Viking Cruises Ltd is a rapidly growing, privately held river and ocean cruise line. Founded in 1997 by Torstein Hagen, Viking has for over twenty years redefined and dominated the river cruise market. Viking only recently entered the ocean cruise market and earned the coveted “World’s Best Ocean Cruise Line” accolade from Travel & Leisure twice during its first two years in the ocean business.
With a ship operations office in Basel, Switzerland, approximately 5,000 Viking employees deliver services every day to our guests, while an additional 1,000 employees are focused on marketing and sales from our main offices in Woodland Hills, CA.The work culture at Viking Cruises is entrepreneurial, with a focus on small teams, action, results oriented, and constant improvement. Join us as we shape the future of world travel while building a world-class marketing organization.
Responsibilities
The Security Engineer will provide technical expertise to the global security program, implement security solutions for networks, systems, applications, data and devices, and deploy and manage security tools in order to monitor and detect vulnerabilities and threats.
MORE SPECIFICALLY, RESPONSIBILITIES INCLUDE:
·Perform network and application vulnerability assessments and penetration testing.
·Deploy and manage solutions to protect our core and perimeter networks.
·Deploy and manage solutions to ensure the confidentiality, integrity, and protection of all data.
·Orchestrate and test recommended security remediations including software and firmware patches.
·Drive the security efforts around Data Loss Prevention, Intrusion Prevention and SIEM analysis.
·Conduct deep analyses to provide security insights of the corporate environment.
·Deploy security monitoring tools, and review and troubleshoot security alerts.
·Lead the Security Awareness efforts, including facilitating presentations on topics of relevance.
·Review, interpret and translate customer, regulatory and corporate security and compliance requirements into technical design options.
·Deploy and manage solutions to ensure compliance with company policies, procedures, contractual, and regulatory requirements.
·Contribute to the security policies, standards, and guidelines.
·Perform security research as needed.
·Produce security risk advisories based on newly identified threats and risk assessment.
·Assist in performing IT audit, third party evaluations, and risk assessment activities.
QUALIFICATIONS
·7 years of experience in Information Security in a corporate environment.
·Bachelor’s degree in Information Technology, Computer Science or a related discipline.
·Excellent verbal, written, and presentation skills; in particular, demonstrated ability to effectively communicate technical and business issues and solutions to multiple organizational levels internally and externally as needed
·Solid analytical and problem-solving skills; ability to think strategically and turn ideas into actions.
·Ability to work with little supervision and consistently deliver results.
·A recognized information security certification CISSP or CEH.
·Deep understanding of security standards such as ISMS, ISO/IEC, PCI DSS, HIPAA, NIST, and CRAMM.
·Deep experience with Palo Alto NGFW and Panorama, Palo Alto Traps, Okta, DLP solutions, Proxies and Reverse Proxy, Citrix Web Application Firewall (WAF), Intrusion Detection and Prevention Systems, Remote Access and VPN, Tenable.io, Veracode SAST & DAST, SIEM, Splunk, Wireshark, SQLmap, NMAP, OpenDNS, Tokenization, VMware.
·Good understanding of SD-WAN, WLAN, Switches, Routers, Routing Protocols, IPSec, Citrix Netscaler, Windows Servers, Windows 10, Mac OSX, Microsoft Hyper-V, Amazon AWS Cloud, Microsoft Azure, NetApp, Microsoft O365, Active Directory and Azure Active Directory.
·Fundamental understanding of penetration testing techniques and technologies.
·Fundamental understanding of malware detection, analysis, containment, and removal.