• Assist with day-to-day Security Operations (Security Reviews, Data Protection, Penetration Testing, Vulnerability Assessment, Patch Management, Incident Response, etc.)
• Build and manage relationships across the company such as Customer Success, Engineering, Legal, People, Product, etc., to ensure best practices are leveraged
• Identify, respond, and remediate a diverse range of security threats and incidents
• Use automation as a path to create efficient and manageable workflows
• Create technical, managerial, and executive documentation, topologies, and metrics to support internal and external engagements
• Deploy, configure, and assess configuration processes in PaaS/IaaS environments
• Establish and improve existing change management processes and protocols
• Contribute to the configuration, implementation, deployment, and maintenance of information security strategies and architectures
• Identify and communicate areas of improvement across Talend

Skills: Security Operations, Vulnerability Assessment, Incident Response, Patch Management, Threat Remediation, Process Automation, Cloud Configuration, Change Management

• Models, promotes, reinforces, and rewards the consistent use of HOLT's Values-Based Leadership (VBL) tools, models and processes to ensure alignment with Vision, Values, and Mission
• Manages IT security systems, components, and processes that proactively protect the integrity, confidentiality, and availability of the organization
• Designs and implements IT security policies, procedures, architecture, infrastructure, and strategy to meet corporate information and data security requirements, business objectives, and government regulatory requirements
• Oversees the administration and monitoring of security profiles, security violation reports, and investigations of possible security exceptions
• Initiates and participates with external consultants and auditors to conduct independent security risk assessments and audits to proactively identify, report and resolve security violations
• Monitors emerging IT security products, technologies or best practices to improve security for the organization and its stakeholders
• Collaborates with leadership to determine acceptable levels of risk to the organization while balancing stakeholder needs
• Develops communication strategies, policies and security procedures to ensure end-users are informed about security tips (e.g., password changes, security questions, and system upgrades), in an effort to protect information from unwanted sources
• Works safely at all times and adheres to all applicable safety policies
• Complies with all company policies, procedures, and standards

Skills: Leadership Development, Security Management, Policy Design, Risk Assessment, Incident Investigation, Technology Monitoring, Stakeholder Collaboration, Communication Strategy

• Maintain and administer the UEM/MDM environment and infrastructure globally
• Manage system hardening practices by defining and implementing secure device configurations
• Contribute to the Enterprise App Store by developing MDM/MAM software packages
• Manage certificate integration with Certificate Authorities (CA) for use with mobile devices
• Manage enterprise wireless and VPN integration for use by managed, mobile devices
• Manage certificate-based authentication on mobile devices
• Upgrade and patch MDM application software within specified timeframes
• Partner with IT and the IT Service Desk to provide tier-2 and tier-3 support
• Maintain system integrity and security by resolving issues from vulnerability and compliance scans
• Support patching in accordance with patching policies/SLAs
• Work autonomously as well as in team environments, often in stressful, high-impact

Skills: MDM Administration, Device Hardening, App Packaging, Certificate Management, VPN Integration, Authentication Configuration, Patch Management, System Security

• Assist senior engineers with maintaining and troubleshooting network security infrastructure as part of an in-depth security program
• Understand the Advanced Persistent Threat (APT) actors by triaging a variety of reports, network traffic, exploitation attempts, firewall logs, and etcetera
• Conduct real-time monitoring for threats such as malware, DDoS, data loss, and other threats against IBC
• Partner with resources across various disciplines, lines of business, and vendors in initial analysis, tuning, and troubleshooting of performance issues
• Assist with managing the day-to-day operation of and monitoring of IBC firewalls as part of a layered security model
• Actively monitor network traffic and perform correlation of network events in conjunction with various security tools to identify potential threats
• Provides input for identification and establishing compliance with regulatory requirements defined for the security of information, personal data and intellectual property
• Gathers data for advising information security management on risks and best security practices, ensuring proper methods are applied for compliance
• Maintain an up-to-date knowledge of the IT security industry including awareness of new or revised security solutions, improved security processes and the development of new attacks and threat vectors
• Assist with root cause determination, network documentation, assessments, along the generation and analysis of monthly reports

Skills: Network Security, Threat Analysis, Firewall Management, Incident Monitoring, Traffic Correlation, Compliance Support, Risk Assessment, Root Cause Analysis

• Develop, maintain and improve IT security tools
• Work to harden IT workstations, services, and networks
• Assist in responding to security incidents on Datadog’s IT infrastructure
• Collaborate with other Datadog teams in the development and implementation of new security policies, standards, and procedures
• Maintain operational effectiveness and perform operational duties of the Privilege Access Management (PAM) Infrastructure and Windows environments, in accordance with the relevant security policies, standards and procedures
• Provide technical assistance to internal and external customers, not necessarily limited to the Privilege Access Management (PAM) Infrastructure, in a DevOps and hybrid on-prem/Cloud-based environments
• Identify areas of improvement and propose enhancements to existing environments
• Complete all scheduled security administration tasks and report/follow up on exceptions
• Maintain logical access in line with established policies and instructions
• Maintain a high level of procedural documentation in line with international standards of Quality Management

