Description
The Information Security Engineer will report directly to the Director of Infrastructure and work on the front lines owning threat and vulnerability management, including penetration testing, SIEM (Splunk) analysis, network security and building out and continuously improving our security posture. This may involve testing, log analysis, automation and scripting, or systems administration tasks.
Essential Functions:
- Responsible for threat and vulnerability management across the environment utilizing CrowdStrike, Qualys & Splunk.
- Research, implement and administer security infrastructure as required, including intrusion protection, security-related firewall configurations, endpoint solutions, and SIEM (Splunk), including tuning and custom alerts.
- Responsible for security event handling and security incident response processes, including documenting standard operating procedures and protocols and automating common tasks.
- Implement and document best-practice security procedures, standards, and guidelines.
- Identify security exposures and develop mitigation plans.
- Advocate security awareness and teach secure behavior and methods.
- Perform technical risk assessments, triage security testing results, and manage security response actions.
- Work closely with IT on the development of security metrics, assisting in compliance audits, and continuous security improvements.
- Assist in compliance activities such as external audits from customers, regulatory compliance projects, and overall information security reviews.
Education/Experience/Skills:
- Minimum 5 years information security experience.
- Splunk Enterprise (on-prem) is the primary tool for analysis and the candidate must have setup and configuration experience to own and maintain the application and underlying Linux operating systems.
- Experience with the CrowdStrike Falcon platform is strongly preferred.
- Prior experience with internal auditing of security controls, PCI/SOX security audits
- Strong Microsoft security experience, particularly with Hybrid Azure/On-prem environments
- Strong vulnerability management background, including overseeing the scanning, penetration testing, and server / workstation / mobile device security hardening processes.
- In-depth experience identifying and protecting against web application and web service security vulnerabilities including those found in the OWASP Top 10 and CWE Top 25.
- Experience with firewalls and network segmentation.
- Strong written and oral communication skills are a must.
- Experience working in a team-oriented, collaborative environment.
- Proficiency in Microsoft Office including, but not limited to, Outlook, Word, Excel, PowerPoint and Visio
PayLink Direct is committed to a diverse and inclusive workplace. PayLink Direct is an equal opportunity employer and does not discriminate on the basis of race, national origin, gender, gender identity, sexual orientation, protected veteran status, disability, age, or other legally protected status.