Calance Job Opening

Job TitleCyberSecurity Engineer - ID:35940
Start DateASAP
Job SkillsAn IT professional who got their start in infrastructure (network, servers, etc) and then transitioned to cybersecurity.  Subject to multiple regulatory compliance specs – GLB, PCI, etc.  NCWAY (?) – credit union audit process
Per customer, job description is intentionally not tech-specific, want someone with a systems engineering background, who understands how the parts of a working environment are built and how they interact with each other.  But it would be great if they know:
VMware (vSphere)
Microsoft stack – Active Directory, Windows (both endpoints and servers), O365 (Exchange online, Azure PaaS/IaaS).  They intend to leverage Microsoft’s security framework, particularly in the Azure context.
Cisco for networking
Navigating incident response (IR)
Position involves a lot of monitoring, identifying threats, needs good SE who also understands how to assess security risks so wider background is desirable.
Technical - analyst – response
Policy - procedure - change mgmt - risk assessment
Locationfairfax, VA
Date Posted07/21/2020

Generated button

As a Cybersecurity Engineer, you will work directly with the cyber team and infrastructure and operations teams to research, design, implement, and deploy enterprise-class technologies that will protect the organization from risks while protecting all data. The successful candidate will influence the long-term roadmap, identify enterprise-class tools and define best practices used by the broader technology team, embed in teams to jump-start projects, and help the business prioritize work. This position is hands-on and reports directly to the Cybersecurity Team Lead and will work closely with other engineering teams.

This role is accountable for the development of policies, procedures and technology to secure member data, create a digital workplace to empower staff to deliver products and services in timely and secure fashion to members. The position will manage the following:

• Develops IT security programs and recommends necessary changes to the information security team to ensure the company’s systems are fully compliant with all applicable regulatory requirements and privacy laws.
• Facilitates third-party audit reviews, testing and remediation of internal IT departments.
• Provides periodic training to company employees on information security topics.
• Stays abreast of the security industry threat landscape, specifically within the company’s industry.
• Recognizes his/her personal developmental needs and is proactive in obtaining the coaching, networking and training needed to ensure his/her continued success in the position.
• Works to foster two-way communication, teamwork and learning.

Qualification—all required unless otherwise noted:

Formal Education & Certification
• Bachelor’s degree in computer science, information assurance, IT or related field, or equivalent.
• Security+, Certified Ethical Hacker (CEH), CCNP Security or similar technical security certification or training preferred.
• Minimum of 5 years related experience required.

Skills & Experience
• Highly technical and analytical expertise, with a proven deep background in technology design, implementation and delivery.
• Experience in cloud computing technologies, including software-, infrastructure and platform-as-a-service, as well as public, private, and hybrid environments.
• Extensive knowledge of traditional security controls and technologies, such as Security Information and Event Management (SIEM) systems, intrusion detection/prevention systems (IDS/IPS), network intrusion and detections systems (NIDS) and host intrusion detection systems (HIDS), public key infrastructure (PKI), identity and access management (IAM) systems, next generation antivirus, firewalls and newer offerings such as endpoint detection and response (EDR), DNS filtering, threat intelligence platforms, security automation and orchestration, deception technologies and application controls.
• Skilled in meeting vulnerability and penetration testing requirements.
• Excellence in communicating business risk from cybersecurity issues.
• Experience with Agile methodologies.
• Experience managing SIEM systems, threat intelligence platforms, security automation and orchestration solutions, IDS/IPS, file integrity monitoring, data loss prevention (DLP) and other network and system monitoring tools.
• Experience with Amazon Web Services (AWS) or Microsoft Azure.
• Familiarity with one or more of the following: NIST, FFIEC, PCI Data Security Standard (PCI DSS), Center for Internet Security (CIS) standards or Service Organization Controls (SOC) 2.
• Familiarity with privacy and data protection laws.

Personal Attributes
• Proven analytical and problem-solving abilities.
• Ability to effectively prioritize and execute tasks in a high-pressure environment.
• Good written, oral, and interpersonal communication skills.
• Ability to conduct research into IT security issues and products as required.
• Ability to present ideas in business-friendly and user-friendly language.
• Team-oriented and skilled in working within a collaborative environment.

Send To Email / Remind Me



Mission Viejo, CA ~ (800) 732-4680
Atlanta, GA ~ (866) 951-1151

Calance is a global IT Services firm specializing in end-to-end solutions for Development, Managed Service,
Security, SAP, Project Control Integration and IT Staffing.Operating in the United States and India,
Calance helps clients bring their ideas and strategies to life through talent, technology and tenacity.

2020 All rights reserved.