Job Description Information Security Engineer
Job Description
INFORMATION SECURITY ENGINEER – WE OFFER A COMPETITIVE BENEFITS PACKAGE!
THE COMPANY: GIA is the world’s foremost authority in gemology. GIA is a global organization with headquarters located in Carlsbad, CA. GIA in Carlsbad boasts a 17-acre ocean view campus that accommodates approximately 800 of its 3,000 total employees worldwide. It offers many competitive health and commuter benefits that promote the well-being of its employees as well as that of the environment.
THE LOCATION: This position is located in Carlsbad, California at our corporate headquarters. We offer a flexible work-from-home schedule, with a few days in the office per month.
WHAT TO EXPECT:
JOB OVERVIEW:
The Information Security Engineer (ISE) reports to the Director, Information Security and is primarily responsible for security incident response, security technology implementation, and vulnerability management.
RESPONSIBILITIES:
Incident Response (75%)
· Responds to information and cyber security incidents by analyzing logs, threat intel, and other sources of information.
· Acts as a liaison between the Information Security team and GIA businesses to track and monitor incident response status updates as needed.
· Analyzes alerts generated by security tools to reduce false positives and increase alert effectiveness.
· Conducts root cause analysis to identify process or technology gaps from security incidents and provides remediation recommendations to reduce risk.
· Documents and tracks security alerts and incidents using internal standard tracking process and platform.
· Develops, documents and reports business-level metrics for incident response progress.
· Develops reports, dashboards, and data visualizations as needed for senior management, operational teams, and other stakeholders.
· Regularly reviews and updates Incident Response SOP and playbooks as appropriate.
· Other duties as assigned.
Security Engineering (15%)
· Identifies gaps in the current state of security operations and implements process and/or technology improvements to increase organization’s security capability.
· Identifies ways to improve security operations through process enhancement and automation for vulnerability management, incident response, and other areas, works with process or technology stakeholders to implement improvements.
· Identifies and integrates threat intelligence into vulnerability and incident response technology and process.
· Supports Security Operations teams in the daily running of security tools deployed in the environment.
· Creates and maintains security engineering SOP documentation.
· Other duties as assigned.
Vulnerability Management (10%)
· Creates and oversees vulnerability scanning jobs and/or assessment tasks within a variety of security tools for infrastructure and application.
· Serves as a point of contact on issues, dependencies, and risks related to vulnerability scanning.
· Reports and tracks the end-to-end vulnerability life cycle from discovery to closure.
o Reviews the list of vulnerabilities and works with IT and application, or business team to remediate the findings.
o Researches and provides guidance for addressing vulnerabilities, which could include system patching, deployment of specialized controls, standards, or infrastructure changes, and/or changes in development processes. Identifies and resolves false positive findings in assessment results.
o Maintains knowledge of the threat landscape and threat intelligence feeds to identify and triage new threats and vulnerabilities targeting GIA.
· Develops, documents and reports business-level metrics for vulnerabilities and remediation progress.
· Develops reports, dashboards, and data visualizations as needed for senior management, operational teams, and other stakeholders.
· Supports information security risk management activities, recommends security controls, corrective and preventative actions to mitigate vulnerability risks.
· Other duties as assigned.
TECHNICAL COMPETENCIES (KNOWLEDGE, SKILLS & ABILITIES)
Moderate working experience with at least two of the following domains:
· Vulnerability scanners.
· Application Whitelisting.
· Mobile device security.
· SIEMs management, data correlation and dashboard building.
· Anti-exploitation and host hardening.
· Spam and Email Filtering.
· Database protection tools.
· Knowledge in Python, Powershell, Regular expression and other languages is a plus.
Knowledge
· Experience with vulnerability scanning and measurement tools such as Qualys, Tenable, or Rapid 7.
· Knowledge of system/network security and security best practices (network ACLs, authentication mechanisms, OS hardening).
· Operational experience and proficiency across IT and security technologies: general operating systems (Windows, Mac, Linux), relational databases, DNS, NGFW, WAF, secure web gateways, endpoint security, data protection, CASB, LMR, threat intelligence, vulnerability scanners, sandboxing, SIEM, DLP, virtualization and cloud computing.
· Knowledge of OWASP top ten and ASVS.
· Experience with vulnerability and penetration testing. Proficient with security analysis of computers, networks and application vulnerabilities and weaknesses.
· Understanding of ISO27001, NIST CSF, and common Risk Management Framework terminology, processes, characterization models, etc.
· Understanding of DevOps with Security focus.
Behavioral Standards
· Exhibits excellent customer and service-oriented behaviors in everyday work interactions.
· Demonstrates a courteous and respectful attitude to internal workforce and external customers.
· Able to work under pressure and time constraints. Plans work and time effectively to manage conflicting or shifting priorities and achieve goals aligned with business needs.
Communications
· Ability to present highly technical and complex information into “simple English” that is consumable by management and non-technical audiences.
· Provides accurate and timely written and verbal communication of information in a manner that is understood by all.
· Able to listen, understand, problem-solve, and carry-out duties to ensure the optimal outcome.
· Contributes to effective communication and sharing of information both in and out of the department.
· Able to effectively present technical information to audiences inside and outside of the department.
Collaboration
· Contributes toward effective, positive working relationships with internal and external colleagues.
· Demonstrates cooperation, flexibility, reliability, and dependability in all daily work activities and a willingness to collaborate with others for the good of the customer and the organization.
· Must be able to function in a dynamic environment subject to impromptu changes in schedules and priorities.
· Ability to work effectively individually or in a group setting; encourages collaboration and knowledge sharing. Comfortable with ambiguity and uncertainty.
EDUCATION AND EXPERIENCE:
· Bachelor's Degree in Engineering, Computer Sciences, Information Technology, or related field; or equivalent combination of education and experience.
· 1-2+ years of experience in Cybersecurity and related field.
· 1-2+ years of Security Operation environment.
· 1-2+ years with Python, PowerShell, or regular expression languages preferred.
CERTIFICATIONS:
· CISSP (Certified Information Systems Security Professional) desirable.
· CISM/CISA (Certified Information Security Manager/Auditor) desirable.
· SANS GIAC (Global Information Assurance Certification) desirable.
PHYSICAL REQUIREMENTS / WORK ENVIRONMENT
· Work is performed in a designated professional office workstation and environment
· Extensive use of office equipment to include computer, calculator, copier, fax, and other business-related machines and software
The salary range for this position is $80,000-$128,000.
Company Description
The Company: GIA is the world s foremost authority in gemology. GIA is a global organization with headquarters located in Carlsbad, CA. With more than 3,500 employees, GIA is a place of diversity, innovation, creativity and engagement. Whether you are passionate about science, history, design, education, cutting-edge technology or bringing your corporate expertise to advance our mission, GIA has a place for you.