| Onsite Principal Security Engineer :: Raleigh, NC at Raleigh, North Carolina, USA |
| Email: [email protected] |
| From: Abhishek kumar singh, Tek Inspirations [email protected] Reply to: [email protected] Position: Principal Security Engineer Location: Onsite (Raleigh, NC) Duration: 6-12 months Visa: USC / GC Interview: Skype Company Overview: Client in their search for a Security Operations Manager for a 6 to 12 month contract in Raleigh, NC. This role requires on-site presence and individuals must be located in the immediate surrounding areas such as Durham or Chapel Hill. The position may extend or convert to permanent based on performance. COVID-19 Requirement: Due to onsite workforce mandates, all individuals must be COVID-19 vaccinated. Responsibilities: Collaborate with Digital & IT Leadership to define, develop, and maintain company-wide cybersecurity strategy. Enhance and mature cybersecurity capabilities and overall posture. Oversee the monitoring and analyzing of security alerts, incidents, and vulnerabilities while ensuring timely and effective responses. Manage and utilize security tools such as System Information and Event Management (SIEM), Vulnerability Management, cloud-native security solutions, endpoint detection and response (EDR), and other security software. Regularly generate security reports, metrics, and incident reports for IT leadership and stakeholders. Support the development of executive content and reports. Manage multiple vendor relationships, assess new technologies, identify risk mitigation strategies, and explore alternative solutions as necessary. Promote security awareness and best practices among employees, including training and education. Responsible for all cybersecurity awareness training. Lead and contribute to regular security audits and risk assessments to ensure compliance with security policies and standards and identify improvement opportunities. Cross-functionally develop and manage an incident response plan and related playbooks and lead response to incidents, including containment, eradication, and recovery. Coordinate vulnerability assessments and remediation efforts to minimize risks to the organization's information assets. Develop, implement, and enforce security policies, procedures, and guidelines to safeguard information assets. Stay updated on emerging cybersecurity threats and vulnerabilities while providing insights and recommendations to enhance security measures and proactively protect the organization. Partner with key industry peers to conduct benchmarking exercises to provide perspective on maturity and to implement best practices proactively. Maintain and update documentation related to security configurations, procedures, and incident response plans and playbooks. Manage the budget for security operations, allocate resources effectively, and evaluate technology investments. Develop budget requests. Contribute to the vision and strategic planning of the information technology environment. Streamline workflows, simplify applications and systems, and drive automation. Other duties as assigned. Qualifications: Bachelors degree in information security, computer science, or a related field, or equivalent in education and experience. Must be COVID-19 vaccinated. Relevant certifications (e.g., CISSP, CISM, CISA, Certified Ethical Hacker) strongly preferred. A minimum of 7 years of experience in information services with 5 years of demonstrable and progressive experience operating within Information Security and governance domains. Recent experience in pharmaceuticals is preferred. High level of technical expertise, ensuring the ability to navigate and troubleshoot complex technical issues. Deep knowledge of security standards, frameworks, regulations, and best practices (e.g., NIST, CIS, Data Privacy Laws, HIPAA, SOX, etc.). Proficiency in using security tools and technologies, such as security information and event management (SIEM), threat and vulnerability management, and cloud security systems. Hands-on experience with Azure, Office 365, CrowdStrike, Cisco Umbrella, and Rapid7 is a plus. Strong understanding of network protocols, operating systems, and application security. Penetration testing knowledge and experience. Knowledge of scripting languages (e.g., Python, PowerShell) for automation and customization of security tasks. Analytical and problem-solving skills to detect, assess, and respond to security incidents. Superb communication and collaboration skills, and a positive and solution-oriented approach. Ability to adapt to rapidly changing security threats and technologies. Attention to detail and a commitment to maintaining the highest level of security. Demonstrated strength in continuous learning and growth. Strong business acumen and demonstrated sound business judgment. Passion for cybersecurity and overall technology innovations. Ability to travel as needed (minimal). Thanks & Regards .. Abhishek Singh Lead Technical Recruiter Desk: 4697760536 [email protected] Keywords: information technology green card North Carolina |
| [email protected] View all |
| Mon Mar 04 21:06:00 UTC 2024 |