• Location: Madison, Wisconsin
  • Type: Direct Hire
  • Job #4883

Carex is working with our Partner, a manufacturing company in Dane County, to hire a highly motivated Senior IT Security Engineer. This position will be responsible for implementing and managing all aspects of Cyber Security. As such, you must have a strong & proven technical background and leverage it to become a trusted Security Expert in the Company. This is a direct hire position and is onsite 3 days per week.
  
What you’d do:

  • Planning and design of enterprise security functions under the direction of senior IT leadership, where appropriate
  • Participate in the creation of enterprise security documents (policies, standards, baselines, guidelines, and procedures (GRC))
  • Develop and report key security metrics
  • Participate in the planning and design of an enterprise Business Continuity Plan and Disaster Recovery Plan, under the direction of the Business Continuity and Disaster Recovery Teams, where appropriate.
  • Security Awareness: Develop content for organization wide and targeted security awareness training. Present relevant information security topics through a variety of forums depending on the audience.
  • Compliance planning and implementation with focus on PCI-DSS and SOX.
  • Maintain up-to-date detailed knowledge of the IT security industry including awareness of new or revised security solutions, improved security processes and the development of new attacks and threat vectors.
  • Lead or manage technical system security audit efforts by working with Compliance Team members.
  • Recommend additional security solutions or enhancements to existing security solutions to improve overall enterprise security.
  • Lead the deployment, integration, and initial configuration of all new security solutions and of any enhancements to existing security solutions in accordance with standard best operating practices and in compliance with the enterprise’s security documents.
  • Ensure that up-to-date baselines for the secure configuration and operations of all in-place devices, whether they be under direct control (i.e., security tools) or not (i.e., workstations, servers, network devices, etc.) are maintained.
  • Monitor all in-place security solutions for efficient and appropriate operations.
  • Review logs and reports of all in-place devices, whether they be under direct control (i.e., security tools) or not (i.e., workstations, servers, network devices, etc.). Interpret the implications of that activity and devise plans for appropriate resolution.
  • Participate in investigations into problematic activity.
  • Perform real-time proactive security monitoring, detection and response to security events and incidents within the enterprise network.
  • Participate and or lead in the design and execution of vulnerability assessments, penetration tests and security audits.
  • Working technical knowledge of vulnerability and port scanning, data loss prevention, email gateways, Web Gateways, web proxies, URL filtering, anti-virus and other standard security monitoring/management tools.
  • Other duties as assigned

What you’ll bring:

  • * Bachelor’s degree and 3+ years of equivalent work experience
  • * The following certifications are recommended:
    • Ability to obtain CISM or CISSP with 6 months of employment.
    • CISM
    • CISSP
    • GIAC Security Essentials (GSEC)
    • GIAC Information Security Fundamentals (GISF)
  • This position has 24/7 responsibility for key IT Security equipment. Must be willing to respond to incident detection and security-based outages 24/7

Preferred Experience
 

  • Experience with Security as a Service providers
  • Experience with Python, Perl, Ruby or PowerShell
  • Experience with Automation (Puppet, Chef, Ansible, etc.)
  • Network Security: Firewall, IDS/IPS and threat protection administration
  • Experience with CrowdStrike EDR, Spotlight, Logscale, Identity protection
  • Experience with identity management and zero trust identity
  • Experience with cloud security technologies

Carex Consulting Group is an equal opportunity employer. We are committed to equal employment opportunity regardless of race, color, ancestry, religion, sex, national origin, sexual orientation, age, marital status, disability, gender identity or Veteran status.

#LI-LL1

Attach a resume file. Accepted file types are DOC, DOCX, PDF, HTML, and TXT.

We are uploading your application. It may take a few moments to read your resume. Please wait!