Skills: Security Tool Development, System Hardening, Incident Response, Policy Implementation, Access Management, Technical Support, Process Improvement, Documentation Management

• Perform security administration of security solutions
• Responsible for installation/configuration/upgrade of security infrastructure
• Prepare documentation for security technical standards, standard operating procedures, and hardening standards
• Coordinate and implement appropriate technical IT security systems
• Manage system and security solution vulnerabilities - security patching
• Monitoring and analysis of security events/logs
• Monitor, analyze, respond and resolve security incidents, conduct investigative procedures and implement corrective measures
• Investigate and recommend security technologies and/or controls for weaknesses identified that may potentially jeopardize the security of any ICT solutions
• Ensure appropriate security technologies are in place to manage threats
• Ensure appropriate security requirements are considered and implemented on new technology adoption or new project including cloud
• Design and test security controls for new projects (both infrastructure and application-based)
• Provide security solutions for projects, especially planning, design and implementation stages
• Formulate various security options and provide risk and impact assessments for respective options to protect the infrastructure, application systems and cloud environment

Skills: Security Administration, Infrastructure Configuration, Vulnerability Management, Event Monitoring, Incident Response, Technology Assessment, Security Control Design, Risk Assessment

• Engineer, implement and monitor security measures for the protection of computer systems, networks and information
• Developing technical solutions and new security tools/techniques to assist in mitigating security vulnerabilities and automate repeatable tasks
• Respond to various requests logged by the business
• Assist various teams with prioritising patching and security fixes
• Maintain existing security systems, controls and documentation
• Lead investigations into suspected attacks and data breaches
• Provide comprehensive reports including assessment-based findings, outcomes and propositions for further system security enhancement
• Work with outside consultants for independent security reviews and compliance audits
• Assist the Information Security Team with awareness training on information security standards, policies and best practices
• Maintaining documentation to a high standard

Skills: Security Engineering, Vulnerability Mitigation, Patch Management, System Maintenance, Incident Investigation, Compliance Auditing, Security Reporting, Awareness Training

• Maintain and improve the security posture of cloud platforms such as Azure, M365
• Identify and assess risks while implementing security solutions
• Implement and configure security controls and policies, including threat protection and responding to security incident escalations
• Provide cyber security expertise in the analysis, assessment, development, and evaluation of security solutions and architectures
• Automate security controls, data, and processes to provide better metrics and operational support
• Integrating vulnerability management systems, EDR and other monitoring solutions 
• Responsible for liaising with internal security and external security providers
• Participate in the execution of remediation tasks from the Security Risk Assessment and implement security best practices in line with the security program goals
• Maintain, support, and advance the Corporate IT Infrastructure
• Participate in the Incident Response Planning initiative
• Prepare and document standard operating procedures and protocols

Skills: Cloud Security, Risk Assessment, Security Configuration, Threat Protection, Security Automation, Vulnerability Integration, Incident Response, Procedure Documentation

• Review, analyze and monitor security system reports and logs for suspicious activities, trends and patterns
• Configure, maintain, and administer security products and solutions used within the Firm
• Configure, maintain and administer firewalls, web proxy devices, data loss prevention systems and security information event monitoring systems
• Participate in troubleshooting efforts on all IS security-related problems to include the establishment, management, and use of TAM arrangements with specified security vendors
• Participate as a technician/engineer on IS projects
• Conduct risk and security reviews on products as directed by the IS Security Manager or IS management
• Configure access control systems to include assigning rights to appropriate resources for users, IS personnel, and vendors
• Recommend controls to ensure the appropriate level of protection and adherence to the goals of the overall information security strategy
• Monitor IS security metrics and measures to include monitoring security system logs, Windows server logs, and network monitoring systems
• Administration of systems and processes to monitor and reconcile system patch status and discovered vulnerabilities to include management of metrics that provide patch and vulnerability status
• Assess system and network vulnerabilities and work with responsible groups inside and outside of IS to remediate
• Provide consultation and conduct internal investigations that may require forensic analysis under the direction of the IS Security Manager and/or IS management
• Respond to audit findings as directed by the IS Security Manager and/or IS Management
• Evaluate and recommend commercial security vendors and products

Skills: Security Monitoring, System Administration, Firewall Configuration, Access Control, Risk Review, Vulnerability Management, Incident Investigation, Vendor Evaluation

