- Location: NY, NY
- Type: Direct Hire Hybrid
- Job #8979
The purpose of this position will be to help us with the various security projects and tasks that are necessary to ensure that we adhere to the security policies set in place by parent company. This position will play a critical role in protecting our users and technology stack from threats and vulnerabilities. Working closely with security teams in other regions of the world (APAC and EMEA), this position plays a key function in the “follow the sun” process.
RESPONSIBILITIES:
Monitoring and support
Responsible for monitoring IT systems for compliance and threats (firewall, Intrusion detection, antivirus, ITSM, etc.)
Provide support and help to users that maybe affected by malware, phishing scams and spoofed users.
Administer and manage our security solution so that we are utilizing all the tools that can help secure our environment and protect our users
Coordinate incident management, involving parent company if necessary, until resolution
Participate and/or lead some small security projects
Prevention
Participate in audits and remediation deployment (security action plans and checklists)
Conduct periodic internal and external vulnerability scans and work on remediating findings.
Provide companywide security alerts to known vulnerabilities.
Reviews access controls, authorization levels and user roles for compliance.
Provide user training and awareness efforts as appropriate so that users are more knowledgeable on the latest security threats and scams.
Provide recommendations on best practices to improve our security posture.
QUALIFICATIONS:
Technical Experience and Systems
At least 5 years of work-related experience
An associate’s or bachelor’s degree in computer science, cyber security, or a related field is preferred.
Experience with security and remediation for firewalls, systems and cloud solutions.
Experience with payment processing of PCI DSS.
Maintain documentation and changes
Experience with designing and development of security solutions. Ie – Antivirus, IPS, Identity access management, DLP, MFA, SSO
Cloud security (Azure, GCP, AWS)
Active Directory/ Entra ID
Network Administration
Good understanding and experience with the Windows Server and Desktop OS.
Strong understanding of networking and network services. (Firewall, DNS, Routing Protocols, TCP/IP, VLANs and VPNs)
Solid grasp of security concepts and best practices.