| IT Security Engineer at New York, New York, USA |
| Email: [email protected] |
| From: Kiran Bhatt, Largeton INC. [email protected] Reply to: [email protected] TITLE: IT Security Engineer CLIENT: Morgan Stanley DURATION: 6 month contract-to-hire VISA: NO OPT /CPT/H1B LOCATION: New York, NY 10036 (hybrid 2/3 times a week) INTERVIEW MODE: Video Video Experience-8-10 year's MUST HAVES: Primary experience should be a Professional Services industry background. Good employment duration. Must hold at least one current security certification. Must have a college degree. Hands-on expertise w/Azure and M E5 Azure Compliance Manager AWS Sentinel Working experience with regulatory compliance frameworks such as NIST, ISO 27001, PCI DSS, GDPR, and HIPAA. Powershell KQL DLP experience with Netskope or similar tool Experience with CASB solutions, preferably Netskope QUESTIONS THAT NEED TO BE ANSWERED BY CANDIDATE: Submission summaries need to address the Must Haves JOB DESCRIPTION: In this role, you will help strengthen the organizations internal and cloud security framework. Responsibilities include participating in incident response, supporting business continuity and disaster recovery planning, conducting vulnerability assessments, and ensuring compliance with data security policies and standards such as ISO 27001:2022, ISO 27017:2015, ISO 22301, as well as meeting client audit requirements. QUALIFICATIONS: Bachelor's degree in Computer Science or a related field, or a minimum of 5 years of applicable experience. In-depth knowledge of Azure, AWS, Microsoft E5, Sentinel, Defender for Endpoint, and various other security technologies. Strong expertise in network security and monitoring practices. Relevant security certifications (CISSP, CISM, CISA, GIAC, CCSP, OSCP, CEH, etc.) are required. Proficient in automation scripting using Python, Bash, and PowerShell. Experience in designing security architectures across different deployment models. Familiarity with enterprise security solutions and security protocols. Knowledge of regulatory compliance and information security management frameworks (NIST, ISO 27001, PCI DSS, GDPR, HIPAA, etc.). Understanding of security frameworks such as MITRE ATT&CK and CIS 20. Experience with security considerations in DevOps and CI/CD pipelines, including container orchestration security. RESPONSIBILITIES: Provide round-the-clock support for security incidents, ensuring prompt escalation and resolution. Mentor junior team members in the use of security tools, report generation, and problem-solving, while facilitating cross-training opportunities within the team. Document and escalate unresolved network security issues to ensure timely attention. Develop and maintain thorough documentation of security processes and systems. Exhibit extensive knowledge of both on-premises and cloud environments, with a focus on Azure, AWS, and Microsoft E5 platforms. Improve visibility and detection capabilities within fully managed Azure and AWS environments. Perform penetration testing and identify security gaps, providing recommendations for remediation. Assist in the design, development, implementation, and troubleshooting of various information systems and cybersecurity software. Automate security testing and auditing processes to prevent regressions and identify issues prior to production deployment. Offer expertise in systems, networks, encryption, authentication, and governance. Collect reports, metrics, and key performance indicators to assess and validate the effectiveness of current security controls for team evaluation. Engage in activities and create materials aimed at raising security awareness throughout the organization. Oversee the management of Active Directory, Privileged Identity Management, Local Administrator Password Solution, and associated privilege management technologies. Work in partnership with leadership to implement the Zero Trust security model and strengthen CIS standards. Lead initiatives for Business Continuity and Disaster Recovery, collaborating closely with the CIO, CISO, and Director of Enterprise Architecture and Service Delivery to test and enhance BC/DR strategies. Be available on-call for security incidents, working alongside vendors and the Service Delivery team to address and mitigate threats. Proactively evaluate security controls to identify vulnerabilities that could be exploited by malicious actors, and recommend remediation strategies to address security gaps. Ensure the operational efficiency and health of all endpoint security agents. Maintain up-to-date security architecture diagrams and actively participate in cybersecurity initiatives and projects. Thanks & Regards Kiran Bhatt|Technical Recruiter Email:[email protected] | LARGETON INC | 13800 Coppermine Rd, Herndon, VA 20171 Keywords: continuous integration continuous deployment information technology New York Virginia IT Security Engineer [email protected] |
| [email protected] View all |
| Wed Nov 06 19:39:00 UTC 2024 |