Senior Cyber Security Engineer (Information Technology)
Senior Cybersecurity Engineer
JOB SUMMARY:
The Senior Cybersecurity Engineer plays a pivotal role in safeguarding our organization's information assets. This role focuses on managing the Microsoft E5 security stack, conducting technical risk assessments, evaluating leading edge technology, responding to cyber threats and incidents, ensuring network security, and participating in vulnerability management and remediation. The Senior Cybersecurity Engineer works within our Cybersecurity team in IT and collaborates with various teams to protect against cyber threats. This role requires a strong analytical mindset, technical aptitude, and a commitment to continuous learning in the ever-evolving cybersecurity landscape. This support is crucial to the delivery of the companys mission of helping children achieve a lifetime of great oral health.
EDUCATION/CREDENTIALS:
Bachelor's degree in Cybersecurity, Computer Science, Information Technology, or a related field preferred. Relevant security certifications: CISSP, CISM, CompTIA Security+, GIAC certifications (GSEC, GCIA), Microsoft Security, or equivalent, required.
JOB RELATED EXPERIENCE:
5+ years of experience in security engineering, security operations, or a related role with a focus on managing the Microsoft E5 security stack and other advanced security technologies.
JOB-RELATED SKILLS/COMPETENCIES:
In-depth knowledge of the Microsoft E5 security stack, including the Defender suite, InTune, and Purview. Advanced understanding of network security, operating systems security (Windows, Linux), and common attack techniques. Extensive experience in implementing and managing security tools across servers, cloud infrastructure, endpoints, network appliances and identities. Robust analytical and problem-solving skills. Extensive experience in technical risk assessment/remediation, and vulnerability management. Extensive experience in incident response, especially as it relates to an understanding of common attack techniques that D4C can use to inform its response tactics. Advanced scripting or programming skills (Python, PowerShell) preferred.
MAJOR DUTIES AND RESPONSIBILITIES:
Microsoft E5 Security Stack Management: Lead the implementation, configuration, and management of the Microsoft E5 security suite, including Defender for Cloud Apps, Defender for Identity/Entra Identity Protection, Defender for Office 365, Defender for Endpoint, InTune, and Purview. Ensure the integration and effectiveness of these tools in the overall security posture. Technical Risk Assessment: Perform detailed risk assessments to identify potential threats and vulnerabilities within the organization's technology infrastructure. Develop and implement risk mitigation plans, configurations, and mitigating controls to reduce the organization's exposure to cybersecurity threats. Collaborate with stakeholders to ensure risk remediation plans are understood and implemented appropriately. Leading Edge Technology Evaluation: Stay abreast of the latest advancements in cybersecurity technology and best practices. Lead the security team in evaluating and recommending new security technologies and solutions that integrate well with our stack and enhance the organization's cybersecurity posture. Lead proof-of-concept initiatives to assess the feasibility and effectiveness of emerging security technologies. Lead the implementation efforts of selected technologies. Network Security: Conduct regular network security assessments to identify potential vulnerabilities and threats. Assist the Modern Infrastructure team in designing, implementing, and managing network security architecture, tools, and technologies such as firewalls, intrusion detection/prevention systems, DLP, and VPNs. Collaborate with IT and network teams to provide assurance of secure network configurations and practices. Incident Response and Investigation:Participate in security event and incident response activities by collaborating with our managed SOC provider and members of the D4C Cybersecurity team to investigate and resolve escalated alerts. Bring a keen understanding of attack techniques commonly used to help inform our response tactics and techniques. Participate in threat briefings to fortify our network and assets. Assist in maintaining our IR plan and help facilitate IR exercises. Vulnerability Management:Collaborate with the D4C Cybersecurity team to conduct regular vulnerability scans across all systems, applications, devices, and networks to identify weaknesses. Prioritize remediation activities based on vulnerability severity and potential impact. Generate and socialize reporting and metrics to track the effectiveness of vulnerability management efforts. Develop processes to apply remediations and implement proactive threat mitigation strategies. Threat Intelligence:Consume threat intelligence reports and industry news sources to stay constantly informed about emerging threats, vulnerabilities, and attack techniques. Apply this knowledge to improve detection capabilities specifically tailored to your thorough knowledge of the D4C IT environment, assets and security technologies. Governance, Risk and Compliance: Collaborate with the Cybersecurity team to research relevant cybersecurity regulations and frameworks to drive requirements for the security program. Conduct internal and third-party risk assessments to guide investments and decision-making. Formally track and report on risk and cybersecurity compliance issues. Assist in developing policies and procedures.