• Evaluate, design, architect, test, deploy, configure, administrate, and maintain the company's systems security and configurations
• Design and define highly complex, critical, and diverse architectures for security devices, electronic data traffic, network access, cryptography, and access control
• Coordinate activities and configurations with key architecture resources on the Infrastructure, Network, DevOps, Development, QA, and Information Security teams
• Establish best practices and industry standard controls and baseline configurations for a variety of services, systems, devices, endpoints, data, and 3rd party solutions
• Work with vendors to configure and optimize Information Security solutions and/or systems for the company
• Maintain up-to-date knowledge of the IT Security industry including awareness of new or revised security solutions, improved security processes and the development of new attacks and threat vectors
• Monitor, operate, and maintain UNIX and Windows-based applications
• Monitor V-Sphere virtual hosts
• Perform troubleshooting and anomaly resolution on-site at a Tier 1 level
• Escalate issues to Tier 2 staff and work with Tier 2 staff towards the resolution of issues
• Monitor system status and network connectivity of UNIX and Windows systems
• Maintain daily logs of activity to ensure continuity of operations

Skills: Security Architecture, System Configuration, Access Control, Network Coordination, Best Practices, Vendor Management, Threat Awareness, System Monitoring

• Provide security consulting through advice, research, design, project management services, and technical security expertise for all elements of the business as part of designing security solutions for existing and new networks, systems, applications, and business processes
• Directly manage and drive for the timely/successful completion of information security projects and participate in various concurrent project teams that support business initiatives
• Directly assist in the testing, selection, design, implementation, documentation, operation, and maintenance of various network and system security technologies
• Interact with information security vendors and hold information security vendors accountable to their technology and services obligations to the organization
• Perform internal investigations and e-discovery efforts
• Routinely engage the organization’s MSSP and respond to escalations from the MSSP within the defined SLA
• Perform log collection, correlation, reviews, archival, retention, and monitoring of automated alerts for items, such as malware alerts, change detection alerts, rogue wireless network alerts, security system health alerts, exploit attempt alerts, etc.
• Work with the Internal Audit department, Risk Management department, and Legal department to perform security assessments of ASPs, hosting providers, service providers, and development firms that are contracted to provide various services to the organization
• Perform, document, and present to management security risk assessments around existing and emerging technologies, business processes, and third-party-provided business services
• Manage internally generated SSL certificates and SSL certificates generated by a managed PKI vendor
• Participate in information security components of system provisioning to, and system de-provisioning from, the organization’s networks
• Participate and be an integral component of audit, compliance, and regulatory functions, including Payment Card Industry (PCI) Data Security Standard (DSS), Sarbanes-Oxley (SOX), emerging state and Federal privacy laws, and general security auditing

Skills: Security Consulting, Project Management, System Implementation, Vendor Management, Incident Investigation, Log Monitoring, Risk Assessment, Compliance Auditing

• Assist internal and external auditors
• Participate in a vulnerability management program
• Manage and maintain the organization’s various information security technologies
• Participate in the organization’s incident response plan and perform incident reporting on an as-needed basis
• Interface with management as necessary by providing reports, presentations, and recommendations
• Provide technical leadership to team members
• Develop and maintain information security policies, standards, procedures, controls, and their compliance
• Constantly review day-to-day information security operations and identify/implement efficiency improvements through automation efforts such as scripting and lean process improvement
• Provide cost-effective security improvements to reduce the frequency and duration of incidents
• Analyzes security incidents and escalation of security events 24/7

Skills: Audit Support, Vulnerability Management, Security Operations, Incident Response, Reporting Presentation, Technical Leadership, Policy Development, Process Automation

• Lead / Research / Design / Implement technical systems and monitor them for unusual and suspicious activity across a wide range of products
• Assist with security configuration standards for systems and business applications
• Serve as a member/leader of the cybersecurity and change management teams
• Participate in technical and non-technical projects requiring cybersecurity oversight and ensure policies, procedures, and standards are met
• Serve as an additional security team member, aiding in incident response (IR) with the IR and security operations center (SOC) teams
• Maintain vendor management standards, questionnaires, and documentation to adhere to regulatory compliance
• Interface with internal and external auditors for risk assessments
• Recommend new security solutions as well as useful improvements to existing security controls that do not negatively impact business innovation
• Serve as a liaison for the security team

Skills: Security Design, System Monitoring, Configuration Management, Change Management, Incident Response, Vendor Management, Risk Assessment, Security Improvement

• Conduct system security, vulnerability analyses, and risk assessments, and identify integration issues
• Use technical knowledge of current attacks to identify flaws and weaknesses in the composition and design of networks, remote access schemes, systems, and applications
• Specify solutions, verify the solutions that have been implemented, and rapidly adjust designs based on new threat and attack information as acquired
• Provide engineering support, troubleshooting, and evaluation of preventative and detective security technologies, such as Malware detection, web/email content filtering, intrusion detection, and vulnerability management
• Serve as technical and project lead on IT Security initiatives, partner with System Engineers, Application Development teams, and Architects
• Maintain security posture by monitoring and ensuring IT Security compliance with standards, policies, and procedures
• Conduct incident response analyses
• Develop and deliver training programs to team members
• Enhance existing architecture and design through the planning and delivery of solutions
• Answering technical and procedural questions for team members
• Teaching improved processes and mentoring team members
• Generate and document operational processes, procedures, and incident response plans
• Support the Company's diversity and inclusion strategy by following policies and procedures that ensure opportunities for employees and diverse business partners

