The Cyber Security Engineer at Symquest will be responsible to possess knowledge and experience in a variety of security domains and technologies as well as general Network security (Firewall and security appliances) and IT knowledge. This resource will work closely with SymQuest clients to manage and maintain their security posture, hardware, and software, while also identifying risks to the business and driving solutions ranging from education and awareness to the adoption of new/existing policies, standards, processes, controls and technologies. They will perform and provide assessment report reviews, vulnerability reviews, policy reviews, firewall and security solutions administration and management and be a point of interface between the SymQuest security team and the client. This resource will also provide guidance to junior team members and be a point of escalation for more junior team members and other internal teams.
This is a HYBRID role – Must be able to commute to the office 1-2 days a week.
Major Goals and Responsibilities:
Monitor and execute to security services program entitlements and SLA
Involvement in and/or execution of firewall modifications and configurations
Design, configure, and install firewalls and security solutions
Perform routine maintenance of security hardware and software (updates, patching, etc.)
Troubleshoot, determine root cause, and remediate technical security issues
Provide mentorship, technical guidance, and assistance to junior team members
Engage with clients to understand security concerns, develop solutions and recommendations, and implement security solutions and programs
Facilitate report review, solution review, and discussion
Present findings and recommendations to clients
Review, investigate, and assess vulnerability scans and/or reported vulnerabilities
Support sales and marketing
Provide point of interface for clients, internal teams, and sister security companies to leverage SymQuest Security team members and services.
Obtain and maintain current industry-related compliance certifications and memberships
Fully understand and support the organizations vision, core values, goals and objectives
Problem Solving and Analysis: The Cyber Security Engineer is responsible for services that are both wide impacting and complex in nature. When issues come up, the Cyber Security Engineer must consider the impact of both the problem and solution from many different angles. Solutions must also consider the impact to both internal and external users of the applications and services as well as the security implications and technical limitations of solutions.
Independence: The Cyber Security Engineer must exhibit a high degree of initiative. In addition, the position must maintain alignment and make judgments as appropriate. Timeliness of decisions is critical and must be effectively communicated to those affected both internal and external.
Decision Making: The Cyber Security Engineer carries the responsibility to contribute to decisions on their team. Part of the Cyber Security Engineer’s responsibility is to provide collected data to the team to aid in making decisions and moving the effort forward as planned as well as presenting data and recommendations to clients and other internal assets as required.
Decisions are made daily and the Cyber Security Consultant needs to determine when to seek supervisory assistance for additional guidance. The Cyber Security Engineer must be able to articulate, defend, and document decisions to the security team and supervisors. The Cyber Security Engineer must show autonomy and initiative within a team context. Decisions should be based on established guidelines, policies, and processes. Decisions outside of the established guidelines should be consulted with security team management.
Degree of Impact: The Cyber Security Engineer is a highly visible position within the company and interacts directly with clients and prospective clients. The interactions that the Cyber Security Engineer engages in has a direct effect on client environments as well as how the SymQuest security programs are viewed and evaluated. Decisions made by the Cyber Security Engineer can affect the quality and availability of services to clients.
BA or BS degree or equivalent combination of relevant education and experience
1-2 years’ experience in the information security field
At least 3 years’ experience with general networking and IT
At least 3 years’ experience with firewall and security appliance configuration / management
Experience working in production environments and scheduling downtime and impact with clients
Ability to troubleshoot network and security appliance issues while documenting process
Basic knowledge in security industry regulations/standards/frameworks (PCI DSS, HIPAA, etc) and compliance frameworks (NIST, ISO 27002, CobiT, etc)
Possess one or more of the following certifications: Network+, CCNA, Security+, GSEC, GCIH, CySA+, NSE 4, NSE 5, NSE 7, or other security and compliance certifications
Willingness to pursue and obtain Fortinet NSE certifications as required
Willingness to pursue additional certifications as required
Ability to multi-task and manage multiple priorities
Ability to deal with changing priorities to complete tasks in a short period of time
Exceptional organizational and time management skills
Excellent presentation skills, and client interaction skills
Solid commitment to customer service with good initiative and follow-through
Comfortable interacting at all levels within an organization
Superior writing, communication and documentation skills
Strong business acumen and a drive toward business growth
Discipline to work remotely and communicate clearly