Job Title : Senior Cyber Risk Management Engineer
Job Description: The Senior Cyber Risk Management Engineer will assess and document enterprise information security solutions, such as authentication and authorization, public key infrastructure, data loss prevention, and security event information analytics, to address the current and emerging security needs of the business. This role requires the understanding of complex enterprise-scale information security problems. In addition to assessing and documenting control implementations solutions, the Senior Cyber Risk management Engineer will contribute to the development and maintenance of internal assurance processes, emerging requirements from regulations, contracts, and internal demand.
Minimum Qualifications · 4+ w/Bachelors degree
Additional Experience · 2+ years of experience with a Masters degree in a relevant field of study is acceptable.
4+ years of combined hands-on IT and security architecture development and implementation work experience with a broad exposure to infrastructure/network and multi-platform environments.
2+ years of experience in information security solution engineering or security service delivery. Knowledge, Skills, Abilities ·
- A complete, and working understanding of information security and appropriate use enforcement technology solutions including advanced malware detection/prevention, mobile device virtualization/MDM, cloud security management, structured and unstructured database encryption, mobile application and remote API security, fine-grained application authorization and access control, security event visualization, big data user and entity behavior analytics, active adversary deception, and others.
- A working understanding of contemporary security theory and application (including vulnerabilities, exploitation techniques and attack vectors).
- Understanding of systems development lifecycle to lead multifunctional projects or initiatives. Knowledge of laws, regulations, and standards relevant to the US Healthcare industry.
- Excellent written and verbal communication skills (including technical writing, procedure creation, and documentation development). Must be able to effectively communicate security concepts to a technical audience
- Able to understand moderately complex written and oral instructions
- Ability to clearly present complex/security subjects and findings to technical staff and management
- Strong Exceptional technical writing skills including documentation development, process mapping, and visualization Ability to communicate technical concepts and think on the fly'
- Ability to interact well with co-workers and outside contacts
- Knowledge of security principles, issues, techniques and implications across all existing computer platforms.