Skills: Vulnerability Analysis, Risk Assessment, Threat Identification, Security Engineering, Project Leadership, Compliance Monitoring, Incident Analysis, Team Mentoring

• Monitor computer networks for security issues
• Investigate security breaches and other cybersecurity incidents
• Install security measures and operate software to protect systems and information infrastructure, including firewalls and data encryption programs
• Document security breaches and assess the damage they cause
• Fix detected vulnerabilities to maintain a high-security standard
• Stay current on IT security trends and news
• Develop company-wide best practices for IT security
• Help colleagues install security software and understand information security management
• Research security enhancements and make recommendations to management
• Stay up-to-date on information technology trends and security standards

Skills: Network Monitoring, Incident Investigation, Security Installation, Vulnerability Remediation, Breach Documentation, Security Best Practices, Software Assistance, Security Research

• Performing and automating PEN tests of IT systems
• Performing and automating vulnerability analysis at the network, system and application levels
• Investigating, documenting and applying remediation to security issues found
• Contributing security expertise to the engineering team to support efforts in secure software development 
• Design and enforce golden IT security rules
• Organize security by design with the IT team
• Move the architecture forward to a zero-trust architecture
• Improve the hardening of systems
• Instrument systems to enable the detection of intrusions and non-compliance
• Evaluate and implement tools to secure systems, networks and applications
• Ensure that the IT infrastructure is compliant with security standards
• Document and grow a security knowledge database

Skills: Penetration Testing, Vulnerability Analysis, Issue Remediation, Secure Development, Security Design, System Hardening, Zero Trust Architecture, Intrusion Detection

• Identifies security risks and develops solutions to eliminate or minimize risks
• Performs capacity reviews and recommends expansions or reductions as warranted
• Produces and maintains design documentation
• Reviews code releases for feature inclusion and bug awareness before implementation
• Provides operational support such as training and documentation
• Primary support and central point of contact for next-generation perimeter security devices
• Forward thinking to identify upcoming trends and security best practices on the network
• Responsible for up-time, reliability, stability and policy maintenance of supported systems
• May function as team lead, providing technical leadership to the team
• Facilitates automation wherever possible to create efficiencies and eliminate errors
• Serves as an escalation point in troubleshooting system problems
• Leads implementation efforts for security initiatives and resolutions resulting from internal and external assessments

Skills: Risk Management, Capacity Planning, Design Documentation, Code Review, Operational Support, Perimeter Security, Network Optimization, Automation Implementation

• Engineering, implementing and monitoring security measures for the protection of computer systems, networks and information
• Understanding complex technical issues and managing them within a fast-paced business environment
• Monitors information systems for security incidents and vulnerabilities
• Develops monitoring and visibility capabilities
• Reports on incidents, vulnerabilities, and trends to IT or executive management
• Analyzes trends, news and changes in threat and compliance environment with respect to organizational risk
• Advises organization management and develops and executes plans for compliance and mitigation of risk
• Oversees risk and compliance self-assessments, and engages and coordinates third-party risk and compliance assessments
• Analyzes and oversees the development of information security governance, including organizational policies, procedures, standards, baselines and guidelines with respect to information security and use and operation of information systems
• Configure, troubleshoot, and maintain Infrastructure Security devices, systems, and network security
• Write comprehensive reports including assessment-based findings, outcomes, and propositions for further system security enhancements
• Conducting proactive research to analyze security weaknesses and recommend appropriate strategies
• Identifying current and emerging technology issues including security trends, vulnerabilities and threats
• Oversees the response to information system security incidents, including investigation of, countermeasures to, and recovery from computer-based attacks, unauthorized access, and policy breaches
• Engages, interacts and coordinates with third-party incident responders, including law enforcement

Skills: Security Implementation, Incident Monitoring, Risk Analysis, Compliance Management, Policy Development, Threat Research, Infrastructure Maintenance, Incident Response

• Create/review/update security policies and procedures
• Participating in security compliance audits (i.e., SOX/SOC/ISO 27001/NIST)
• Identifying security risks and assisting in developing mitigation plans
• Participating in security-related projects
• Assisting the Security team with audits for both the physical site and data systems
• Manage vulnerability analysis and work with people to correct deficiencies
• Troubleshooting and resolving security-related technical issues effectively and efficiently
• Create accurate and well-documented solutions for security-related issues
• Evangelizing security within the Company and being an advocate for customer trust
• Maintain confidentiality of all applicant, client, and company proprietary information
• Maintains all system standards of compliance
• Provides advice, training and technical support for various projects
• Ensures and promotes effective and efficient utilization of company resources
• Actively participate in security community working groups, such as Infragard, ISACA, ISSA, and others

