Facility Security Officer responsible for developing and administering security programs for classified materials. Overseeing compliance with federal security regulations at the Rochester, NY site.
About the role
- Senior Security Engineer overseeing Cyber Security Projects at Verinext. Supporting enterprise technologies while enhancing information system security and compliance.
Responsibilities
- Act as technical hands-on for Cyber Security Projects.
- Support Enterprise Security Technologies.
- Client Management platforms.
- Assess and modify procedures to ensure the safety of information systems assets and to protect systems from intentional or inadvertent access, modification, or destruction.
- Write security reports and make recommendations.
- Prioritize remediation of gaps based on internal and external audits.
- Work with stakeholders to provide security solutions that support their business requirements
- Identify, develop, and implement mechanisms to detect security incidents in order to enhance compliance with and support of security standards and procedures in place.
- Conduct security risk assessments on new products and systems, periodic security risk assessments on existing systems and identify and/or recommend appropriate security countermeasures and best practices.
- Respond to discovered security incidents by informing appropriate custodians, determining root cause, and identifying and executing remedial actions (if necessary) required to re-establish respective information system security.
- Assist management in setting up strategic planning of information security, compliance and internal audit policies and procedures to ensure compliance with the security and privacy regulations and state and federal laws protecting customer and employee confidentiality and privacy.
- Maintain awareness of changes in security risks, security measures, and computer systems assessing new requirements for current and emerging compliance regulations.
Requirements
- In lieu of a degree, 10 or more years of relevant experience may suffice. Bachelor's degree in Computer Science preferred.
- Minimum of 10 years of information systems security or related auditing experience.
- Preferred certifications: CCNA, CCNP, CISSP, CEH, CISA or equivalent.
- Hands-on experience with client management tools like SCCM, Intune, Altiris or BMC Client Management, with full lifecycle experience in endpoints and servers.
- Ability to clearly communicate Information Security matters to executives, auditors, end users, and engineers, using appropriate language, examples, and tone.
- Strong analytical, technical, and problem-solving skills.
- Ability to work effectively, independent of assistance or supervision.
- Self-starter, Innovative, creative, and extremely responsive, with a strong sense of urgency.
- Willing to share knowledge and assist others in understanding technical and business topics.
- Willingness to work outside of regular business hours as required, which can include evenings, weekends, and holidays.
- Experience with a variety of security products including, but not limited to, endpoint security, network security, MFA, and DMZ silos.
- Working knowledge of information systems security standards and practices (e.g., access control and system hardening, system audit and log file monitoring, security policies, and incident handling).
- Experience with TACACS+, IDS, IPS and various SIEMS.
- Working knowledge of protocols and technologies such as Secure DNS, TCP, NTP, UDP, SSL, TLS, SFTP, SMTP, and DHCP.
- At least one technical certification related to a major platform.
- Ability to quickly understand security systems in order to identify and validate security requirements.
Job title
Job type
Experience level
Salary
Not specified
Degree requirement
Tech skills
Location requirements
Security Support D managing security processes essential for classified operations. Focused on document control, compliance, and training within a regulated environment.
Intern supporting cybersecurity consulting with Guidehouse's federal clients. Engaging in hands - on projects and learning development opportunities within a structured internship program.
Security Engineering Manager leading network security engineering team at General Motors. Ensuring the reliability, performance, and security of global network infrastructure supporting automotive technologies.
VP, Information Security Officer managing cyber risk and advisory services at State Street. Collaborating with teams to protect digital assets and enhance security measures across the organization.
Senior Security Consultant enhancing AI security solutions at BAE Systems. Conducting security assessments and advising clients on AI risk management in national security projects.
IT Security Specialist focusing on cyber defense within a family - owned company. Responsibilities include managing firewalls, monitoring threats, and implementing security solutions.
Junior Information Systems Security Engineer at AMERICAN SYSTEMS managing DoD cyber security. Collaborating on technical issues and supporting risk management framework compliance.
Information Systems Security Engineer assisting in cyber security requirements for DoD systems. Collaborating closely with customers and ensuring compliance with the DoD Risk Management Framework.
Staff Product Security Engineer driving security innovation while ensuring compliance with federal standards at DataRobot. Leading security engineering, automation, and customer engagement for federal customers.