Security Specialist

Reporting to the Manager, IT Security, the Security Specialist is an integral member of the IT & OT security program. Their focus includes secure access service edge, intrusion prevention, network access control, wireless security, firewall auditing, and review of vulnerability information. They assist in developing and implementing security policies and procedures, such as security auditing procedures and the use of firewalls and encryption routines. They prepare status reports on security matters to develop security risk analysis scenarios and response procedures. The Security Specialist enforces security policies and procedures by administering and monitoring security profiles, reviewing security violation reports, investigating possible security exceptions, updates, and maintaining and documenting security controls. They also educate users on network security standards and procedures.

This position requires full-time on-site presence.

• Education Required: A university degree or college diploma in Computer Science, Business, Engineering, or related discipline.
• 2-5 years of related work experience in an enterprise networking environment.
• CYSA+, CISSP certification or equivalent experience in a Security Operations work environment.
• Controlled Goods and Reliability Security Clearance.
• ITIL Foundations certification.
• Experience in network security hardware configuration, design, and administration; Azure networking & firewalling; Secure Access Service Edge design and administration; Operational Technology security fundamentals; Information Security fundamentals; and Security fundamentals.
• Proficient technical troubleshooting skills.

• Investigate and resolve problems of medium complexity.
• Act as a subject matter expert for network security and other technology areas.
• Provide work direction, technical support, and risk assessment for deployed components such as secure web gateway, private access, firewalling, & operational technology.
• Liaise with subject matter experts, operations teams, and support staff to refine technical specifications, system scope, and objectives.
• Review and assess proposed and deployed configurations, escalate findings, and manage closure of findings.
• Engage in Red Team/Blue Team exercises & Threat Hunting.
• Participate in “on-call” support.
• Actively coach others.