Love's Travel Stops
Cyber Security Engineer II (architecture)
Love's Travel Stops, Oklahoma City, Oklahoma, United States, 73116
Req ID:
451389
Benefits:
* Fuel Your Growth with Love's - company funded tuition assistance program
* Paid Time Off * 401(k) – 100% Match up to 5% * Medical/Dental/Vision Insurance after 30 days * Hiring Immediately * Hybrid work-schedule (2 remote days and 3 days onsite at the OKC office)
BASIC PURPOSE
: The Cyber Security Engineer II provides leadership advice and expertise to IT staff and other departments related to Information Security issues. The Engineer II represents Information Security interests in projects internal and external to the department, performs risk assessments of new and existing applications and platforms, creates solutions that balance business goals with cybersecurity requirements, creates policy and process documentation, and otherwise contributes to the development and maintenance of sound Information Security architectures. The Cyber Security Engineer II mentors less-experienced Information Security staff and may direct the activity of other team members. The Cyber Security Engineer II reports to the Supervisor of Information Security Architecture.
MAJOR RESPONSIBILITIES:
Maintain an understanding of the company's technology and information systems
Align organizational security strategy with overall business and technology strategy
Participates in/develops leadership partnerships for IT and Operations projects as needed to support information security architecture and integration of all security elements
Design security architecture elements to mitigate threats as they emerge
Researches the internal and external threat landscape and recommends remediation activities to management and other teams
Support a secure, stable, and scalable AWS/Azure/GCP cloud infrastructure architecture, aligning security, compliance, performance and resilience.
Plan, research and design security architectures for any IT project
Identify security design gaps in existing and proposed architectures and recommend changes or enhancements
Conduct Information Security risk assessments on new and existing technologies, applications and platforms.
Counsel teams on the management of residual risk based on product, platform, or system design
Drafts and maintains information security documentation
Administers Information Security applications and platforms
Represents the Information Security team in projects internal and external to the department
Defines and performs project-related tasks
Participates in the Computer Incident Response Team, as needed, typically focusing on lessons learned and post-event improvement
Mentors InfoSec team members in sound information security processes to protect the confidentiality, integrity, and available of Love’s information technology assets
Works with third-party support and security equipment vendors
Other duties assigned as needed
EDUCATION AND EXPERIENCE:
Education:
Bachelor’s Degree in Information Security, Information Technology, or a related discipline required.
CISSP, CASP, CISA or other intermediate security certification strongly preferred.
Experience:
Minimum 4 year in Information Security preferred
Intermediate knowledge of Information Security principles and practices to include, but not limited to, the following areas: Security Architecture, Risk and Vulnerability Management, Cloud Platform Security, Network-Based Security, Host-Based Security, Public Key Infrastructure (PKI), Security Information and Event Management (SIEM), Encryption, Data Loss Prevention (DLP), Malware Prevention is a plus
Intermediate IT experience (System Admin, Network Admin, etc.) is preferred
Hands-on experience installing and troubleshooting security hardware and systems strongly preferred
Knowledge and understanding of SDLC required
Knowledge and understanding of Project Management principles and methodologies is a plus
Intermediate knowledge of information security principles and practices to include, but not limited to, the following areas: Vulnerability Scanning, Security Information and Event Management (SIEM), NG Firewall, NGAV, Encryption, Host Based Security, Data Loss Prevention (DLP), Malware Prevention , Cloud Platform Security, Network-Based Security, Public Key Infrastructure (PKI)
SKILLS AND PHYSICAL DEMANDS:
Skills:
Intermediate technical knowledge of infrastructure and application development
Basic understanding of the Company’s goals and objectives
Knowledge of applicable data privacy practices and laws
Ability to perform general mathematical calculations for the purpose of creating need assessments and budgets
Ability to conduct research into issues and products as required
Ability to prioritize/execute tasks in a high-pressure environment and make sound decisions in emergency situations
Strong interpersonal, written and oral communication skills
Ability to present ideas in a user-friendly language
Highly self-motivated and directed
Keen attention to detail
Strong analytical and problem-solving abilities
Strong customer service orientation; experience working in a team-oriented, collaborative environment
Typical Physical Demands:
Requires prolonged sitting, some bending and stooping
Occasional lifting up to 25 pounds
Manual dexterity sufficient to operate a computer keyboard and calculator
Requires normal range of hearing and vision
Job Function(s):
Information Technology
Love’s has been fueling customers’ journeys since 1964. Innovation and perseverance continue to lead the way for the family-owned and -operated business headquartered in Oklahoma City with more than 40,000 team members in North America and Europe. The company’s core business is travel stops and convenience stores with more than 630 locations in 42 states. Love’s continues its commitment to offer products and services that provide value for professional drivers, fleets, four-wheel customers, RVers, alternative fuel and wholesale fuel customers. Giving back to communities Love’s serves and maintaining an inclusive and diverse workplace are hallmarks of the company’s award-winning culture.
The Love’s Family of Companies includes:
Gemini Motor Transport, one of the industry’s safest trucking fleets.
Speedco and Love’s Truck Care, the largest oil change and preventive maintenance and total truck care network.
Musket, a rapidly growing, Houston-based commodities supplier and trader.
Trillium, a Houston-based alternative fuels expert.
