Information Security Engineer

Devonshire • Concord, NH, US • $90k - $100k / year • 1w ago

Devonshire Recruiting & Consulting Partners is actively looking for a skilled Cloud Security Engineer for clients with expertise in providing secure and innovative solutions. In this role, you will protect your organization's digital environment and protect stakeholders from cybersecurity threats. As an Information Security Engineer, reporting to the Vice President of Information Security you will be focusing on ensuring the security and integrity of our systems. You will investigate potential cyber security threats. Conduct regular assessments to identify weaknesses. and implement strategies to reduce risk while improving the overall safety profile.

Key Responsibilities:

Audit internal systems for potential threats and security vulnerabilities.
Conduct regular assessments to strengthen your overall security posture.
Work with cross-functional teams to create and maintain comprehensive security protocols.
Implement strategies to reduce risk and proactively manage security incidents.
Perform daily tasks such as analyzing security data.
Creating and updating documents and responding to potential threats.
Take action to respond to incidents
Manage cybersecurity incidents and keep up with the latest security trends and technology.
Participate in ongoing professional development and training to enhance safety knowledge and skills.

Qualifications:

Current experience with platforms such as Crowdstrike, Fortinet, and Okta.
3+ years of hands-on experience with implementing Cloud Security.
Responsible for day-to-day monitoring of incidents, investigations, and remediation.
Lead vulnerability Management program and serve as the SME for a portfolio of security tools.
Strong foundation in cybersecurity principles and best practices.
Security engineering experience in cloud-native or cloud-native environments is preferred.
Expertise in Identity and Access Management (IAM), including SSO, PAM, and Cloud Identity.
Ability to analyze complex data and think critically to resolve security issues.
Strong communication skills with the ability to explain security concepts to stakeholders at all levels.
Working knowledge of compliance frameworks such as NIST CSF, SOC 2, or ISO 27001 is an asset.
Required certifications include SSCP, CCSP, CISSP, or event handler certification.
Ability to work independently as a key contributor in a team environment.