Our client, a leader in the legal industry, is hiring a Security Engineer. This position will work together serving client and each other. This is a full time permanent position located in Pittsburgh, PA. The ideal candidate will have five or more years of experience. This position will specialize in network security and have a strong working knowledge of security control areas throughout the environment.
Reporting to the Senior Manager – Information Security, assists with the definition of requirements for security technologies to include intrusion detection/prevention application/data security, encryption, forensics, log analysis, authentication systems, identity management and access control.
Configure, implement, monitor, and support security software/systems that will help ensure compliance with Firm policies and procedures. This includes but is not limited to SIEM, Next Gen Firewall Management, IDS/IPS Management, Forward and Reverse Proxy Management, Web Application Firewall, Two Factor Authentication, IAS, Internal/External Certificate Authority, Network Access Control, etc.
Responsible for development, execution and/or coordination of Security Architecture Reviews, Secure Network Design, DMZ Design and Architecture, IOC Monitoring, Threat & Risk Investigations, Incident Response and Documentation, Forensic Analysis, External DNS, Registrar Management, etc.
Assist in the identification, response, investigation, and remediation of potential breaches of and issues surrounding data security.
Proactively identifies security problems monitors performance trends, performs upgrades and makes recommendations to security hardware and software as required.
Responsible for providing off hours support for security as needed.
Five or more years of information or network security-related experience.
Working knowledge of some or all of the following:
TCP/IP | OSI Model, system logs (WMI, syslog, etc.),
Next generation firewalls,
Forward and reverse proxies,
Penetration testing and vulnerability assessment,
Event correlation, forensics, IOC development,
Advanced threat detection,
Two factor authentication.
Must have experience developing enterprise grade secure network architecture and have a demonstrated ability of deploying new technology without impact to services.
Demonstrated skill in collecting and analyzing complex data, evaluating information and systems, and drawing logical conclusions.
Must demonstrate the ability to maintain strict confidentiality of the firm's internal affairs
Experience with security policies and procedures, awareness programs and IT audits preferred.
Understanding of ISO27001/NIST principles preferred.
Bachelor's degree in an Information Security, Computer Science, Business or Engineering related program; advanced degree a plus.
One or more of the following certifications CISSP, CISA, CFCE, CRISC, SANS GIAC is desired
The most pressing issue for businesses today is the quest for growth, and more than innovation, operations or even customer relationships, CEOs are looking for talent and leadership to secure and sustain it. People are truly an organization’s greatest asset.
With an active nationwide database of more than 500,000 seasoned professionals, A.C.Coy employs the latest tools to manage effective recruit...ing. The technology helps to quickly identify and contact the right candidates with the skills and experience clients need.
The tools that A.C.Coy uses provide a unique perspective regarding culture, performance, leadership, and team "fit". And our integration methodology ensures that new leaders are integrated quickly and successfully without breaking stride.