Remote Associate Cyber Security Engineer

Description:

• We are seeking a skilled and experienced Associate Cyber Security Engineer to join our dynamic team.
• The ideal candidate will possess a strong understanding of both compliance and security principles, including expertise in PCI DSS, SOC, ISO standards, and PrivacyShield.
• This role involves working closely with various departments to ensure our systems and processes meet stringent security and compliance requirements.
• Responsibilities include implementing and maintaining compliance with industry standards such as PCI DSS, SOC 2, ISO 27001, and PrivacyShield/Data Privacy Framework.
• Conduct regular audits and assessments to ensure ongoing adherence to compliance requirements.
• Develop and update policies, procedures, and documentation to support compliance efforts.
• Collaborate with internal and external auditors to facilitate compliance audits and assessments.
• Design, implement, and manage security measures to protect company data and infrastructure.
• Monitor and analyze security incidents, vulnerabilities, and threats.
• Respond to security incidents and coordinate remediation efforts.
• Perform regular security assessments, including penetration testing and vulnerability scanning.
• Implement and manage security tools and technologies, such as firewalls, intrusion detection/prevention systems, and endpoint protection solutions.
• Configure and manage security tools such as Splunk, Sophos, KnowBe4, Qualys, AWS, etc.
• Administer the IAM system to manage user access and privileges to ensure proper access controls are in place.
• Conduct security incident readiness reviews and tabletop exercises at regular intervals.
• Manage and monitor the company's network security infrastructure, including firewalls, intrusion detection/prevention systems, cloud gateways, email servers, endpoint protection systems, Extended detection and response (XDR), and VPNs.
• Perform network vulnerability assessments and penetration testing to identify and address potential security weaknesses.
• Conduct Firewall audits and segmentation tests as required by compliance guidelines.
• Identify, assess, and mitigate security risks across the organization.
• Develop and maintain risk management frameworks and processes.
• Provide recommendations for security improvements and risk mitigation strategies.
• Conduct security risk assessments for new projects and technologies.
• Provide security awareness training to employees and promote a culture of security.
• Assist in the development and implementation of incident response plans and disaster recovery procedures.
• Stay up-to-date with the latest security trends, technologies, and regulatory changes.

Requirements:

• A Bachelor’s degree in Computer Science, Information Security, or a related field is required.
• Relevant certifications such as CEH, CHFI, Security+ or equivalent are necessary.
• In-depth knowledge of security protocols, cryptography, authentication, authorization, and security vulnerabilities is essential.
• Experience with security monitoring, incident response, and forensics is required.
• Familiarity with regulatory requirements and industry best practices is necessary.
• Excellent problem-solving and analytical skills are a must.
• Strong communication and interpersonal skills are required.
• The ability to work independently and as part of a team is essential.

Benefits:

• Employees can expect a robust benefits package, including health and dental insurance and a 401k with company match.
• Flexible Time Off policy or generous PTO plan (role dependent) and paid holidays are offered to find the perfect work/life balance.
• Tuition reimbursement is available for further education.
• A robust Employee Assistance Program through TotalCare offers free counseling 24/7/365, plus financial counseling, legal guidance, adoption assistance services, and more.
• 24/7 access to virtual medical care with Teladoc is provided.
• Quarterly awards based on peer nominations recognize employee contributions.
• Regional discounts and perks are available for employees.
• Opportunities to participate in charitable events and give back to the community are encouraged.
• Extensive video libraries for soft skill and role-specific training are accessible 24/7, with live trainings provided throughout the year.
• WorkWave has been recognized as a Best Place to Work in New Jersey and has received multiple awards for its outstanding products, growth, and culture.