Cybersecurity Engineer

Date Posted: Jun 06, 2024

  • Job Structure On-site
  • Job Location Nashville, TN

Job Description

Overview

Are you passionate about safeguarding digital landscapes from evolving threats? Do you thrive on the exhilarating challenge of outsmarting cyber adversaries? If you're a tenacious problem-solver with a knack for navigating the complex realm of cybersecurity, we have an electrifying opportunity for you! Join our dynamic team as a Cybersecurity Engineer and embark on a journey to fortify our digital fortresses against emerging risks while shaping the future of secure technology.

Here's some of what you will be doing:

  • Planning, implementing, monitoring, and upgrading security measures for the protection of the organizations data, systems, and networks.
  • Monitor vulnerabilities and remediate issues for all devices and systems on the EMF security network.
  • Responsible for preparing and documenting standard operating procedures and protocols.
  • Oversee incident management implementation and process.
  • Seek to identify incidents that are missed or inaccurate, submit finding and suggestions to integrations and automations.
  • Ensure incidents are addressed within the established SLA’s.
  • Develop effective strategies for incident remediation and technology to orchestrate and automate responses.
  • Provide detailed technical analysis of high severity incidents identified (through SIEM, Office365, Cortex Data Lake, or other channels) to determine impact.
  • Evaluate attack techniques and identify methods to reduce opportunities of successful attacks.
  • Monitor and maintain current knowledge of technologies and methodologies current to industry security trends and advances, and present recommendations as necessary through continued education and certifications.
  • Conduct investigative analysis on investigations related to Human Resources, Incident Response, Special Investigations, and others as needed.
  • Review incident detection tools such as web application firewall (WAF), file activity monitoring (FAM), intrusion detection systems/ intrusion prevention systems (IDS/IPS), database activity monitoring (DAM), security information and event management (SIEM), end point anti-virus (AV), data loss prevention (DLP) to determine where improvement can be made to reduce time to detect.
  • Create and drive remediate ServiceNow incident tickets and participate in the change management process.
  • Ensure that the ministry’s sensitive information and IT equipment are kept safe and confidential by implementing the correct security measures.
  • Provide input into development of technical solutions and new security tools to help mitigate security vulnerabilities and automate repeatable tasks.
  • Apply Security Awareness training programs and administer simulated phishing platform.
  • Administer and support enterprise security controls.
  • Daily administrative tasks, reporting, and communication with the relevant departments in the organization.
  • Partner with team members and other departments to troubleshoot and resolve issues.
  • Maintain inventory of all security applications and hardware in an organized manner, ensure inventory lists are kept current for accuracy.
  • Perform other tasks and duties as assigned.

Here's some experience we are seeking:

  • Bachelor’s degree in computer sciences, information systems, or equivalent experience.
  • Security+ certification. preferred.
  • Certifications in Information Security an added plus, CEH, PenTest+, GPEN, OSCP or equivalent.
  • 1-2 year of Information Security systems experience.
  • Solid ability to manage and report on multiple projects / system deployments concurrently, prioritizing efforts, managing time effectively, and requiring minimal supervision in the execution.
  • Good understanding of current threat landscapes and continued efforts to understand how to defend against emerging threats.
  • Demonstrate problem solving, analytical and investigative skills combined with the ability to develop creative solutions and navigate through ambiguity in a dynamic, agile environment.
  • Familiarity with leading industry vulnerability and software (preferably Qualys) and standard disaster recovery policies and procedures.
  • Familiarity with Information Security standards such as NIST, ISO, and CIS.
  • Familiarity with infrastructure architecture, virtualization, and cloud technology.
  • Familiarity with Microsoft Server, Linux, Apple, and Active Directory architecture.
  • Willingness to work in a team-oriented environment and possess excellent communication skills.

Apply Now

"*" indicates required fields

Accepted file types: pdf, doc, docx, Max. file size: 10 MB.
This field is for validation purposes and should be left unchanged.