Information Security Engineer

Overview

Job Summary:

The Information Security (InfoSec) Engineer will be responsible for the design, implementation, and maintenance of all Allegis Corporate Services (ACS) InfoSec technologies and capabilities, focusing on Microsoft Purview’s data governance and Defender security suite, risk and compliance capabilities.  The InfoSec Engineer will work closely with the Information Services (IS) group to plan and ensure InfoSec tools are functioning optimally across the enterprise.

Responsibilities

Essential Functions:

• Lead the deployment, configuration, and management of Microsoft Purview for data governance, information protection, and compliance.
• Implement and maintain data classification, labeling, and encryption policies.
• Collaborate with data owners to establish and maintain data lifecycle management practices, ensuring proper data retention and protection policies are enforced.
• Implement, modify, and update InfoSec technologies to ensure optimal performance and security posture following a defined change control process.
• Research technological advancements to ensure that InfoSec solutions are continuously improved, supported, and aligned with industry and company standards as well as emerging business requirements.
• Evaluate complex technology environments and platforms and recommend technical solutions for mitigation and/or remediation of security risks.
• Ensure InfoSec technologies are designed, implemented and maintained in alignment with InfoSec standards.
• Stay up to date on the latest cybersecurity trends, emerging threats, and best practices related to broader cybersecurity technologies.
• Provide qualified guidance on and coordinate execution of identification, analysis, response and monitoring of cyber threats and vulnerabilities.
• Provide qualified guidance on Security Operations Center (SOC) alerting conditions and necessary data sources including network, host, data, integration, and application access security in multiple operating system environments (Windows, Solaris, Linux, etc.)
• Collaborate with IT, Legal. and other business units to ensure security solutions align with organizational goals and regulatory requirements.
• Work with intrusion detection/prevention systems (IDS/IPS), Identity and Access Management technologies, integrity monitoring, Endpoint Detection and Remediation (EDR) tools, vulnerability management, data loss prevention (DLP), advanced persistent treat (APT), Data Governance technologies, and policy compliance, as needed.
• Work with technology vendors and IS purchasing in vendor negotiations and selection as needed.
• Ability to work off-hours for troubleshooting and changes to InfoSec technologies.

Minimum Education and/or Experience:

• Bachelor’s degree in the field of MIS, Cybersecurity, computer science, information systems or computer engineering or equivalent experience.
• 8+ years of experience designing information security and IT technical solutions.
• Experience in designing and implementing security solutions in Microsoft Azure and M365 platforms, Microsoft Purview and Defender experience a plus
• Experience with identifying, analyzing, and communicating cyber threat and vulnerability information.
• Experience applying threat and vulnerability analyses models, examples include the Lockheed Martin (LM) Cyber Kill Chain, the Diamond Model of Intrusion Analysis, the Mitre ATT&CK Framework, and the Common Vulnerability Scoring System (CVSS).
• Understanding of Agile and ITIL methodologies
• Ideal candidates will hold one or more of the following certifications:  Microsoft M365 Certifications, CISSP, NET+, SEC+, SANS GIAC (GISF, GSEC, or other)

Qualifications

Skills/Abilities

• Expertise in infrastructure technologies, including, but not limited to, systems and system virtualization, networking, IP management, Active Directory, email).
• Experience with InfoSec technologies Data Loss Prevention (DLP), Data Labeling and Governance, Vulnerability scanning utilities (Rapid7 or Nexus), Compliance and Governance tools, Security Information and Event Management (SIEM) technologies.
• Working knowledge of Litigation Hold and eDiscovery technologies
• Working knowledge of IaaS/PaaS environments (MS M365/Azure, AWS, OCI, Google Cloud, Salesforce), Application Programing Interfaces (APIs), and cloud security controls.
• Familiarity with enterprise risk management, cyber threats, and IT vulnerabilities.
• Experience with Rapid7/Nexpose security scanning and vulnerability management tools.
• Experience with Microsoft M365, Microsoft Defender product suite, .NET, Active Directory,
• ADFS, Windows/Linux, SQL Server, Azure Entra ID, VMware/Citrix, Cisco Networking and Firewalls
• Familiar with data compliance frameworks (GPDR, CCPA, PCI DSS, HIPPA)
• Understanding of the Internet, web, application, and network security techniques.
• Experience in successfully deploying new business processes and technologies.
• Exemplary verbal and written communication skills.
• Demonstrated ability to think strategically and perform detailed, complex analysis and data interpretation.
• Effective interpersonal skills, the ability to build consensus, and interface with all levels of staff.
• Ability to work under pressure and deal with ambiguous situations.

Core Competencies:

• Build relationships
• Develop people
• Lead change
• Inspire Others
• Think critically
• Communicate clearly
• Create Accountability

Benefits Overview:

Benefits are subject to change and may be subject to specific elections, plan, or program terms.  This role is eligible for the following:

• Medical, dental & vision
• Hospital plans
• 401(k) Retirement Plan – Pre-tax and Roth post-tax contributions available
• Life Insurance (Company paid Basic Life and AD&D as well as voluntary Life & AD&D for the employee and dependents)
• Company paid Short and long-term disability
• Health & Dependent Care Spending Accounts (HSA & DCFSA)
• Transportation benefits
• Employee Assistance Program
• Tuition Assistance
• Time Off/Leave (PTO, Allegis Group Paid Family Leave, Parental Leave)

Salary Range:

• The position is bonus eligible
• Salary is 111,800-167,600