Engineer III – Information Security

This is a fully remote position, open to applicants in Pennsylvania, +1 more state.

📋 Description

• Conducts proactive research to identify vulnerabilities and recommends effective strategies to enhance security measures.

• Supports security initiatives and addresses issues across various Information Security Strategy and Cybersecurity domains.

• Aids in the development, refinement, and implementation of organization-wide security policies and procedures, ensuring compliance obligations are met.

• Reviews technical and functional design documents, and builds, maintains, and implements solutions for cybersecurity, data security, and cloud security.

• Contributes as a key team member on multiple projects, providing strategic and tactical guidance on cybersecurity initiatives.

• Engages with business and IT leaders to communicate security concerns and respond to requests for information and assistance.

• Assists Engineers I/II in performing both manual and automated penetration tests, vulnerability assessments, and other security evaluations on software applications, as well as secure code reviews.

• Delivers security briefings to inform stakeholders about critical issues that may impact the organization.

• Collects and analyzes reports, metrics, and key performance indicators for executive-level review.

• Collaborates closely with the Lead Engineer to uphold service-level agreements (SLAs) ensuring security controls are maintained.

• Guides, coaches, and mentors Engineers I/II in the execution of their responsibilities.

• Works alongside information security and line of business management to identify, develop, and implement information security solutions and controls.

• Coordinates with systems and network engineers to ensure compliance of servers and network devices with security standards.

• Designs security controls to safeguard data and systems while providing guidance and consultation on security policies.

• Partners with other IT teams to enhance cloud and application security practices.

• Effectively communicates advanced information security concepts to clients, peers, management at all levels, and vendors.

⛳️ Requirements

• Bachelor's Degree in Computer Science, Information Technology, or a related field, or equivalent relevant experience.

• Over 4 years of directly related experience, preferably in the realm of information security.

• Azure Security Engineer Certification.

• Certified Cloud Security Professional (CCSP).

• Certification in Information Security Strategy Management (CISM).

• Certified Information Systems Security Professional (CISSP).

• CompTIA Security+ Certification.

• Systems Security Certified Practitioner (SSCP).

🏝️ Benefits

• Traditional offerings such as medical, dental, and vision care.

• A comprehensive benefits package that emphasizes physical, emotional, financial, and social wellness.

• Support for working families, which may include backup dependent care, adoption assistance, infertility coverage, family-building support, behavioral health solutions, paid parental leave, and paid caregiver leave.

• A variety of training programs, professional development resources, and opportunities for participation in mentorship programs, employee resource groups, and volunteer activities.