Skills: Policy Management, Compliance Auditing, Risk Mitigation, Vulnerability Analysis, Technical Troubleshooting, Security Documentation, Security Advocacy, Training Support

• Coordinate Penetration Tests to ensure applications and underlying infrastructure are secure
• Communicate zero-day threats and vulnerabilities to the relevant IT teams for prompt action, e.g., patching
• Recommend security measures to address cyber threats identified, e.g., defining SIEM use-cases
• Maintain a threat landscape picture for DBAG, identifying the most prominent threats
• Orchestrate threat hunting exercises
• Manage information security incidents
• Leading and coordinating investigations with stakeholders and documenting incident reports
• Help to improve the CERT process excellence by maintaining information security documentation

Skills: Penetration Testing, Threat Communication, Security Recommendations, Threat Hunting, Incident Management, Investigation Coordination, Process Improvement, Documentation Maintenance

• Extensive experience providing IT services to internal groups with excellent internal service
• Must have CISSP, CEH, CISA, or CISM certification
• Expert knowledge of Information Security best practices and security and privacy controls
• Strong foundation and in-depth technical knowledge in computer security, cloud security, vulnerability management, network security, cryptography, and/or similar fields
• Expertise in facilitating Information Security risk assessments for major processes, systems and projects
• Proficient English verbal and written communication skills
• Strong interpersonal skills, including the ability to influence, facilitate, consult and guide to desired results through effective non-direct team leadership
• Basic project management skills to track milestones and validate project progress
• Ability to work effectively with internal and external clients, management, staff members, vendors, and consultants
• Results-oriented, high-energy, self-motivated
• Strong judgment and analytical ability
• Proficiency in application, infrastructure, and Information Security IT auditing
• Expert knowledge of system vulnerabilities and exploits
• Skilled with administration, configuration, and operational best practices for Cloud Security, VPNs, Firewalls, Routers, UNIX systems, Intrusion Detection, and Windows systems

Qualifications: BS in Computer Engineering with 7 years of Experience

• Experience with Information Security
• Knowledge of databases, network devices, cloud, Active Directory, infrastructure security, web application security, and network security
• Understanding of endpoint hardening, patch management, vulnerability remediation, incident response, disaster recovery, and business continuity
• Strong analytical, organizational, documentation, project management, and problem-solving skills
• Ability to communicate security requirements to personnel at all levels of experience and responsibility
• Ability to work in a fast-paced and agile environment while supporting multiple projects
• Stays updated on trends and best practices about compliance, data privacy, and information security
• Knowledge of the NIST CSF or ISO 27001 frameworks
• Experience with data privacy (PCI DSS, CCPA, GDPR)
• Attention to detail and priority/time management

Qualifications: BA in Information Systems with 3 years of Experience

• Hands-on scripting experience with PowerShell and proven practical expertise in task automation with low to medium complexity workflows
• Professional experience in an international / multi-cultural business environment
• Practical experience with virtual teamwork and cross-country collaboration
• Knowledge of SIEMs, Firewalls, IPS, Networking, Vulnerability Scanning Tools, Open Source Security Tools, Threat Intelligence, Vulnerability Management, Operating systems, Proxies, WAFs
• Technical knowledge of fundamental Internet protocols, services, and technologies, including HTTP(S), TLS, DNS, SMTP, TCP/IP, ICMP, JSON, REST
• Knowledge of common vulnerabilities, exploits and mitigations
• Experience with cyber incident remediation
• Possess a strong understanding of Information Security concepts and defense in depth approaches
• Excellent problem-solving skills, strong written and verbal communication skills and must be able to explain technical issues to a non-technical audience
• Must be self-motivated and able to work in a fast-paced environment with minimal supervision
• Must be a team player and excel in a team-oriented, collaborative environment

Qualifications: BS in Computer Science with 5 years of Experience

• High level of knowledge of IT Risk Management and security engineering practices, procedures and infrastructure integration in a large organization
• Experience knowledge with articulating security solutions that mitigate risk into statements that are clearly understood by technology peers and IT leadership
• Must have strong analytical, interpersonal, multi-tasking, negotiation, project management and communication skills (written and verbal)
• Hands-on experience in IT risk and security functions planning, implementing and managing enterprise security strategies and technologies
• Experience in IT security engineering and solution delivery (research, design, build, deploy, operation and support) practices
• Demonstration of strong business acumen with analytical, interpersonal, multi-tasking, negotiation, industry knowledge, project management, written as well as oral skills
• Expert engineering technical proficiency with Checkpoint and F5 security technologies
• Strong understanding of networking infrastructure concepts, technologies, protocols, and solutions 
• Proven experience in owning and implementing security engineering projects from inception to implementation
• Expert-level development, design, deployment, and support of network security solutions supporting voice, data and mobility, utilizing industry-leading platforms and technologies
• Good technical understanding of server technology and networking concepts 
• Ability to research and solve complex security and networking challenges
• Demonstrated personal skills to effectively cooperate and communicate with business partners

