Information Security Engineer.

ROLE DESCRIPTION

• The position reports into the Director of Security and Compliance and focus are to ensure the company's digital assets are protected from unauthorized access. This includes securing both on-premises and off-premises infrastructures

KEY RESPONSIBILITIES

• You will monitor and optimize threat protection tools to remediate any potential threats
• Monitor networks to stay informed of all activity taking place across the defined networks to protect
• You will prepare reports of threats and potential security breaches and the extent of the damage or potential damage
• You will analyze networks, providing suggestions and best practices for employees and users to maintain data security
• You have to stay up to date on trends and advances in security and information technology to ensure defined systems are continually protected from potential threats, and that best practices deployed
• You will create detailed remediation requirements and steps to application developers and infrastructure teams
• You will install software that is created to protect sensitive information, such as firewalls and data encryption programs
• You will investigate security breaches and other cyber security incidents
• You will be performing penetration testing

KEY QUALIFICATIONS

• 3+ years of experience in the design, development, and implementation of Cloud and Enterprise security programs
• Experience with cyber security assurance and risk management frameworks, including HIPAA, HITRUST, NIST, or ISO 27001
• Experience leading and implementing cloud security controls using well architected frameworks and industry benchmarks

• Experience conducting internal audits, risk management, vendor management, incident management, and BD/DR
• Clear understanding of Agile, CI/CD, Develops, application security, Secure SDLC, and threat modelling
• Track record of automation security and incident management functions, while continuously improving security and compliance operation. 
• Proven ability to scale security and compliance programs in a fast paced, cloud-first enterprise 
• Excellent communication skills, experience collaborating across organizations and presenting ideas to leadership.
• Experience with Azure and AWS platforms
• Experience with Palo Alto, Tenable.io and Microsoft security tools, including, but not limited, Prisma Cloud, Prisma Access, Palo Alto Network Firewalls, Cortex Data Lake, Cortex XDR, Cortex Defend, Microsoft Defender, Azure Sentinel, Mimecast Security
• Familiar with indicators of compromise (IoC), indicators of attack (IoA), and familiarity with (TTP) threats techniques and procedures

EDUCATION

• You have a Bachelor’s in Computer Science or similar

NICE TO HAVE QUALIFICATIONS

• Security+ certification
• Certified Ethical Hacker (CEH)
• GIAC Certified Incident Handler (GCIH)

CULTURE & BENEFITS

• Fast-growing and dynamic environment, a modern workspace, flexible working hours and hybrid model
• Restaurant and regular company activities (e.g., cooking classes, sponsorship to sport events, …)
• Free cruise (for you and your +1) every year and friends & family special discounts