Remote Security Engineer - Remote

Description:

• The Security Engineer is responsible for testing, installing, configuring, and maintaining security solutions/tools.
• This role involves monitoring infrastructure (networks and systems) for unusual activity, security breaches, and/or intrusions.
• The Security Engineer will work closely with client teams on the implementation, maintenance, and administration of security tools.
• Communication of findings, incidents, and concerns to relevant team members and leadership in a timely manner is essential.
• The position may include Resident Engineer roles with specific clients, which are longer-term contracts dedicated to a specific client full-time for a defined period (typically 3-, 6-, or 12-month engagements).
• Responsibilities include developing and documenting security standards and policies, assisting with installation and configuration of new security products, and deploying, troubleshooting, maintaining, and administering security solutions.
• The role also involves discovering and recommending security enhancements, participating in vulnerability scans, and working with client teams to prioritize and remediate discovered vulnerabilities.
• Undertaking system and infrastructure hardening efforts per standardized benchmarks and monitoring infrastructure for security breaches or irregular system behavior is required.
• The Security Engineer will ensure that client organizations receive detailed, timely, and accurate information regarding security concerns and incidents.
• Participation in incident response activities, investigations into incidents, and security tabletop exercises is expected.
• The role includes assisting with the education of client staff on information security and developing automation solutions to handle and track incidents.
• Testing security solutions using industry-standard analysis criteria and helping plan and implement an organization’s information security strategy are also part of the job.

Requirements:

• Candidates must have 5-10 years of experience in Information Security and Engineering.
• A strong background in both data/information security and system engineering is required.
• Possession of both deep and wide expertise in the security space is essential.
• Candidates should have a breadth of experience with security solutions and concepts, along with deep knowledge of several specific security solutions/tools.
• Experience in deploying, troubleshooting, integrating with, managing, and maintaining security solutions such as email security gateways, network security tools, and SIEMs is necessary.
• Monitoring infrastructure and systems for security breaches or intrusions is a key requirement.
• Familiarity with regulatory requirements such as GDPR, CCPA, HIPAA, and PCI DSS is important.
• A deep understanding of server operating systems, particularly Windows Server and Linux, is required.
• Experience with AWS and/or Azure environments is a plus.
• Experience with MS 365 is also a plus.
• Experience in specific industry verticals such as healthcare, biotechnology, government, or department of defense is helpful.
• Excellent communication skills, both written and verbal, are essential.
• Documentation of security tools, deployment configuration, and incident reports is required.
• Clear communication with client teams regarding concerns, findings, and incidents is necessary.

Benefits:

• The salary is commensurate with years of experience, technical expertise, and geographic location, with a range of $100,000 to $150,000.
• Performance bonuses are offered.
• The benefits package includes 100% paid medical, dental, and vision for the employee.
• A 401(k) plan with employer match is provided.
• The company promotes a strong culture and offers a flexible PTO policy.
• Flexible working arrangements are available.
• An annual company overnight retreat is part of the benefits.