IT Consultant specializing in Security Engineering, working on national and international IT Security projects. Responsible for identifying security vulnerabilities and assisting customers' Security Management.
UG
Hybrid Senior Information Security Engineer
Posted yesterday
About the role
- Senior Information Security Engineer designing and maintaining security solutions for Utica National Insurance Group. Collaborating across teams to defend against cyber threats and ensure compliance.
Responsibilities
- Design, implement, configure, maintain, and support the end-to-end Security Framework including IPS/IDS, endpoint protection, email and URL filtering, SIEM, vulnerability assessment/scanning, ATP solutions, DLP solutions, MFA and SSO solutions, cloud security, WAFs, and more.
- Lead Security Operations – configure alerts to protect against cyber threats, review configurations, and tune systems as needed.
- Respond to and investigate potential or actual security incidents.
- Lead all phases of Incident Response (Preparation, Identification, Containment, Eradication, Recovery, and Lessons Learned).
- Handle escalated security alerts and approve mitigation plans.
- Research, evaluate, design, configure, and maintain security solutions.
- Develop and manage the Vulnerability Management Program, review scan results, and approve mitigation plans.
- Perform penetration testing and coordinate third-party testing; review results and remediation plans.
- Conduct risk assessments, document threats and vulnerabilities, and develop mitigation strategies.
- Evaluate current systems and recommend improvements.
- Perform health checks and best practice reviews for security solutions.
- Conduct threat modeling/hunting using industry frameworks.
Requirements
- Bachelor’s degree in Computer Science, Engineering, or related field preferred
- Industry certifications such as CEH, CISSP, CCSK, CCSP, CISM, OSCP, PenTest+ are desirable
- 7–10 years of hands-on experience in Cybersecurity required
- Strong knowledge of security frameworks, IT infrastructure, cloud services, and regulatory requirements
- Ability to work after hours, nights, weekends, and holidays as needed for incident response.
Benefits
- Medical and Prescription Drug Benefit
- Dental and Vision Benefits
- Life Insurance and Disability Benefits
- 401(k) Profit Sharing and Investment Plan
- Health Savings Account (HSA) & Flexible Spending Accounts
- Tuition Assistance, Training, and Professional Designations
- Company-Paid Family Leave & Adoption/Surrogacy Assistance
- Voluntary Benefits (Accident, Critical Illness, Legal, Pet Insurance, etc.)
- Student Loan Refinancing Services
- Care.com Membership with Back-up Care
- Paid Volunteer Day & Matching Gifts Program
- Wellness Programs and more
- Personal Insurance Discount
Job title
Job type
Experience level
Salary
Degree requirement
Tech skills
Location requirements
IT Info Security Specialist managing ERIE's information security program to protect digital assets. Collaborating with various teams to enforce security measures and resolve identity access issues.
CISA Auditor Cyber Security at an international bank, planning and conducting IT audit examinations, focusing on cyber threats. Requires IT auditing experience and a Master in Information Systems or Engineering.
Security Engineer responsible for managing cyber risk remediation measures at Tiime startup in Paris. Collaborating with product teams to ensure application security and risk evaluation.
Cybersecurity Engineer managing complex IT environments and providing support for clients. Involved in cloud, cybersecurity, and managed services within a dynamic startup environment.
Security Engineer ensuring compliance and managing security processes at Relax Gaming. Responsible for security operations, risk assessments, and developing secure systems.
Information Security Consultant at heyData supporting businesses in compliance with DORA and ISO 27001. Engaging with clients and enhancing security offerings in a dynamic startup environment.
Information Security Manager at NVISO, leading cybersecurity initiatives and managing a team of consultants. Focused on enhancing clients’ security posture through strategic program implementation.
Senior Cyber Security Consultant working to enhance software development security for diverse clients. Collaborating with major international firms while leading projects in secure application development.
Information Security Officer at Specialty Systems supporting cybersecurity for Navy systems. Role involves RMF implementation, vulnerability management, and collaboration with technical teams.