This site uses cookies. To find out more, see our Cookies Policy

Systems Security Engineer in Lansing, MI at AF Group

Date Posted: 4/28/2018

Job Snapshot

Job Description



SUMMARY:



Research, implement and manage tools used for proactive monitoring of security threats. Manage incident response, conduct internal reviews on a periodic basis to measure compliance with policy and assist in external audits and assessments. Develop culture of security and conduct ongoing security awareness program. Assist in establishing company information security program. Active participation in all projects for security requirements to ensure that all projects incorporates security requirements. Ensures that technology risks are identified and managed according to the risk culture of the enterprise and advises management about risks to the business due to the implementation of technology used to operate the business. S/he will also perform compliance activities to ensure the successful implementation of the program and consult with technical and business teams regarding their changing business and technical plans to ensure that information security issues are addressed early in a project's lifecycle.





RESPONSIBILITIES/TASKS:




  • Configure and install security infrastructure including but not limited to firewalls, VPN, IDS/IPS, Anti-Malware and web/mail Filtering solutions.
  • Investigate intrusion incidents, conduct forensic investigations and mount incident responses.
  • Implement and upgrade security measures and controls.
  • Perform vulnerability testing, risk analyses and security assessments.
  • Recommend and install appropriate tools and countermeasures.
  • Create new ways to solve existing production security issues.
  • Collaborate with colleagues on authentication, authorization and encryption solutions.
  • Evaluate new technologies and processes that enhance security capabilities.
  • Participate in evaluating new hardware and software technologies and provide an assessment of the risks/vulnerabilities and recommend mitigation strategies.
  • Test security solutions using industry standard analysis criteria.
  • Implement strategies to improve the reliability and security of IT projects.
  • Defend systems against unauthorized access, modification and/or destruction.
  • Development and maintenance of the Company information security program, including policies, standards and guidelines to protect information against unauthorized modification or loss.
  • Act as a liaison on security matters between Internal Audit and IT, reviewing all audit reports and responses to ensure timeliness and effectiveness of corrective actions.
  • Contribute to the evolution of the risk analysis and IT workflow processes.
  • Provide management with regularly scheduled "State of the Information Security Program" reports.
  • Advise management of changes in the technical, legal and regulatory arenas affecting information security and computer crime.
  • Develop and foster relationships with both business and technology customers and maintain strong relationships with technical teams.





    This position description identifies the responsibilities and tasks typically associated with the performance of the position. Other relevant essential functions may be required.





    EMPLOYMENT QUALIFICATIONS:



    EDUCATION OR EQUIVALENT

    EXPERIENCE:



    Bachelor's degree in computer science or related field required. . Combinations of relevant education and experience may be considered in lieu of a degree. Continuous learning, as defined by the Company's learning philosophy, is required. Certification or progress toward certification is highly preferred and encouraged.





    EXPERIENCE:



    Systems Security Engineer:

    Seven years of progressively more responsible experience in an IT, information security, multiple computing environments, information security applications, or related environment with demonstrated technical knowledge which provides the necessary skills, knowledge and abilities. Certifications in GIAC, CISSP, SSCP, CISM, CEH, CISA, or Security+ preferred.





    SKILLS/KNOWLEDGE/ABILITIES (SKA) REQUIRED:




  • Ability to research security utilizing various resources.
  • Thorough knowledge of the Internet as an information resource and related networking and security technologies.
  • Thorough knowledge of OSI layers 1-4
  • Knowledge and experience with Palo Alto Next-Generation Firewalls
  • Hands on experience in multiple security areas such as: Intrusion Detection Prevention, Enterprise Anti-Virus, Identity and Access Management, Threat Management and Vulnerability Management.
  • Excellent oral and written communication skills.
  • Ability to effectively present budgetary and/or cost information, and respond to questions as appropriate.
  • Ability to establish work flows, manages multiple projects, and meet necessary deadlines.
  • Works with minimum supervision and exercises sufficient discretion and independent judgment.
  • Demonstrated leadership abilities.
  • Ability to effectively exchange information clearly and concisely, and present ideas, reports facts and other information, and respond to questions as appropriate.
  • Ability to prepare necessary reports, spreadsheet development and cost analysis.
  • Ability to maintain confidentiality.
  • Ability to work varying hours, including evenings, weekends and holidays as required.
  • Ability to perform other assignments at locations outside the office.
  • Ability and proficiency in the use of computers and company standard software specific to position.





    WORKING CONDITIONS:



    Work is performed in an office setting with no unusual hazards. Some travel is required.



    The qualifications listed above are intended to represent the minimum education, experience, skills, knowledge and ability levels associated with performing the duties and responsibilities contained in this job description.



    We are an Equal Opportunity Employer. Diversity is valued and we will not tolerate discrimination or harassment in any form. Candidates for the position stated above are hired on an "at will" basis. Nothing herein is intended to create a contract.





    EMPLOYMENT QUALIFICATIONS:



    EDUCATION OR EQUIVALENT

    EXPERIENCE:



    Bachelor's degree in computer science or related field required. . Combinations of relevant education and experience may be considered in lieu of a degree. Continuous learning, as defined by the Company's learning philosophy, is required. Certification or progress toward certification is highly preferred and encouraged.





    EXPERIENCE:



    Systems Security Engineer:

    Seven years of progressively more responsible experience in an IT, information security, multiple computing environments, information security applications, or related environment with demonstrated technical knowledge which provides the necessary skills, knowledge and abilities. Certifications in GIAC, CISSP, SSCP, CISM, CEH, CISA, or Security+ preferred.





    SKILLS/KNOWLEDGE/ABILITIES (SKA) REQUIRED:




  • Ability to research security utilizing various resources.
  • Thorough knowledge of the Internet as an information resource and related networking and security technologies.
  • Thorough knowledge of OSI layers 1-4
  • Knowledge and experience with Palo Alto Next-Generation Firewalls
  • Hands on experience in multiple security areas such as: Intrusion Detection Prevention, Enterprise Anti-Virus, Identity and Access Management, Threat Management and Vulnerability Management.
  • Excellent oral and written communication skills.
  • Ability to effectively present budgetary and/or cost information, and respond to questions as appropriate.
  • Ability to establish work flows, manages multiple projects, and meet necessary deadlines.
  • Works with minimum supervision and exercises sufficient discretion and independent judgment.
  • Demonstrated leadership abilities.
  • Ability to effectively exchange information clearly and concisely, and present ideas, reports facts and other information, and respond to questions as appropriate.
  • Ability to prepare necessary reports, spreadsheet development and cost analysis.
  • Ability to maintain confidentiality.
  • Ability to work varying hours, including evenings, weekends and holidays as required.
  • Ability to perform other assignments at locations outside the office.
  • Ability and proficiency in the use of computers and company standard software specific to position.





    WORKING CONDITIONS:



    Work is performed in an office setting with no unusual hazards. Some travel is required.



    The qualifications listed above are intended to represent the minimum education, experience, skills, knowledge and ability levels associated with performing the duties and responsibilities contained in this job description.



    We are an Equal Opportunity Employer. Diversity is valued and we will not tolerate discrimination or harassment in any form. Candidates for the position stated above are hired on an "at will" basis. Nothing herein is intended to create a contract.

    Equal Opportunity Employer Minorities/Women/Protected Veterans/Disabled