Security & Infrastructure Engineer

Job description

The Infrastructure and Security team is looking for a talented individual to join as a security engineer.  The team is responsible for designing, implementing, and enforcing Sharpen’s Infrastructure and Security policies and procedures.  The Infrastructure and Security team is comprised of subject matter experts and we regularly conduct internal audits, risk assessments and perform incident response or forensics when needed.  The overall objective is to maintain a secure platform for Sharpen employees and clients.

 

Responsibilities:

The Infrastructure and Security Engineer is an integral role of the team.  The position is responsible for the management and administration of security related systems and applications.  This includes performing coordinated network penetration tests, system/application vulnerability assessments, risk assessments reviews, and security application administration (anti-virus, intrusion detection, data loss prevention, monitoring.)  This individual is a key participant in the investigation, evaluation, and remediation of security incidents.

 

Key Duties & Responsibilities:

  • Firewall policy management
  • Management and administration of security related systems and applications
  • Performing or coordinating penetration tests and vulnerability scans
  • Systems administration tasks (deployment, patching, configuration, and scanning)
  • Investigating and acting on security incidents
  • Oversee periodic monitoring and reviewing of audit records to ensure that activity is appropriate. Such activity would include, but is not limited to, logons and logoffs, file accesses, updates, edits and printing.
  • Assists senior management as needed with breach determination and notification processes under HIPAA, PCI, ISO 27001,  and applicable State breach rules and requirements
  • Serves as information security consultant to all departments for all data security related issues

Requirements

The Ideal Candidate will Possess:

  • Bachelor’s degree in computer science, information technology, or related field
  • Demonstrated organization, facilitation, written and oral communication, and presentation skills
  • Holds a certificate from security or coding related organization or industry
  • At least two years in a security related position performing tasks described in this document
  • Demonstrated skills in collaboration, teamwork, and problem-solving to achieve goals
  • Demonstrated skills in verbal communication and listening
  • Demonstrated skills in providing excellent service to customers
  • Proficient in Unix/Linux operating system
  • Ability to write shell, perl or python scripts.  Advanced programming knowledge a plus
  • Knowledge of industry best practices
  • Excellent writing skills
  • A high level of integrity and trust. A background check will be required
  • Knowledge of HIPAA, PCI, ISO 27001, state and federal guidelines on security, transactions and security