Sorry, this listing is no longer accepting applications. Don’t worry, we have more awesome opportunities and internships for you.

IT Security Engineer

A

Affinity Development Group

IT Security Engineer

San Diego, CA
Full Time
Paid
Similar Jobs
  • Responsibilities

    Job Description

    SUMMARY

    The IT Security Engineer is responsible for maintaining company information security systems, processes, and procedures to protect and preserve the confidentiality, integrity, and availability of all data and information systems. This position will also drive support for security programs through security operations and documentation of all security-related tasks, working very closely with development & operations teams, product owners, and other groups.

     

    ESSENTIAL DUTIES AND RESPONSIBILITIES

    • Probe for vulnerabilities in web applications and standard applications
    • Pinpoint methods that attackers could use to exploit weaknesses and logic flaws
    • Review current corporate policies and help redefine procedures for better security
    • Install, configure, use and maintain scanning and testing tools
    • Manually verify security vulnerabilities identified by automated tools
    • Perform manual testing to supplement results of automated scanning and testing tools
    • Provide status and resolve issues that impact testing as required
    • Document identified security vulnerabilities and related matters in a clear, concise and timely manner
    • Meet with the operations and application teams to review, describe and explain identified security vulnerabilities and possible remediation
    • Retest application updates or deployed remediation logic to verify resolution of security vulnerabilities
    • Conducts Cloud & Network infrastructure reviews, Systems infrastructure, Application configurations, and Software Code reviews.
    • Update documentation as required
    • Maintain electronic or paper trail of testing activity for audit purposes
    • Maintain confidentiality of authentication credentials, sensitive application information, and test results before, during, and after completing testing and/or retesting
    • Investigate security breaches and other cybersecurity incidents
    • Work with the security team to perform tests and uncover network/systems/application vulnerabilities
    • Fix detected vulnerabilities to maintain a high-security standard
    • Stay current on IT security trends and news
    • Planning & Analysis
      • Will research and analyzes business trends and behavioral data to identify opportunities for improvements and new initiatives.
      • Drives the evaluation, development, and recommendation of specific technology products and platforms to provide cost-effective solutions that meet business and technology requirements.
      • Research and design best-fit infrastructure, network, database, and security architectures for products.
      • Proactively creates and maintains tools for monitoring and support.
      • Participates in project planning and reporting across multiple efforts
    • Support and Enablement
      • Provide 3rd Level support and troubleshooting
      • Collaborates with product and project teams to understand needs and enable them with infrastructure.
      • Support technology architecture design review efforts for project and product teams.
      • Leverages tooling and custom applications to monitor the operational status of applications, infrastructure, networks, databases, and security; optimizes and tunes performance as appropriate.
      • Drives root cause analysis, debugging, support, and post-mortem analysis for security incidents and service interruptions.
      • Maintains, upgrades, and supports existing systems and infrastructure to ensure operational stability.
      • Opens and manages vendor problem tickets to resolution.
      • Creates scripts and tools that drive automation and enable product teams and end users to move towards self service.
    • Learning
      • Keep abreast of innovations and industry trends and changes to internal systems and determine how they impact tools, training, and support necessary to keep systems up, running, and secure.
      • Participates in and contributes to learning activities around modern systems engineering core practices (communities of practice)
      • Proactively views articles, tutorials, and videos to learn about new technologies and best practices being used within other technology organizations.
      • Other duties as assigned

     

    REQUIREMENTS/QUALIFICATIONS

    • 5 years of combined IT and security work experience with a broad range of exposure to systems analysis, application development, database design and administration; minimum of 2 years of experience with information security
    • Preferred certifications include OSCP, CEH, Sec+, CISSP, CISM, CSSLP, and/or CISA
    • Advanced Information Security technical skills and understanding of information security practices and policies
    • Knowledge of cyber-attack stages (e.g., reconnaissance, scanning, enumeration, gaining access, escalation of privileges, maintaining access, network exploitation, covering tracks)
    • Proven history of ensuring compliance with PCI or other regulatory security compliance
    • It requires someone with a good understanding of Information Security, Secure Coding, and IT Operations.
    • Must be passionate about helping others, mentoring, and training other team members.
    • Ability to work on-all as needed

     

    Apply online at:  https://recruiting.paylocity.com/recruiting/jobs/Apply/482744/Affinity-Development-Group/IT-Security-Engineer 

    Company Description

    Costco Auto Program adds value to Costco membership by delivering exclusive savings and a no-hassle buying experience through our national network of Approved Dealerships and exclusive partnerships with vehicle manufacturers. Headquartered in San Diego, California, with an office in Reno, Nevada and representatives spread across the nation, Costco Auto Program offers a variety of opportunities for career development and growth.