ROLE AND RESPONSIBILITIES
- Automate CIS hardening standards across all systems, along with minimizing open ports, and implement controls to automatically detect/record/correct deviations. Report on coverage status monthly.
- Oversee the vulnerability management system coordinating patch management to achieve KPI.
- Lead technical security investigations, including directing the 3rd party Security Operation Center.
- Lead technical incident response activities, including directing the 3rd party Managed Threat Response Team.
- Audit the user access review activities, at least quarterly, for identity systems including AD, Azure AD, role-based tools, groups memberships, and administrative or privileged accounts.
- Audit the user hardware life cycle weekly maximizing hardening and company control from drop shipment, to redeployment, to retirement and destruction. Ensuring KPIs for EDR, Configuration Management, and Encryption coverage are met and implementing corrective action plans when they are not met.
- Maintain the source of truth for applications and systems. Audit every system monthly for proper log forwarding and aggregation. Implement corrective action as necessary.
- Maintain the source of truth for IP addresses and URLs. Use vulnerability management systems weekly to find rogue IP and URL use. Implement corrective action as necessary.
- Maintain the source of truth for applications and systems. Audit every system quarterly for password policy enforcement, SSO, MFA, and other conditional access criteria. Implement corrective actions as needed.
- Audit Enterprise Password Management / Remote Desktop Management system monthly, to ensure the use of shared accounts is correctly logged and justified. Implement corrective action as necessary.
- Review Corrective Action Plan with Security Committee at least monthly.
- Provide and review reports including Vulnerability Management Report with Security Committee at least monthly.
- Assist as necessary with any other assigned duties that may arise.
- Provide mentoring and training to junior staff members.
SKILLS
- Advanced skill: Hardening tools e.g. CIS Toolkit or Similar
- Advanced skill: Configuration, Incident, Patch, and Vulnerability Management
- Advanced skill: Log configuration, aggregation, and reporting.
- Excellent communication skills both verbal and written.
- Experience with security audits, standards compliance, third-party security assessments i.e. ISO 27001, SOC 2 and HITRUST.
- Ability to handle multiple priorities at one time.
- Ability to make independent decisions.
- Ability to work in a team environment.
QUALIFICATIONS AND EDUCATION REQUIREMENTS
- University degree in the field of computer science and/or 10+ years of experience or equivalent work experience.
- Industry recognized certifications (CISSP, GCFA, GPEN, CEH, CCNA Security) or other equivalents.
- Qualified candidates must be legally authorized to be employed in the US and ITAR eligible.
COMPANY BENEFITS
- Medical, Dental and Vision Insurance
- Life, Short and Long-term Disability Insurance
- 401(k) after 90-days
- PTO and Paid Holidays
Salary range is $110-130k.