Associate Security Engineer- Remote (Anywhere in the U.S.)
Remote
Applications have closed
- Remote-first
- Website
- @GuidePointSec 𝕏
- GitHub
- Search
GuidePoint Security LLC
GuidePoint Security provides trusted cybersecurity consulting expertise, solutions, and services that help organizations make better decisions and minimize risk.GuidePoint Security provides trusted cybersecurity expertise, solutions and services that help organizations make better decisions and minimize risk. By taking a three-tiered, holistic approach for evaluating security posture and ecosystems, GuidePoint enables some of the nation’s top organizations, such as Fortune 500 companies and U.S. government agencies, to identify threats, optimize resources and integrate best-fit solutions that mitigate risk.
Job Overview
GuidePoint Security is seeking an Associate Security Engineer who is passionate about security work and possesses technical expertise in the security space.
The Associate Security Engineer will have diverse responsibilities within the Security Engineering team. From a technical standpoint, this includes implementing, maintaining, and responding timely to alerts generated by the various technical controls used to manage GuidePoint’s risk. From a compliance standpoint, candidates are required to have knowledge and awareness about industry good practices, control frameworks, audit and assessment methodologies, and risk management strategies.
Striving to achieve continuous improvement for existing controls and associated processes is essential. The Associate Security Engineer has an ongoing responsibility to help identify realistic, appropriate, and achievable opportunities to improve ease of use, promote efficiencies for, and increase GuidePoint’s security return on investment. This includes helping deliver the means to measure and report on control effectiveness. Additionally, the Associate Security Engineer will help evolve and improve the enterprise’s risk management program at the tactical level.
The Associate Security Engineer is expected to cultivate a good relationship and work closely with the Corporate IT team. This necessitates having a strong technical acumen and possessing a desire to learn about and determine how to protect various technologies.
This position if 100% remote, and the Associate Security Engineer must be self-directed, able to work both individually and as part of a multifunctional team, and posses the necessary written and verbal communication skills to interact effectively with team members, IT, and other internal customers.
Security Engineer Responsibilities
- Configure and troubleshoot security controls, both for hosted technologies and those maintained on-premises.
- Support, facilitate, and help improve security-related processes including (but not limited to): configuration management; vulnerability management; control monitoring; and incident response.
- Assist in developing comprehensive reports that measure security control performance, and which support designing and delivering system control enhancements.
- Monitor security measures for the protection of information resources.
- Partner with IT to implement technical solutions for automating repeatable tasks.
- Support compliance-related efforts, including contract reviews, supplier risk management, completing ongoing control assessments, and supporting internal and external audits and security testing.
- Contribute to the design of computer security architectures by helping incorporate cybersecurity into each architecture’s design.
- Contribute to policies, standards, processes, procedures, and protocols for delivering the Security Engineering portfolio of services internally.
Required Qualifications
- One year of experience working in the information security industry.
- One to two year’s experience working with a technical control (e.g., identity and access management, malware protection, network segmentation, vulnerability management, etc.).
- Familiarity with either performing assessments/audits for, or demonstrating compliance with, one or more security practice frameworks or compliances (e.g. ISO 27001, SOC 2 Type 2, SOX, PCI DSS, etc.).
- Working knowledge of incident response good practices.
- Possess at least one current security-related certification and be in good standing with certifying organization (e.g., a security certification from CompTIA, ISC2, ISACA, SANS-GIAC, etc.).
- Excellent written and verbal communication skills.
Preferred Qualifications
- Bachelor’s or advanced degree, optimally in technology or business.
- Possess current or previous technical certification (List out specific certifications that you would prefer).
- Direct experience working in incident response.
We use Greenhouse Software as our applicant tracking system and Free Busy for HR screen request scheduling. At times, your email may block our communication with you. Please be sure to check your SPAM folder so that you don't miss updates on your application.
Why GuidePoint?
GuidePoint Security is a rapidly growing, profitable, privately-held value added reseller that focuses exclusively on Information Security. Since its inception in 2011, GuidePoint has grown to over 900 employees, established strategic partnerships with leading security vendors, and serves as a trusted advisor to more than 3,500 customers.
Firmly-defined core values drive all aspects of the business, which have been paramount to the company’s success and establishment of an enjoyable workplace atmosphere. At GuidePoint, your colleagues are knowledgeable, skilled, and experienced and will seek to collaborate and provide mentorship and guidance at every opportunity.
This is a unique and rare opportunity to grow your career along with one of the fastest growing companies in the nation.
Some added perks….
- Remote workforce primarily (U.S. based only, some travel may be required for certain positions, working on-site may be required for Federal positions)
- 100% employer-paid medical premiums (employee only $0 deductible and HSA plans) along with 75% employer-paid family contributions
- 100% employer-paid dental premiums (employee only) along with 75% employer-paid family contributions
- 12 corporate holidays and a Flexible Time Off (FTO) program
- Healthy mobile phone and home internet allowance
- Eligibility for retirement plan after 2 months at open enrollment
- Pet Benefit Option
* Salary range is an estimate based on our InfoSec / Cybersecurity Salary Index 💰
Tags: Audits Compliance CompTIA GIAC IAM Incident response ISACA ISO 27001 Malware Monitoring PCI DSS Risk management SANS SOC SOC 2 SOX Vulnerability management
Perks/benefits: Career development Flex hours Flex vacation Health care
More jobs like this
Explore more career opportunities
Find even more open roles below ordered by popularity of job title or skills/products/technologies used.