17 days old

Cyber Security Engineer

Boston, MA 02108
  • Job Code
    579376
  • Payrate
    $60 To $80

The SEC has an opening for a Cyber Security Engineer with a comprehensive skill set in network security operations, cyber security tools, intrusion detection, and secured networks. This is a hands-on role that requires analyzing the environment, coordinating data gathering and generating solutions on a day-to-day basis as well as contributing to the long-range planning activities of the overall IT team. The Cyber Security Engineer will oversee projects and investigations related to threat management and security breaches. The selected candidate will develop policies to address problems and security emergencies and makes recommendations to management.


Role:


The Cyber Security Engineer will be responsible for managing a network security architecture that supports the needs and goals of the SEC. He/she will plan, implement and support security solutions at multiple locations around the state including the main office at 1 Ashburton, the State Archives building at Columbia Point, various Registry of Deeds offices in each County of the state, and a soon to be established Disaster Recovery site. After hours' availability is required to respond to emergencies, and to perform system maintenance that cannot be completed during normal business hours.


Under limited supervision, working individually or as part of a project team, the Cyber Security Engineer will continuously assess security and protective related risks to enterprise office locations, assets and employees and makes recommendations for mitigation strategies that will decrease risk. He/She will maintain the confidentiality, integrity, and availability of computer workstations, servers, and local area networks.


Primary Responsibilities:


This person is responsible for all aspects of network security engineering: design, implementation, optimization, monitoring and troubleshooting of our LAN, WAN, WLAN and DR networks.



  • Provide technical support for numerous standalone and network systems to include penetration testing, vulnerability scanning, virus updates, patches, service packs, and hot fixes, policies related to onboarding/offboarding, media controls, and ensuring all secure related documentation is notated as required.
  • Monitor networks and systems for security breaches, through the use of software that detects intrusions and anomalous system behavior.
  • Perform vulnerability scans, analyze results and assist with the remediation as necessary.
  • Conduct regular audits to ensure authorized systems are being operated securely and computer security policies and procedures are implemented as defined in system security plans. Conduct investigations of anomalies found during audit trail analysis.
  • Participate in security related investigations as needed to ensure that policy defined tasks are completed.
  • Ensure access to all information systems is controlled, both internally and externally, relative to the level of potential risk and recommend appropriate corrections.
  • Leverage security best practices to assess, design, test, approve, implement, and support new and existing multi-tier solutions in multiple sites and data centers.
  • Create accurate network diagrams and documentation for planning security-based changes, investigating network impact, and issuing resolution procedures.
  • Ensure that IT personnel are trained on security restrictions and safeguards before they are initially allowed to access a system.
  • Provide awareness training to the organizational workforce on information security standards, policies and best practices.
  • Implement site procedures for marking, handling, and controlling, removing, transporting, sanitizing, reusing, and destroying media/equipment containing classified information.
  • Participate in and lead investigations pertaining to threat assessment and mitigation for both internal and external threats. Secretary of the Commonwealth Cyber Security Engineer
  • Investigate security breaches by leading the incident response to minimize impact, determine the cause of the breach, and ascertain the extent of the damage.


Technical Qualifications:


Bachelor's degree or higher in Information Technology or other engineering or technical discipline and at least 6 years IT experience and minimum 4 years Cyber Security Information experience. Four year relevant experience may be substituted with professional certification



  • Certified Information Systems Security Professional (CISSP) ? CISA - Certified Information Systems Auditor (CISA)
  • CEH - Certified Ethical Hacker (CEH)
  • CISM - Certified Information Security Manager (CISM)
  • ISSAP - Information Systems Security Architecture Professional (ISSAP)
  • ISSEP - Information Systems Security Engineering Professional (ISSEP)


Experience with Windows 7/10, Windows Server 2003/2008/2012/2016, Windows Domains, Active Directory, and GPO's.


In depth understanding of NIST SP 800-61.


Familiarity with routers, switches, firewalls, load balancers, proxies, accelerators, and wireless technologies. Preferred experience with Cisco and Nexus, F5 load balancer and ASM configuration and management, Checkpoint, Fortinet, Riverbed, Bluecoat, and Solarwinds products.


Strong ability with security policy administration, ACLs, IPS/IDS, port scanning and pen-testing tools.


Experience in threat management and assessment as it relates to physical security.


Experience with corporate security risk assessment, analysis and mitigating controls.


Experience in developing organization security policies and implementation of revised policies.


Experience with endpoint security solutions, including file integrity monitoring and data loss prevention.


Personal Attributes:



  • Uses problem solving techniques such as root cause analysis to resolve issues.
  • Excellent analytical and problem solving skills.
  • Ability to work independently on multiple projects.
  • Collaborates and assumes a technical leadership role when required.
  • Comfortable with presenting policies, mentoring colleagues on network security best practices.
  • Ability to explain network concepts to both fellow technical staff in detail, and to non-technical staff at an appropriate level.
  • Is effective in prioritizing tasks within a high-pressure competing environment.
  • Strong organizational skills.
  • Highly self-motivated and directed, with keen attention to detail.
  • Demonstrates excellent oral and written communication skills.
  • Demonstrates an interest in working hard in a fast-paced environment, enjoys challenges, and has fun while doing it.

Categories

  • Information Technology

Randstad utilizes a technology-driven focus with a human touch to provide better staffing and business solutions to organizations around the world. Our team of experts match professionals with available career opportunities in a variety of fields.

Featured Jobs

Career News

Share this job:

Cyber Security Engineer

Randstad Technologies
Boston, MA 02108

Share this job

Cyber Security Engineer

Randstad Technologies
Boston, MA
US

Separate email addresses with commas

Enter valid email address for sender.

Join us to start saving your Favorite Jobs!

Sign In Create Account
Powered ByCareerCast