IT Security Engineer

• Develop, implement, maintain, and oversee enforcement of policies, procedures, and associated plans for system security administration and user system access based on industry-standard best practices.
• Deploy, manage, and maintain all security systems and their corresponding or associated software, including firewalls, intrusion detection systems, cryptography systems, and anti-virus software.
• Assess the need for any security reconfigurations (minor or significant) and oversee the implementation.
• Research emerging products, services, protocols, and standards in support of security enhancement and development efforts.
• Negotiate with vendors, outsourcers, and contractors to obtain protection services and products.
• Recommend, schedule, and perform security improvements, upgrades, and/or purchases.
• Monitor Identity and Access Management policies, standards, and procedures.
• Audit administrative accounts, permissions, and access rights.
• Monitor, analyze, and recommend security standards for the company application catalog.
• Design and oversee the vendor security assessment process.
• Lead penetration testing of all systems to identify system vulnerabilities.
• Design, implement, and report on security system health IT security and end-user activity audits.
• Monitor server logs, firewall logs, intrusion detection logs, and network traffic for unusual or suspicious activity.
• Provide guidance and recommendations on how to mitigate or resolve identified vulnerabilities, using best practices and industry standards.
• Maintain up-to-date knowledge of the IT security industry, including awareness of new or revised security solutions, improved security processes, and the development of new attacks and threat vectors.
• Provide on-call security support.
• Lead and mentor junior members of the team.

• Bachelor’s degree in Computer Science, Management Information Systems, Information Technology, Business Administration, or related field and/or a combination of related work experience.
• Three or more years’ experience as a System Security Engineer or related position
• One or more certifications in security standards (ISC2 CC, ISC2 SSCP, Microsoft SC-xx).
• Experience with ISO and NIST security frameworks.
• Proficiency in networking technologies, network security, and network monitoring solutions
• Strong knowledge of TCP/IP and other networking protocols.
• Broad hands-on knowledge of firewalls, intrusion detection systems, anti-virus software, data encryption, and industry-standard practices.
• In-depth technical knowledge of network, PC, and platform operating systems, including MS Windows, Linux, Mac OS.
• Working technical knowledge of industry standards for software, protocols, and IT security controls.

• Extensive LAN, WAN, and WWAN design and implementation experience.
• Strong understanding of network routing protocols.
• Experience deploying and utilizing Linux-based security tools.
• Solid understanding of device security certificates and digital signatures.
• Experience as a Security Architect designing an organization’s network and computer security.

• The ideal candidate will have a demonstrated ability to work with others and persuade beyond their direct authority, providing comprehensive solutions that can adapt to local and global needs with minimal exceptions or special cases.
• Strong analytical and problem-solving skills and ability to make sound and logical judgments.
• Strong interpersonal, written, and oral communication skills.
• Capacity to conduct research into issues and products as required.
• Ability to prioritize and execute tasks in a high-pressure environment and make sound emergency decisions.
• Strong customer service orientation.
• Highly motivated and self-directed, with attention to detail

Lindt & Sprungli (North America) Inc.