Job Description
Job Description
Description:
SHINE Technologies is seeking a Cybersecurity Engineer to provide technical leadership on the design, installation, operation, service, and maintenance of a variety of multi-user information security systems. Primary responsibilities include supporting the operational security function within SHINE to develop, maintain and advance the security posture of the company in order to effectively protect corporate assets. A hands-on technical specialist, a Cybersecurity Engineer handles the complex and detailed technical work necessary to establish security systems such as security information and event management (SIEM) and various data protection solutions.
Duties and Responsibilities:
Specific duties and responsibilities include of the Cybersecurity Engineer, but are not limited to:
- Provides hands-on information security technical consulting services to teams of technical specialists working on the integration of shared, centralized and/or networked systems.
- Actively searches for vulnerabilities and potential threats within the network and conducts regular scans to identify and address security weaknesses.
- Responds and mitigates the impact of security breaches by conducting root cause analysis and implementing measures to prevent recurrence.
- Perform risk assessments to identify potential security threats and implements risk mitigation strategies.
- Educate employees about security best practices by conducting training sessions to raise awareness about phishing, social engineering, and other threats.
- Create and update security policies, procedures, and protocols ensuring they are enforced and adhered to across the organization.
- Stay informed about the latest cybersecurity threats, trends, and technologies.
- Provides technical assistance with the initial set-up, secure deployment, and proper management of systems that support information security including virus detection systems, spyware and adware detection systems, spam filtering systems, content control software systems, web site blocking systems, intuition detection systems, and intrusion prevention systems.
- Evaluates information system bug reports, security exploit reports, and other information security notices issued by information system vendors, government agencies, universities, professional associations, and other organizations, and as needed, makes recommendations to internal management and technical staff to take precautionary steps.
- Acts as the primary technical support liaison in charge of ensuring current and effective anti-virus systems, intrusion detection systems (IDSs), firewalls, data loss prevention systems, and other deployed security systems within SHINE.
- Executes or collaborates with others to run vulnerability identification software packages and related tools to immediately highlight errors in systems configuration, the need for the update of software with fixes and patches, and other security related changes.
- Compiles, maintains, and documents a collection of software that is able to trace the source of and otherwise investigate attacks on SHINE systems.
- Acts as a technical consultant on information security incident investigations and forensic technical analyses.
- Interprets information security policies, standards, and other requirements as they relate to a specific internal information system and assists with the implementation of these and other information security requirements.
- Redesigns and reengineers internal information handling processes so that information is appropriately protected from a wide variety of problems including unauthorized disclosure, unauthorized use, inappropriate modification, premature deletion, and unavailability.
- Develops technical documentation describing the deployment, configuration, and management of shared, networked, and multi-user information security systems
Requirements:
- Bachelor’s degree in business administration or related field; or high school degree/general education diploma and 4 years of relevant experience in lieu of Bachelor’s degree.
- 3+ years of experience in a cybersecurity engineering role.
- 2+ years of experience working in at least one of the following regulatory settings: ISO 27001, SOX, CMMC, DFARS.
- Excellent interpersonal and communication skills, ability to operate in a cross cultural and complex matrix environment, and ability to build consensus across functions.
- High degree of initiative, dependability, and ability to work with little supervision while being resilient to change.
- Proven ability to work within a fast-paced, cross-functional team environment.
- Hands-on experience with SIEM implementation and administration.
- Information security in a public/private cloud infrastructure (Azure, AWS) environment.
- Completion or coursework toward information security certifications.
Eligibility for employment is conditioned on the applicant’s ability to qualify for access to information subject to U.S. Export Controls. Additionally, applicant’s eligibility may be conditioned based upon meeting the Nuclear Regulatory Commission requirements for access to Safeguards Information, which typically requires a pre-employment drug screen, fingerprinting and criminal background check.
SHINE values diversity in all its forms as a critical component of innovation, which is fundamental to our success. Every member of the SHINE community benefits from the talents and experiences of our peers, from the mutual respect we exercise, and from the responsibility we take for our actions.
SHINE Technologies is an equal opportunity employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability or veteran status.
Pay Transparency Policy
Employee Rights Under the NLRA
Equal Opportunity Employment
E-Verify