Experience GuideStone!
We are an innovative organization that invests in the spiritual, relational, financial, physical and professional development of our employees. We have a culture that values excellence, teamwork, humility, integrity, compassion and stewardship.
What We Offer You!
We offer employees a generous benefits package, flexible work schedules, the opportunity to be involved in community outreach and tuition reimbursement.
Job Summary
Supports the Information Technology needs of GuideStone and end-users by providing a secure and robust network and cloud infrastructure to support the daily operations and development of our enterprise systems, and applications in GuideStone’s cloud and on-premise environments. This position is critical to building and maintaining a stable and secure computing environment for our various lines of business and systems designed to interact with employees and our participants.
What You’ll Do
Security
- Assist in monitoring and securing physical and cloud-based enterprise solutions.
- Identify and document physical and cloud systems security gaps.
- Monitor and document physical and cloud system devices, services and security configurations including firewalls, load balancers, routers, switches, wireless, VPN.
- Monitor and secure functional user, device and systems access to internal, cloud and third-party systems.
- Respond to and remediate escalated security incidents.
Automation
- Implement a tools driven and automated approach to deliver incident and security management processes.
- Automate threat/vulnerability assessment, detection and correlation solutions.
- Automate security process and incident response solutions.
Collaboration
- Work with cross-functional teams to ensure and maintain security visibility across the enterprise.
- Work with cross-functional teams leveraging DevSecOps strategies to balance security requirements with business goals.
What You’ll Need
- Bachelor’s degree in Information Systems, Computer Science, or equivalent certifications (SANS GIAC, GPPA, GCIA, GCSA, GMON, Azure Security Engineer Associate) - preferred
- Ability to work independently as well as collaborate closely with IT Infrastructure and Development teams to achieve business goals.
- Strong technical skills and understanding physical and cloud systems monitoring and security.
- Ability to manage multiple projects, investigations and assignments.
- Understanding of systems security concepts including network security, cloud security, endpoint security, email/web/application security and data loss prevention.
- Hands-on exposure to Windows server and endpoint operating systems, Linux operating systems, TCP/IP network security, Active Directory.
- Experience with scripting languages including PowerShell and Python.
- Understanding of incident detection, prevention and response methodologies and systems. SOAR exposure is desirable.
- Understanding of SIEM log collection, correlation and analysis.
- Understanding of DevOps/DevSecOps tools and methodologies.
- Understanding of compliance regulations including HIPAA and SEC.