Security Engineer (Onsite) bei SC Data Center, Inc.
SC Data Center, Inc. · Monroe, Vereinigte Staaten Von Amerika · Onsite
- Professional
- Optionales Büro in Monroe
Job Description
SC Data Center, Inc. is an affiliate company of Colony Brands, Inc., which is one of the world’s largest and most successful direct marketing catalog and e-Commerce companies. To support our growing business, we are seeking a Security Engineer to promote and execute our information security programs, policies and related regulatory compliance so that we may support and protect our customers, company, and affiliates. We operate with a lean team that necessitates a strong multi-tasking and multi-faceted skillset. If you’re an IT professional with experience in both the engineering side and process/procedure development side of security and don’t want to be restricted to a niche area – this position should interest you!
What You’ll Do
The Security Engineer is a critical member of the IT Security team and works closely with the other members of the team to develop and implement a comprehensive information security program. You’ll work across IT to select and deploy technical controls to meet specific security requirements and define processes and standards to ensure that security configurations are maintained.
In general, you’ll be responsible for defining and promoting the information security policies, processes, and standards by designing technologies in a secure manner, monitoring compliance against company policies, applicable law(s), investigating and reporting of security violations and incidents. You’ll report and advise on information security issues to ensure internal security controls are appropriate and operating as intended. You’ll analyze information and processes to balance normal vulnerability levels with investment, personnel and end-user capabilities.
You’ll also be responsible for:
• Serving as a subject matter expert to the business and providing security guidance
• Partnering with Project Teams to facilitate and implement new systems, policies, and processes
• Partnering with Managed service SOC to coordinate centralized logging and identification of security incidents or misconfigured security controls
• Coordinating/conducting responses to information security incidents (ability to begin forensic investigation as part of the Incident Response process)
• Preparing documentation, business notifications, and security alerts
• Daily interaction with our employees on security alerts from EDR (Endpoint Detection & Response), SIEM (Security Incident & Event Management), Phishing identification tools, and general service tickets.
• Researching, recommending, and developing security and risk mitigation solutions
Note: This position is not eligible for Visa Sponsorship.
What You’ll Do
The Security Engineer is a critical member of the IT Security team and works closely with the other members of the team to develop and implement a comprehensive information security program. You’ll work across IT to select and deploy technical controls to meet specific security requirements and define processes and standards to ensure that security configurations are maintained.
In general, you’ll be responsible for defining and promoting the information security policies, processes, and standards by designing technologies in a secure manner, monitoring compliance against company policies, applicable law(s), investigating and reporting of security violations and incidents. You’ll report and advise on information security issues to ensure internal security controls are appropriate and operating as intended. You’ll analyze information and processes to balance normal vulnerability levels with investment, personnel and end-user capabilities.
You’ll also be responsible for:
• Serving as a subject matter expert to the business and providing security guidance
• Partnering with Project Teams to facilitate and implement new systems, policies, and processes
• Partnering with Managed service SOC to coordinate centralized logging and identification of security incidents or misconfigured security controls
• Coordinating/conducting responses to information security incidents (ability to begin forensic investigation as part of the Incident Response process)
• Preparing documentation, business notifications, and security alerts
• Daily interaction with our employees on security alerts from EDR (Endpoint Detection & Response), SIEM (Security Incident & Event Management), Phishing identification tools, and general service tickets.
• Researching, recommending, and developing security and risk mitigation solutions
Note: This position is not eligible for Visa Sponsorship.
Employment Type
Regular/Full-Time
Qualifications
What It Takes
This role requires someone that enjoys variety in their everyday work with significant technical knowledge around information security engineering and policy/procedures. Ideally you will have a bachelor’s degree in MIS, Computer Sciences, Information Technology or related discipline and 3+ years’ related business experience.
In addition, we are looking for:
• A Broad and in-depth understanding of information security and information technology auditing
• A commitment to continuous improvement and knowledge growth; this role requires someone who will stay current with security technologies
• Documented ability to utilize security systems such as , vulnerability scanners, logging software, Multi Factor Authentication, SAML Federation, and experience with patch management processes
• Experience with diverse desktop and server environments, networking, and operational security technologies both on premise and in the Cloud (AWS preferred)
• Solid written and verbal communication skills at all comprehension levels. Experience with driving Security Awareness programs is desired.
• CISSP Certification is preferred
• Experience working with small to mid-size companies is helpful
• PCI, SOC1, Audit &/or HIPPA experience is a plus
This role requires someone that enjoys variety in their everyday work with significant technical knowledge around information security engineering and policy/procedures. Ideally you will have a bachelor’s degree in MIS, Computer Sciences, Information Technology or related discipline and 3+ years’ related business experience.
In addition, we are looking for:
• A Broad and in-depth understanding of information security and information technology auditing
• A commitment to continuous improvement and knowledge growth; this role requires someone who will stay current with security technologies
• Documented ability to utilize security systems such as , vulnerability scanners, logging software, Multi Factor Authentication, SAML Federation, and experience with patch management processes
• Experience with diverse desktop and server environments, networking, and operational security technologies both on premise and in the Cloud (AWS preferred)
• Solid written and verbal communication skills at all comprehension levels. Experience with driving Security Awareness programs is desired.
• CISSP Certification is preferred
• Experience working with small to mid-size companies is helpful
• PCI, SOC1, Audit &/or HIPPA experience is a plus
Job Category
IT
About Us
At SC Data Center we pride ourselves on being a customer-focused organization dedicated to excellence in information technology, and contact center services. As a proud affiliate of Colony Brands, one of North America’s leading multi-channel, direct-marketing companies, we leverage our extensive experience to deliver top-notch service and solutions.
Benefits Details
Colony Brands is not just about growing our profits – We are about giving our employees the opportunity for growth and providing a better place to live and work. We also offer our employees many great rewards in addition to monetary compensation:
City
Monroe
