assessment strategy. This role is also expected to develop new and improve existing security assessment offerings. Will work as part of DevSecOps team to ensure security policies are being followed in cloud environments. Will create analytic reporting for risk in the environment by analyzing log and threat data. Must have a high level of technical acumen to support the ISS environment.

What you will be doing:

  • Provides technical engineering level support in the areas of vulnerability assessment, risk assessment, network security, product evaluation, penetration testing and security implementation.
  • Must be able to use a Security Event and Incident Management tool for investigative reporting and analytics 
  • Work with DevSecOps team to ensure secure practices and minimum-security baseline configurations are being implemented in cloud environments
  • Develop strategies to respond to and recover from a security breach
  • Develop or implement open-source/third-party tools to assist in detection, prevention and analysis of security threats
  • Conduct penetration testing, simulating an attack on the system to find exploitable weaknesses
  • Monitor networks and systems for security breaches, with software that detects intrusions and anomalous system behavior
  • Investigate security breaches
  • Lead incident response, including steps to minimize the impact and then conducting a technical and forensic investigation
  • Must also be able to write technical reports

Must Have:

  • 2 to 5 years of l Cyber Security engineering experience
  • Experience must include familiarity with applicable NIST information security documentation
  • At least 1 year of this functional experience must have included securing and evaluating information management systems, security design

3 or more years of working experience in the following:

  • Hands-on experience identifying, exploiting, and remediating Network and Application based attacks
  • Network auditing and monitoring, including SIEM experience
  • Active Directory
  • Cloud security (AWS/Azure)
  • Experience recommending, communicating and tracking remediation of IT Threats

A GREAT PLACE FOR GREAT PEOPLE TO WORK

Search IT Jobs