Qualifications: BS in Cybersecurity with 6 years of Experience

• Passion and demonstrated experience designing, building, and securing resilient applications and infrastructures at scale
• Experience beyond basic usage of cloud platforms, services, and runtimes
• Strong focus and commitment to the evolving security needs of engineering teams
• Good understanding of cloud environments (AWS), OS and Linux internals
• Programming experience in core project languages (Golang / Python)
• Working experience in DevOps/SRE 
• Proven experience working in geographically distributed teams
• Passionate about building products that engineers love and believe in the true outcome of security
• Must have certifications in cloud security (AWS Certified Security Specialty, Professional Cloud Security Engineer, Azure Security Engineer Associate)

Qualifications: BA in Computer Networking with 3 years of Experience

• Self-starter who can work independently with minimal supervision
• Ability to prioritize multiple tasks to achieve the required goals
• Experience working as an IT-Security Engineer
• Practical experience with performing penetration tests, vulnerability scanning, program analysis and IT forensics
• Practical experience with common security challenges in operating systems, web technologies and programming languages like C/C++
• First experiences as a team leader
• Must have security certifications (e.g., Security+, GCIA, GCIH, CISSP) 
• Experience in IT/software/infrastructure or similar
• Experience in a security and IT governance role, ideally in a multisite hybrid/cloud-first environment
• Understand IT architecture at a level where design and advise on the security of information systems
• Strong knowledge of M365 security and governance, Azure AD, Azure security features and implementation
• Strong organisational skills to manage and prioritize incoming requests, background security tasks, and emergency actions

Qualifications: BS in Cloud Computing with 5 years of Experience

• Knowledge of foundational security principles
• Strong IT skills and knowledge including hardware, software and networks
• Operational knowledge of system and network security engineering best practices
• Knowledge of Microsoft Active Directory, Azure AD and Intune
• Excellent problem-solving and technical skills
• Ability to multitask, prioritize and troubleshoot
• Detail-oriented, self-motivated and disciplined, with excellent time management skills
• Previous work experience in a Security Operations Center or as an SME in one or more critical skills areas
• Relevant security certifications (CISSP, CISA, GIAC, Security Plus)
• Scripting experience such as Python, PowerShell, Regular expressions, etc.
• Working experience in Cloud (Azure/AWS) and Office 365 Security Configuration
• Experience with implementing IT security configuration standards
• Proven hands-on experience with Security solutions such as Intrusion Prevention, EDR/XDR, Proxy/Web Filter, Encryption, and PKI

Qualifications: BS in Data Science with 4 years of Experience

• Working knowledge of any computer programs and security technology
• Up-to-date knowledge of the treatment landscape and mitigation best practices
• Understanding of penetration testing, forensics and security breach protocols
• Basic knowledge of ISO27001
• Strong knowledge of operating systems such as Windows, Linux
• Strong knowledge of security in Office 365 and Azure
• Ability to manage internal and external stakeholders
• Fluent communication in the English Language with the ability to explain complicated technical or security terms in a clear but in easy and easy-to-understand way
• Positive attitude and keen attention to detail
• Experience in the field of Information/Cyber security and/or system administration
• Experienced in vulnerability scanners, DLP systems, PAM, Elastic search, AIP, CASB, Cloud Security Applications
• Very good knowledge of networking technologies, Windows and Unix/Linux systems
• Proven scripting and file manipulation skills (PowerShell, Python, Bash, SQL, Rest APIs), along with a structured approach to troubleshooting
• Good judgment and analytical skills, together with a critical thinking approach

Qualifications: BS in Systems Engineering with 7 years of Experience

• Experience in designing, deploying, and/or supporting enterprise-scale security solutions
• Experience working with or implementing endpoint and network security solutions in an enterprise
• Knowledge of Operating systems internals, hardening, and monitoring (Windows and UNIX)
• Knowledge of TCP/IP network fundamentals
• Broad knowledge of scripting languages
• Knowledge of PCI/DSS and its technical controls
• Excellent communication skills and an excellent team player
• Experience demonstrating leadership, self-motivation, and accountability
• Deep understanding of operating systems' internal working, like kernel processes, privilege levels for both Windows and Linux / Mac
• Good understanding of Cyber Security Operations and Incident Response processes
• Must have certification such as AWS Certified Cloud Practitioner, AZ-500, CISSP, SSCP, GIAC Certified

