Senior Security Engineer ($146,100 - $172,400)
Position Summary:
The IT Security Engineer is responsible for executing all phases of the security technology lifecycle including technical requirements architecture design and implementation. The Security Engineer possesses an in-depth understanding of current and emerging threats and technology to drive improvement in all technical areas of security including network data application cloud IAM mobile and endpoint. Integral to the success of this role is building partnerships across IT strong communication skills and maintaining an internal and external peer network.
Job Duties:
Architect design deploy and manage the implementation of multiple information security technologies including end point application database network cloud infrastructure and identity management solutions.
Proficient in various programming languages (e.g. Python Java C++ Ruby) for scripting and automation.
Architect design and deploy technology to support security operations centers including log management SIEM vulnerability management patch management and forensics tools.
Lead security assessments identify gaps in existing security architecture and recommend changes or improvements.
Conduct research to identify threats and attack vectors and develop mitigating solutions to manage the risk.
Support the execution and coordination of application and infrastructure penetration testing.
Review and document security related change requests and advise management on approval decisions.
Maintain technical currency and continuously leverage opportunities to strengthen skills and broaden expertise.
Establish and manage the threat management/intelligence program (including threat modeling assessment hunting) to support the Security Operations Center (SOC) and integrate with the risk management functions.
Assess and investigate security incidents and work with application and operations teams throughout the investigation cycle to ensure remediation eradication and lessons learned are rolled back into daily operations.
Collaborate with cross-functional teams to integrate security into development processes and projects.
Help identify new exploits threats and mitigations for detection engineering and define and maintain domain and enterprise level threat modeling.
Mentor junior cybersecurity staff in cybersecurity technology engineering methods and technical process development.
Document and execute security runbooks and ensure all stakeholders are educated on their roles in the process.
Minimum Qualifications / Other Expectations:
Education:
Bachelor degree in computer science engineering or related field
Experience:
5+ years in information security technology.
Experience in network infrastructure cloud and web application security.
Experience in managing and operating vulnerability/patch management process and tools.
Strong written and verbal communications skills with the ability to create and present technical recommendations to executive management as well as influence and persuade peers and business stakeholders
Demonstrate a deep understanding of several cloud concepts and architectures with a focus for how security controls are applied to cloud-based technologies. Example cloud concepts include but are not limited to:
Architecture & Networking
Identity & Access Management
Securing the CI/CD Pipeline
Secrets and Data Protection
Logging Detection and Response
Security Controls for Containers (e.g. Docker Kubernetes)
Assess and secure cloud projects.
Deep understanding and implementation of industry-leading practices for cloud security risks using frameworks and standards such as CIS Benchmarks Cloud Security Alliance NIST SP 800-144 800-145 800-291 and 800-322.
Demonstrated experience in engineering security solutions including Zero Trust applications network infrastructure and data integration/management.
Demonstrated experience in engineering and implementing large complex security solutions and programs (i.e. SOC Identity Management SSDLC DLP).
Experience in engineering security for cloud environments (IaaS PaaS SaaS) as well as leveraging cloud based security solutions.
Experience managing multiple projects of diverse scope and effectively collaborating in a cross-functional team environment.
Demonstrated knowledge on how business enabling technology (e.g. IoT A.I.) increases the threat landscape while understanding how to apply technology and process to mitigate cyber risk.
Knowledge of risk management processes and experience in conducting risk assessments.
Ability to automate common tasks in programming/scripting language and strong knowledge of application programming interface (API) interaction methods.
Experience as an engineer performing incident response and forensic analysis. This should include hands on experience completing tasks such as malware detection and analysis memory analysis and disk forensics.
Compensation:
Base Pay Range: $146100.00 - $172400.00
Actual placement within this range may vary based upon but not limited to relevant experience time in role base salary of internal peers prior performance business sector and geographic location.
The Company also offers competitive benefits for full time employees including paid time off matching 401(k) and health benefits.
About Us:
Irvine Company is a privately held real estate investment company and master-planner committed to creating and sustaining communities that thrive for generations.
Irvine Company is respected for its master planning and environmental stewardship of the Irvine Ranch in Orange County including diversified operations throughout coastal California. Irvine Company brings to life neighborhoods and sustainable communities with a full range of housing jobs retail centers schools parks and open space.
We take as much pride in our employee community as we do the communities we create. It’s an environment populated with talented and experienced people a collaborative spirit and abundant opportunities.
Apply today to join our employee community and learn more about Irvine Company our legacy and our guiding principles.
Irvine Company is committed to providing equal opportunity in all of our employment practices including selection hiring promotion transfer compensation termination and training without regard to race religion color sex sexual orientation gender gender identity national origin ancestry citizenship status marital status pregnancy age medical condition genetic information military and veteran status disability or any other basis protected by federal state and local law. Reasonable accommodation is available for qualified individuals with disabilities upon request.
#LI-Onsite
All vacancies from "Irvine Company" ⟶
views: 803
valid through: 2024-02-01