- Perform investigations into security incidents and security concerns
- Conduct regular security assessments
- Provide security guidance on a constant stream of new products and technologies
- Work with system engineers, other teams, and customers to understand and implement continuous improvement processes, automation, system upgrades and rollouts
- Audit system resources and take action as necessary
- Ensures the confidentiality, integrity, and availability of Entegral’s information and information systems
- Work with Cloud Operations, Enablement, and other Software Development Engineers to assist in analyzing and resolving complex security vulnerabilities within a SaaS platform
- Administer and secure G Suite/Google Workspace applications. Implementing security measures such as DLP, ATP and conditional access
- Contribute to incident response investigations and remediation efforts
- Partner with the internal stakeholders to enhance the operational efficiency and effectiveness of our security tools, resources, and automation
- Implement scalable and efficient tools, partnerships, playbooks, policies, processes, and reporting systems to ensure quality and consistent delivery of services that meets evolving internal standards and external obligations
- Partner with the Security Operations Center to investigate and respond to alerts
- Implement technical controls to detect and prevent phishing attacks
- Implementation and maintenance of security best practices, manage security alerts and incidents in Google Security Command Center
- Utilizing Cortex XDR for endpoint protection and response, investigating and responding to those threats which have been identified
- Manage and configure Palo Alto firewalls with Panorama, implement and enforce network security policies
- Knowledge of GCP, AWS and Azure and ensuring that the cloud environments are secure and following our compliance requirements
- Administer and secure G Suite/Google Workspace, implementing security measures such as DLP, ATP and conditional access
- Partner with our vendors and third-parties to ensure security standards are met
- Participate in externally verified audits for SOC2, ISO27001, Government officials and suppliers
- Manage identity and access management using JumpCloud and Okta
- Participate in daily stand-ups, planning meetings and review sessions (using Scrum/Agile methodology)
- Understand the business operations and processes on assigned projects
- Work across product roadmap initiatives
- Work with various design and architectural patterns
Equal Opportunity Employer/Disability/Veterans
#LI-REMOTE
Required:
- Must be presently authorized to work in the U.S. without a requirement for work authorization sponsorship by our company for this position now or in the future
- Minimum, high school diploma or GED
- Must be at least 18 years of age
- For flexible or full remote work from home positions, reliable high speed Internet connection and dedicated work space are required
- Must be located in one of the following locations: AZ, CA, FL, IL, LA, MD, MI, MN, MO, NJ, NV, NY, OH, OR, PA, TN, TX, VA, WA or WI
- 5+ years of experience with incident response demonstrating the ability to identify and respond to security incidents, proficiency in log analysis and forensic investigation
- 5+ years of experience with identifying technology and process security gaps; develop solutions and make recommendations for continuous improvement
- 5+ years of experience maintaining situational awareness of escalated events and alerts, tools status, vulnerability status, forensics investigations, incident response, and all other SOC functions
- 5+ years in deploying Security solutions in a highly distributed Enterprise environment
- Experience with security by design and defense in depth for cloud-based applications
- Knowledge of common attack vectors and threat landscapes
- Working knowledge of Cloud Security Posture Management software, such as Wiz, and assist in the continuous improvement of those cloud security configuration and insights
- Proficiency in security best practices for public clouds (Azure or GCP preferred)
- Proficiency in security technologies such as firewall, VPN, IPS, DLP, WAF
- Experience in an Agile working environment
Preferred:
- Advanced degree (Bachelor’s or Master’s) in Computer Science, Computer Information Systems, Management Information Systems, or related field of study. Or equivalent technical experience in a professional environment
- Industry certifications such as CISSP, CISM, CEH, OCSP or equivalent
- Ability to document processes, procedures, and security designs clearly and accurately for distribution to internal teams and customers
- Experience with secure practices with RESTful and/or SOAP API's
- Experience with secure practices around developing software in a SaaS environment using CI/CD and DevOps methodology
- Technical proficiency in Azure and Google Cloud services, hybrid, and on-premise security solutions including Linux, Mac, and Windows Operating Systems
Qualified candidates should also possess:
- Demonstrated ability and examples of keeping current on technology trends
- Good communication and collaboration skills
- Experience with designing new methods and working with existing patterns in a previous role
- Experience leading initiatives or teams from a technical perspective
- Experience mentoring less experienced engineers
- Articulate and demonstrates a clear understanding of the aspects of object-oriented development
- Persuasive, collaborative business acumen with the ability to influence product roadmaps from a technical perspective
- Strong communication skills both written and verbal
- Commitment to continuous improvement by participating in educational opportunities, reading professional publications, maintaining personal networks, participating in professional organizations
- Initiative, results-oriented drive and a solid work ethic requiring minimal direction
- Resiliency in the face of changing priorities and requirements