Title: Information Security Engineer
Duration: 6 months contract (possibility of extension)
Location: Remote
Looking for a seasoned Senior Security Engineer with a hands-on, well-rounded security background and experience in multiple domains. To be successful, the Security Consultant must be able to multi-task in a fast-paced and dynamic environment.
Essential activities:
- Experience securing hybrid infrastructures (on-premise/cloud)
- Design, configure, test, and enhance security solutions, including but not limited to: Microsoft 365 / Microsoft Azure, Virtualization software, Identity and Access Management System, VPN, IDS, SIEM, Web Proxy, Data Loss Prevention, Firewall and other Network Devices
- Hands-on systems administration experience in a Windows environment
- Perform vulnerability assessments against a wide array of technologies and platforms
- Conduct incident response and investigation for elevated security incidents.
The ideal candidate:
- 12+ experience with general security and risk mitigation knowledge across multiple technical disciplines.
- Bachelor’s degree in Information Systems, Computer Science, Infrastructure/Networking or related field.
- Security certification required: At least one certification from Offensive Security or GIAC, including OSCP, OSCE, GCIH, GCIA, GCWN, GCFA, GPEN, GXPN, GCFE, GNFA, or GDSA.
- Experience in configuring and applying technical security controls to on-prem/cloud. platforms, such as Azure, endpoints, databases, operating systems, and network devices.
- Proficiency in one or more scripting languages (e.g., Python, PowerShell).
- Experience with cybersecurity frameworks and threat methodologies, including the MITRE ATTACK Matrix, CIS Critical Security Controls, and NIST Cybersecurity Framework.
- Strong analytics skills and ability to manage and coordinate multiple ongoing projects.
- Demonstrated ability to communicate effectively using verbal, written, and interpersonal communication skills.