Senior Security Engineer

-Bachelor's Degree in Computer Science or related field or equivalent experience and

-Certified Information Systems Security Professional (CISSP) and/or 

Certified Cloud Security Certification (CCSP) and/or

-AWS certifications (or ability to obtain within 6 months

-5-10 years of hands on experience in all technical security domains

-Strong technical background and great understanding on emerging security trends

-Background and style that elicits respect in the organization through management style, technical depth, customer service and results

-Ability to influence others where there is no direct authority

-Deep technical knowledge IT Network, Infrastructure, Software, Cloud, Mobile

-Hands on technical expertise on all IT areas

-Scripting, coding, or automation skills (Python, Perl, Java, .NET)

-Data analysis, Network, OS systems (Windows, Unix, Linux)

-Ability to present security technology / solution in business context

Main Responsibilities & Duties

            Primary Responsibility #1 - Global security lead for information security technologies in CWT

      Work on datasets such as network packets, security device logs to identify any security vulnerabilities and gaps. 

      Manage, maintain, and deploy global security services/tools to protect the environment, including vulnerability management, endpoint protection, and network protection technologies

      Evaluate, design, implement, monitor and support security infrastructure including IAM, IPS, SIEM, Endpoint agents, WAF’s, DLP, WCF, and other tools or systems.

      Perform vulnerability testing, risk analyses and security assessments

      Create new ways to solve existing production security issues using security tool

      Researches, designs and advocates new technologies, architectures, and security products that will support security requirements for the enterprise and its customers, business partners and vendors

      Evaluates and develops secure solutions, based on approved security architectures. Analyses business impact and exposure, based on emerging security threats, vulnerabilities and risks

      Collaborates with colleagues and across departments to enhance security and efficiency

      Assist during internal and regulatory compliance audits, PCI, SOC2, etc.

      Cloud Security Access Broker, Mobile Security (iOS and Android)

      Knowledge in IDS, IPS, Firewall, Data Leak Prevention tools

            Primary Responsibility #2  - Assists in the incident investigations and response process

      Knowledge in programming using scripting tools and enterprise software development tools such as Java

      Stay abreast of the latest vulnerabilities and exploits

      Work with the Security Operation Center is develop solutions/configurations to address threats

      Participate in the on-call rotation for security services outages and incident escalations

      Ability to present security technologies, risks, solutions to management in business context

      Deliver technical reports and documentation on solutions and incidents

      Contributes to the development and maintenance of the CWT information security strategy