Qualifications: BA in Computer Information Systems with 5 years of Experience

• Experience in information security and/or IT infrastructure
• Strong understanding of information security processes, solutions, and practices
• High-level knowledge of cybersecurity frameworks such as NIST, ISO27001, etc.
• Understanding of TCP/IP networking systems, DNS and DHCP
• Knowledge of both Windows and Linux Operating Systems
• Must possess a good Customer focus and a positive, helpful attitude
• Demonstrated ability to work on own initiative or within a team
• Demonstrated ability to use initiative and learn new skills
• Discretionary skills when dealing with confidential and sensitive material
• Experience in O365/M365 security tools and features
• Knowledge of project management methodology or framework
• High-level knowledge of one or more frameworks for the delivery of IT services (e.g., ITIL)
• Experience in scripting languages (e.g., PowerShell, Python)
• High-level knowledge of GDPR and data protection regulations
• Experience in managing small to medium-scale projects
• Experience in producing documentation and training for technical and non-technical users

Qualifications: BS in Electrical Engineering with 8 years of Experience

• Good overall technical knowledge such as Windows, Linux, networking, and security defence technology
• Excellent communication skills in English
• Experience with one or more IT security technologies such as Endpoint Protection, Network Detection/Response, NGFW, SIEM/SOAR, privileged access management, and privileged identity management
• Interest and curiosity in the latest security trends and developments
• Motivation to learn new tools and technology
• Ability to work independently and collaborate in a team environment
• Ability to translate technical concepts into common, understandable language
• Strong knowledge across Microsoft Cloud Security
• Working experience with MS Defender
• Strong professional experience across systems management, monitoring, security and reporting
• Good hands-on experience in configuring firewalls (FortiGate)
• Good working knowledge of Mimecast, O365 and Exchange

Qualifications: BS in Cybersecurity with 6 years of Experience

• Experience in developing and implementing security projects and programs
• Knowledge of position requirements
• Knowledge of all applicable requirements, regulations, and laws
• Skill in the effective use of applicable technology/systems
• Ability to effectively communicate both verbal and written thoughts, ideas, and facts
• Ability to work cooperatively with others and independently
• Ability to demonstrate, understand, apply, and adhere to the UMB Core Values of Respect and Integrity, Well-being and Sustainability, Equity and Justice, and Innovation and Discovery
• Able to plan, schedule, estimate and commit
• Expert knowledge in multiple information security disciplines
• Strong knowledge in multiple additional information security disciplines
• Able to design, deploy and maintain a technical security solution
• Knowledge of the following systems: Palo Alto CrowdStrike Proofpoint LogRhythm AWS Cloud Security Tools CyberArk EEO Employer
• Knowledge of attack vectors (malware, web application, social engineering, etc.)
• Experience with incident response and handling
• Experience and understanding of Cloud Architecture and Infrastructure including Microsoft Azure IaaS

Qualifications: BS in Computer Engineering with 7 years of Experience

• Must hold an IT Security qualification (such as CompTIA Security, CISSP or CISM) or have relevant experience in an IT Security role
• Knowledge of security-specific regulations, legislation and best practice
• Knowledge of security threats/vulnerabilities that could impact whg
• Experience of delivering IT security responses in a consistent, prioritised manner
• Experience of engaging with projects to ensure IT technical support is provided without impact to IT Operations
• Ability to multitask and thrive in fast-paced, high-stress situations whilst maintaining a keen view of details
• Experience working within cloud and platform security management
• Should be responsible and take personal ownership of tasks while also being a knowledge-sharing team player with excellent communication skills

Qualifications: BA in Digital Forensics with 2 years of Experience

• Demonstrable security-focused experience configuring firewalls, IDS, and other network security tools
• Experience managing security in public cloud environments
• Solid understanding of endpoint security measures such as MDM/EMM, DLP, etc
• Hands-on with CASB and other SaaS security solutions
• Familiarity with written security policy
• Proven track record of maintaining SIEM and other monitoring solutions
• Must have CISSP, Security+, or similar certifications
• Familiarity with industry-standard security frameworks like NIST, MITRE, etc
• Solid understanding of trade compliance standards such as ISO, EAR/ITAR, etc
• Demonstrable experience with zero-trust security models, implementing end-to-end encryption
• Expertise with disaster recovery and business continuity strategies

Qualifications: BS in Computer Science with 5 years of Experience

• Knowledge and experience with current IT security technologies, security database/application management, and IT security standards and detailed risk assessments
• Understand technical manuals, software specifications, hardware principles of operations, and systems software operations
• Understanding of firewalls, proxies, SIEM, antivirus, and IDPS concepts
• Understanding of patch management with the ability to deploy patches promptly while understanding the business impact
• Data-informed analytical approach toward solving complex challenges
• Experience with asynchronous communication tools (i.e., Slack, etc.)
• Advanced Linux and Systems Administration
• Must have Security+, OSCP, GSEC, CEH certifications 
• Experience with cloud security solutions and best practices
• Understand the importance of lifelong learning
• Outstanding organizational, prioritization, and multitasking skills
• Demonstrated interpersonal skills that support the development of high-functioning teams

