Senior Security Engineer (Altanta, GA or Remote- US Based)
Togetherwork
- Atlanta, GA
- $95,000-105,000 per year
- Permanent
- Full-time
- AWS Cloud Infrastructure Security
- Firewall Management
- Web Application Security
- Vulnerability Management
- Incident Response
- Log Management
- Set up and install any relevant security tools, such as SIEM or scanner agents, as needed for all operating systems.
- Maintain and manage the Vulnerability Management program.
- Perform regular vulnerability assessments as needed for compliance as well as general security analysis.
- Perform regular code audits for company applications.
- Create, maintain, and utilize tools to standardize and automate common tasks related to the information security team.
- Work with other internal and external IT teams to migrate and secure cloud environments.
- Triage, report, and assist with security incidents in correspondence the incident response plan.
- Perform regular monitoring and reporting for relevant compliance objectives.
- Advise and lead the incident response process on remediation action in accordance with the incident response plan.
- Communicate and manage relationship with security related vendors, as necessary.
- Conduct regular security reviews as needed across departments.
- Other Security related duties as needed.
- 5- years of relevant IT Security experience.
- Advanced knowledge of networks and network protocols.
- Advanced knowledge of AWS Cloud Security
- Experience with Incident Response in cloud environments
- Advanced programming knowledge with the ability to automate tasks (Python, PowerShell, etc.).
- Expert knowledge of log analysis including understanding how to efficiently parse and analyze logs.
- Practical knowledge of network analysis tools such as tcpdump and wireshark.
- Advanced understanding of how Firewall/IDS/IPS/AV technologies work and how to configure them in a broad sense.
- Advanced understanding of vulnerability severity standards as categorized by NIST, PCI DSS, or OWASP.
- Advanced understanding of web application security standards defined by OWASP.
- Advanced understanding of PCI DSS and SOC2 requirements and how to execute related compliance objectives.
- Strong technical documentation skills for creating reports related to information security.
- Security certifications such as from GIAC, AWS, ISACA, (ISC)2
- Experience in System Administration of Linux/Unix and Windows systems.
- Medical, dental, and vision insurance options
- 100% Employer paid short/long term disability
- Basic Life
- 401(k) option with 100% company match
- Flexible paid personal/vacation time built on mutual trust and accountability
- 10 sick days annually
- 10 company paid holidays
- 6 weeks paid parental leave