Information (Network) Security Engineer
Fulltime / Hybrid - 3-4 days week onsite
No Sponsorship offered
A client of Robert Half is seeking an Information Security Engineer to lead their cybersecurity program and foster a culture of security awareness across the organization. In this strategic role, the Information Security Engineer will set the direction and vision, develop and implement risk mitigation strategies to protect us from potential threats. The right candidate will be highly experienced with Palo Alto Networks and hands on experience to maintain the networks and firewall systems.
Responsibilities
- The Information Security Engineer is responsible for developing and implementing cybersecurity strategies, policies, and practices to safeguard the organization's information assets and ensure the integrity, confidentiality, and availability of data.
- Conduct regular risk assessments to identify and prioritize cybersecurity risks.
- Develop and lead the implementation of the organization's cybersecurity strategy, ensuring alignment with business objectives.
- Ensure compliance with relevant laws, regulations, and industry standards related to information security.
- Develop and maintain an incident response plan, including coordinating the response to cybersecurity incidents.
- Collaborate with IT and business units to integrate security best practices into the design and development of systems and applications.
- Implement a comprehensive security awareness program for employees, promoting a security-conscious culture.
- Generate regular reports on the organization's cybersecurity posture and incidents for executive leadership.
- Audit’s identity and access methods to ensure a zero-trust framework for both production and development business application systems.
- Cybersecurity Strategy and Leadership: Develop and lead the implementation of the organization's cybersecurity strategy, ensuring alignment with business objectives.
Qualifications
- 3+ years’ experience in an Information Security role with responsibilities in assessing application and infrastructure architectures for security threats and vulnerabilities.
- 5+ years’ in a Senior level network/systems role with a strong focus on Security.
- Deep experience with Palo Alto security products, including on-prem firewalls, Panorama, Global Protect, and Prisma Access.
- Palo Alto network experience (on-Prem Firewall and Prisma) or PCNSE certification.
- Hands-on experience with security infrastructures (Firewalls, IDS/IPS, VPN, Secure Email Gateways, Web Content Filters, Proxies, DLP, SIEM).
- Solid foundational understanding of networking concepts and security-focused enterprise networking.
- Hands on experience with Cisco enterprise switches (or a similar vendor).
- Knowledge and experience with common information security management frameworks and best practices, specifically the National Institute of Standards and Technology (NIST) .frameworks and Center for Internet Security (CIS) Critical Security Controls, highly desirable.
- Understanding of cloud security concepts (SaaS, PaaS, IaaS), mobile architecture, network and application security and/or data protection, preferred.
- Familiarity with Network Access Control systems (Any vendor).
- Familiarity with monitoring/alerting systems (PRTG, Solarwinds, Splunk, etc).
- Basic understanding of Windows Server functions as they related to network services (Active Directory, DNS, & DHCP).
- Professional security management certification, such as a ISC(2) Certified Information Systems Security Professional (CISSP), SANS GIAC Information Security Professional (GISP), CompTIA Security+, CompTIA Network+, highly desirable.
- Bachelor’s Degree or equivalent work experience in a related field required.