Qualifications: BS in Cybersecurity with 6 years of Experience

• Excellent knowledge in cybersecurity
• Very good knowledge of networking technologies
• Very good knowledge of Windows, Unix and Linux
• Good knowledge in scripting (PowerShell, Python, REST API's)
• Knowledge in cloud security
• Experience in IT Security in hotel operations and hospitality technology
• In-depth knowledge of technologies, both on-premises and cloud, with a strong focus on their use in the hospitality sector
• Experience with tools such as Qualys, Ivanti and CrowdStrike
• Technical knowledge of relevant security tools, processes and audit methodologies
• Must have ITIL Foundation V3 Certification 
• Excellent communication skills, written and oral

Qualifications: BS in Information Technology with 4 years of Experience

• Hands-on experience in security systems, including firewalls, intrusion detection systems, anti-virus software, authentication systems, content filtering, etc.
• Endpoint security solutions, including file integrity monitoring and data loss prevention
• Experience in building and maintaining IT security systems
• Experience with network, database, mobile device management (MDM), Endpoint security solutions and operating system security
• Thorough understanding of the latest security principles, techniques, and protocols
• Excellent oral and written skills in English
• Certifications such as CCNA or CCNP, SSCP (Systems Security Certified Practitioner), CCSP (Certified Cloud Security Professional) 
• Critical thinking skills and the ability to solve problems as they arise
• Understanding of best practices and how to implement solutions at a group-wide level

Qualifications: BA in Information Systems with 3 years of Experience

• Understand policy/directives, and the ability to assess vulnerabilities of all types of IT systems
• Technical and operating knowledge of enterprise logging systems and log monitoring
• Ability to pivot quickly with changing priorities in a dynamic, hyper-growth environment
• Strong capability to communicate security concepts and requirements at all levels of the business 
• Ability to interface and communicate effectively with technical and non-technical audiences
• Strong desire to mentor teammates and provide leadership on key initiatives/projects
• Ability to work independently and proactively
• Good level of understanding of control frameworks (e.g., NIST), Threat modelling and security risks
• Demonstrable experience in Cyber security (SIEM, SOAR, Vulnerability Management, Threat Detection, etc)
• Knowledge of common Security vulnerabilities
• Working experience in Network Firewall
• Strong experience working with Cloud Solutions (Saas, IaaS and Serverless)
• Working experience in IaC (Python, NodeJS, GoLang)
• Must have Security Certifications achieved or aiming for (CISSP, CEH, OSCP, CCSP, GSEC)

Qualifications: BS in Computer Engineering with 7 years of Experience

• Security operations background that supports understanding of security tools (i.e., detection forensics, log normalization, and privilege separation), etc.
• Familiar with the NIST framework, Windows and Linux system administrator experience, scripting, coding, network automation skills (Python, Ansible) 
• Direct experience with EDR Sentinel One, intrusion detection, firewall (Palo Alto Networks)
• Knowledge of risk assessment tools, technologies, and methods 
• Knowledge of disaster recovery computer forensic tools, technologies, and methods
• Experience in planning, researching and developing security policies, standards, and procedures
• Ability to communicate network security issues to peers and management
• Excellent verbal and written communication skills including a focus on providing continuous, proactive communications to management, peers, and stakeholders while working on projects
• Proven professional experience in the IT industry with a focus on security
• Hands-on experience with security systems, including firewalls, intrusion detection systems, anti-virus and EDR software and log collection software
• Solid technical knowledge in computer networking/protocols (TCP/IP), security best practices (e.g., least privileges, network segmentation, encryption, password management), endpoint configuration and hardening
• Experience with common threat modeling and risk analysis frameworks

Qualifications: BS in Information Assurance with 6 years of Experience

• Professional experience with Identity and Access Management concepts
• Ability to write code in Python, Java, and shell scripting
• Experience with delivering reliable, available, and high-performance enterprise-scale solutions, LDAP-based directory services such as Active Directory and ISAM
• Experience with public cloud platforms, AWS and/or Azure
• Ability to demonstrate experience and knowledge of information security best practices and concepts
• Broad knowledge of network and operating systems
• Knowledge of the risk management life cycle
• Good verbal and written communication skills
• Must have IT and/or Cyber Security Certifications (e.g., CISSP, GIAC certifications, etc.)
• Technical expertise with endpoint protection and response (CrowdStrike), Vulnerability management (Qualys), Email security (Abnormal Security), Log management (Splunk or Sumo Logic) and ServiceNow
• Direct and recent working experience with the following compliance programs: ISO 27001, PCI-DSS, SSAE18 SOC1 Type 2/SOC2 Type 2

Qualifications: BS in Cloud Computing with 5 years of Experience