Information Security Engineer Job Description Template
Our company is looking for a Information Security Engineer to join our team.
Responsibilities:
- Supports and maintains Certification and Accreditation (C&A) requirements;
- Perform as a Subject Matter Expert in the realm of Information Security with cross functional teams in the organization;
- Coordinate with vendors and external security teams to address security issues for external IT services and systems;
- Do a penetration testing for internal and cloud environment;
- You will be responsible for the team to evaluate, deploy, and run our current and future security technologies utilizing innovative technology;
- Recognizes problems by identifying abnormalities; reporting violations;
- Please note due to the exposure of PHI sensitive data — this role is considered to be a High Risk Role;
- Contributes to team effort by accomplishing related results as needed;
- Ensure compliance with HIPAA, HITRUST, SOC 1 Type II, AUP, NIST and other regulations and requirements;
- Problem solving skills and ability to work under pressure;
- Skill as a system, network, or information security engineer;
- Experience implementing and troubleshooting endpoint security tools;
- Knowledge of the latest security principles, techniques, and protocols;
- Technical knowledge of database, network, telephony, and operating system security;
- Bachelor’s degree in Computer Science or related discipline.
Requirements:
- Manage existing tools;
- Experience with cloud platforms such as AWS, Microsoft Azure, OpenStack and others;
- Industry standard security certification(s) a Plus: CISSP, CISA, CISM, etc;
- 5+ years’ of working experience in an Information Security and Compliance role;
- 2 – 4 Years Advanced knowledge of the SLDC, QA testing, software development, or application security. (Required);
- Prior experience in vendor assessment and interpreting and coordinating pen test results is a plus;
- Hands on knowledge with Burp Suite and Metasploit;
- Bachelor’s degree in Information Systems;
- Skill as a system, network, or information security engineer;
- Problem solving skills and ability to work under pressure;
- Experience implementing and troubleshooting endpoint security tools;
- Knowledge of the latest security principles, techniques, and protocols;
- Experience working with network security controls (Routers, Firewalls, Proxies, ACL’s, Wireless networking protocols);
- Bachelor’s degree in Computer Science or related discipline;
- Ability to work with outsourcing vendors including US and off-shore centers.