Senior Cyber Security Engineer

Join to apply for the Senior Cyber Security Engineer role at Rosen's Diversified, Inc.

2 weeks ago Be among the first 25 applicants

Join to apply for the Senior Cyber Security Engineer role at Rosen's Diversified, Inc.

The Senior Cyber Security Engineer is responsible for the design, development, and maintenance of systems that protect computer networks and data. This includes developing security plans, installing software to secure networks and computers, and monitoring systems for signs of intrusion.

Location

Available for remote work in Minnesota, Wisconsin, Nebraska, Missouri, and Illinois.

ESSENTIAL FUNCTIONS AND RESPONSIBILITIES

1. Security Architecture Design: Develop and maintain a robust security architecture framework that aligns with industry standards, regulatory requirements, and organizational goals. Design scalable and adaptable security solutions to protect against current and emerging cyber threats.
2. Assist in developing and evaluating compliance with security architecture standards, frameworks, and guidelines.
3. Participate in security strategy planning as needed, including but not limited to:
4. Incorporate security developed strategies into new technology business initiatives.
5. Review systems to report on inconsistencies between design and actual functionality.
6. Understand the relationships between various systems - networking, server, EDI, manufacturing, etc. and consider all stakeholders when reviewing business needs.
7. Emphasize security best practices and ensure adoption across corporate solutions.
8. Analyze existing infrastructure designs and strategies to ensure they are adequately meeting the organization's needs.
9. Compare proposed technical designs against Company standards, industry best practices, etc. to ensure systems mesh with existing infrastructure, skillsets, and security posture.
10. Present recommendations to leadership.
11. Research emerging technologies to assess fit for business needs.
12. Translate business requirements into written designs in line with Company and industry standards.
13. Deploy technology as per written designs in line with Company and industry standards, including:
14. Develop and review project testing and implementation plans and project timelines.
15. Follow project testing and implementation plans and project timelines.
16. Recommend, review, and create documentation as needed for any new or changed project or technology.
17. Evaluate final project outputs for success against project design and build baselines.
18. Leverage proof-of-concept engineering security initiatives for system additions or changes.
19. Design and implement monitoring systems to support enterprise security.
20. Review and participate in business continuity and disaster recovery strategy development.
21. Provide technical support and guidance to users.
22. All other duties as assigned.

QUALIFICATIONS, KNOWLEDGE, SKILLS, AND EXPERIENCE

• Bachelor’s degree in computer science or in an equivalent area of specialty is preferred.
• Minimum of 7+ years of experience in the field or related area with 3+ as a Security Engineer.
• Experience or exposure to appropriate systems such as:
• Windows Server operating systems and Active Directory domains.
• Cloud infrastructure environments such as Microsoft Azure, Amazon AWS.
• Cloud identity platforms such as Microsoft EntraID.
• Virtualization platforms such as VMware, Hyper-V, Nutanix, etc.
• Network infrastructure systems (routers, switches, wireless, firewalls, load balancers).
• Secure Web Gateway (SWG) solutions such as forward internet proxies.
• Zero Trust Network Access (ZTNA) solutions such as reverse application proxies.
• Identity security best practices & solutions including PAM, MFA, and least privilege.
• Log aggregation & SIEM design, operation, and optimization.
• Vulnerability management, scanning, and analysis.
• A variety of application solutions (web, database, etc.).
• Core infrastructure services (DNS, DHCP, VoIP).
• Operational Technology (OT) security best practices.
• Prior audit or industry framework experience is desired. Examples: SOX, SOC1, ISO, PCI, HIPPA, NIST.

ADDITIONAL SKILLS/EXPERIENCE/REQUIREMENTS

• Strong knowledge of security engineering discipline in one or more of the following domains: network security, cloud security, endpoint security, or application security.
• Strong decision-making capabilities, with a proven ability to weigh the relative costs and benefits of potential actions and identify the most appropriate one.
• Strong problem-solving and trouble-shooting skills.
• Knowledge of security standards and regulations, such as PCI DSS, HIPAA, or NIST CSF.
• Experience with cybersecurity tools such as vulnerability scanners, network firewalls, cloud security, penetration testing, and security frameworks.
• Experience with vendor management is desired.
• Foster communication and collaboration between Security team and other IT teams.
• Familiar with standard concepts, practices, and procedures within field. Performs varied tasks.
• Strong technical aptitude, creativity, and ability to research and solve complex issues.
• Ability to effectively communicate issues and resolutions to all levels of the organization.
• Ability to work both alone and within a team and established standards.
• Experience documenting, project tracking and management reporting.
• Mandatory travel to Green Bay, WI for quarterly onsite meetings and other company travel, as necessary up to 20% of the time.