TVC Pro-driver, a commercial driver’s license (CDL) protection subscription service.
EOE-Protected Veterans/Disability
451389
Benefits:
* Fuel Your Growth with Love's - company funded tuition assistance program
* Paid Time Off * 401(k) – 100% Match up to 5% * Medical/Dental/Vision Insurance after 30 days * Hiring Immediately * Hybrid work-schedule (2 remote days and 3 days onsite at the OKC office)
BASIC PURPOSE
: The Cyber Security Engineer II provides leadership advice and expertise to IT staff and other departments related to Information Security issues. The Engineer II represents Information Security interests in projects internal and external to the department, performs risk assessments of new and existing applications and platforms, creates solutions that balance business goals with cybersecurity requirements, creates policy and process documentation, and otherwise contributes to the development and maintenance of sound Information Security architectures. The Cyber Security Engineer II mentors less-experienced Information Security staff and may direct the activity of other team members. The Cyber Security Engineer II reports to the Supervisor of Information Security Architecture.
MAJOR RESPONSIBILITIES:
Maintain an understanding of the company's technology and information systems
Align organizational security strategy with overall business and technology strategy
Participates in/develops leadership partnerships for IT and Operations projects as needed to support information security architecture and integration of all security elements
Design security architecture elements to mitigate threats as they emerge
Researches the internal and external threat landscape and recommends remediation activities to management and other teams
Support a secure, stable, and scalable AWS/Azure/GCP cloud infrastructure architecture, aligning security, compliance, performance and resilience.
Plan, research and design security architectures for any IT project
Identify security design gaps in existing and proposed architectures and recommend changes or enhancements
Conduct Information Security risk assessments on new and existing technologies, applications and platforms.
Counsel teams on the management of residual risk based on product, platform, or system design
Drafts and maintains information security documentation
Administers Information Security applications and platforms
Represents the Information Security team in projects internal and external to the department
Defines and performs project-related tasks
Participates in the Computer Incident Response Team, as needed, typically focusing on lessons learned and post-event improvement
Mentors InfoSec team members in sound information security processes to protect the confidentiality, integrity, and available of Love’s information technology assets
Works with third-party support and security equipment vendors
Other duties assigned as needed
EDUCATION AND EXPERIENCE:
Education:
Bachelor’s Degree in Information Security, Information Technology, or a related discipline required.
CISSP, CASP, CISA or other intermediate security certification strongly preferred.
Experience:
Minimum 4 year in Information Security preferred
Intermediate knowledge of Information Security principles and practices to include, but not limited to, the following areas: Security Architecture, Risk and Vulnerability Management, Cloud Platform Security, Network-Based Security, Host-Based Security, Public Key Infrastructure (PKI), Security Information and Event Management (SIEM), Encryption, Data Loss Prevention (DLP), Malware Prevention is a plus
Intermediate IT experience (System Admin, Network Admin, etc.) is preferred
Hands-on experience installing and troubleshooting security hardware and systems strongly preferred
Knowledge and understanding of SDLC required
Knowledge and understanding of Project Management principles and methodologies is a plus
Intermediate knowledge of information security principles and practices to include, but not limited to, the following areas: Vulnerability Scanning, Security Information and Event Management (SIEM), NG Firewall, NGAV, Encryption, Host Based Security, Data Loss Prevention (DLP), Malware Prevention , Cloud Platform Security, Network-Based Security, Public Key Infrastructure (PKI)
SKILLS AND PHYSICAL DEMANDS:
Skills:
Intermediate technical knowledge of infrastructure and application development
Basic understanding of the Company’s goals and objectives
Knowledge of applicable data privacy practices and laws
Ability to perform general mathematical calculations for the purpose of creating need assessments and budgets
Ability to conduct research into issues and products as required
Ability to prioritize/execute tasks in a high-pressure environment and make sound decisions in emergency situations
Strong interpersonal, written and oral communication skills
Ability to present ideas in a user-friendly language
Highly self-motivated and directed
Keen attention to detail
Strong analytical and problem-solving abilities
Strong customer service orientation; experience working in a team-oriented, collaborative environment
Typical Physical Demands:
Requires prolonged sitting, some bending and stooping
Occasional lifting up to 25 pounds
Manual dexterity sufficient to operate a computer keyboard and calculator
Requires normal range of hearing and vision
Job Function(s):
Information Technology
Love’s has been fueling customers’ journeys since 1964. Innovation and perseverance continue to lead the way for the family-owned and -operated business headquartered in Oklahoma City with more than 40,000 team members in North America and Europe. The company’s core business is travel stops and convenience stores with more than 630 locations in 42 states. Love’s continues its commitment to offer products and services that provide value for professional drivers, fleets, four-wheel customers, RVers, alternative fuel and wholesale fuel customers. Giving back to communities Love’s serves and maintaining an inclusive and diverse workplace are hallmarks of the company’s award-winning culture.
The Love’s Family of Companies includes:
Gemini Motor Transport, one of the industry’s safest trucking fleets.
Speedco and Love’s Truck Care, the largest oil change and preventive maintenance and total truck care network.
Musket, a rapidly growing, Houston-based commodities supplier and trader.
Trillium, a Houston-based alternative fuels expert.
TVC Pro-driver, a commercial driver’s license (CDL) protection subscription service.
EOE-Protected Veterans/Disability