Security Engineer

Protecting the security and integrity of data is vital for businesses and organizations.  Without constant monitoring and analysis; businesses, public organizations, government agencies, and individuals are vulnerable to harmful infiltration of their computer systems.  Such cyber-attacks cause huge losses of time, money, security, and trust.  Aunalytics is passionate about protecting our clients from such attacks.  As a Security Engineer, you will work closely with our Security Team to ensure that our systems and those of our clients are protected from such security threats.

• Support, operate, and maintain data center network security and threat management systems; servicing MI Cloud and our customers (Logrhythm, Sophos, access control systems, etc.)
• Monitor computer networks / systems for security issues
• Investigate / remediate security breaches and other cyber security incidents
• Capacity planning and monitoring of network security resources and platforms
• Ensure secure connectivity between corporate, service provider networks, and customer networks
• Tier II and III troubleshooting with internal team members, vendors, and customers
• Development of Standard Operating Procedures (SOPs) for engineering, NOC, and provisioning teams
• Perform maintenance on security platforms during data center maintenance windows as required including hardware, software and firmware upgrades
• Perform vulnerability scanning & penetration testing
• Remediate detected vulnerabilities to maintain defined standards
• Vendor Support Escalation – Engage vendors and research new technologies as requested by Management.  Engage vendor technical support for hardware or software problems
• Participate in on-call rotation escalated support
• Research security technology as part of our research & development efforts
• Support security-related compliance efforts (including controls for FedRAMP, and SOC2)
• Provide security expertise for FedRAMP control development, implementation, and ongoing continuous monitoring
• Other duties as assigned

• Bachelor’s of Science degree in Computer Science, Engineering, Computer Security, Information Systems, or related field –  or an equivalent combination of education and experience.
• One or more of the following certifications:  CISSP (preferred), GIAC GSEC (preferred), CompTIA Security+, Certified Ethical Hacker, OSCP, CCSP, or CISM
• Three or more years of experience working within Cybersecurity
• Knowledge of industry standard security guidelines
• Experience with enterprise Security Information & Event Management (SIEM) platforms (Logrhythm preferred)
• In-depth understanding of multi-layered network security and segmentation constructs with practical experience in at least one hypervisor (VMware vSphere preferred)
• Experience in a highly-available, interconnected, compliant data center environment including securing Windows, Linux & other UNIX variants
• Experience deploying Security best practices in Server configuration, Network configuration, tools deployment, and access controls
• Experience Investigating / remediating security breaches and other cyber security incidents
• Experience managing Security in large-scale and geographically diverse environments
• Experience with Microsoft Active Directory, Windows Server 2012 / 2016, PowerShell
• Experience supporting advanced firewall technologies (Sophos, Cisco, Palo Alto)
• Experience with Cisco enterprise switching and routing platforms
• Proficiency in network core technologies, and protocols (TCP/IP, DNS, HTTP(S), IPsec, VLANs, routing, etc.)
• Excellent interpersonal, written, and verbal communication skills required.  Prior communication with C+ level executives a plus
• Resourceful in getting things done, self-starter, productive working independently or collaboratively – ours is a fast-paced entrepreneurial environment with performance expectations and deadlines
• Share our values:  growth, relationships, integrity, and true grit