Cyber Security Engineer
Howard Industries, , MS, United States
*The position requires working on-site in Laurel, MS.
About Howard:
Howard Industries is the nation’s leading manufacturer of distribution transformers. As Mississippi's largest privately held employer headquartered within the state, the company employs over 4,000 team members, generates over $1 billion in revenue, and consists of 4 main corporate divisions: Howard Power Solutions, Howard Lighting, Howard Transportation, and Howard Technology Solutions.
Job Overview:
We are seeking a highly skilled and motivated Cyber Security Engineer to join our growing IT security team. The ideal candidate will have hands-on experience in protecting our digital infrastructure, ensuring the confidentiality, integrity, and availability of information systems. As a Cyber Security Engineer, you will be responsible for implementing, monitoring, and managing security measures to safeguard our organization from cyber threats and vulnerabilities.
Key Responsibilities:
- Network Security: Design, implement, and maintain security measures for protecting network infrastructures including firewalls, intrusion detection systems (IDS), and intrusion prevention systems (IPS).
- Vulnerability Management: Conduct regular vulnerability assessments, analyze results, and manage remediation efforts. Work with stakeholders to resolve identified security issues.
- Incident Response: Lead and coordinate responses to security incidents, ensuring quick recovery and minimal impact. Perform root cause analysis and recommend long-term fixes to prevent recurrence.
- Security Audits & Compliance: Perform regular security audits, assessments, and compliance checks. Ensure adherence to industry standards and regulatory requirements (e.g., ISO 27001, NIST, GDPR, HIPAA).
- Risk Assessment: Perform risk analysis and identify potential security threats, evaluating risks and recommending mitigation strategies.
- Security Tools & Technology: Utilize and manage a range of security tools such as SIEM (Security Information and Event Management), anti-virus software, encryption technologies, and endpoint protection solutions.
- Policy Development & Training: Develop and enforce security policies and procedures. Provide security awareness training to employees and ensure adherence to security best practices.
- Collaboration: Work closely with IT teams, developers, and other departments to ensure secure software development practices, secure system configurations, and consistent application of security controls.
- Research & Development: Stay up-to-date with the latest cyber threats, security technologies, and trends. Proactively recommend improvements to security architecture and processes.
Required Qualifications:
Education: Bachelor’s degree in Computer Science, Information Security, or related field. Relevant certifications (e.g., CISSP, CISM, CEH, CompTIA Security+) are highly preferred.
Experience:
- 5+ years of professional experience in Cyber Security or IT Security roles
- Hands-on experience with firewalls, VPNs, IDS/IPS, and other security technologies.
- Proven experience with vulnerability management, penetration testing, and incident response.
- Experience with regulatory and compliance frameworks such as GDPR, HIPAA, PCI-DSS, etc.
Technical Skills:
- Knowledge of network protocols (TCP/IP, HTTP/HTTPS, DNS, etc.) and network architecture.
- Proficiency in security tools like SIEM (Splunk, ArcSight, etc.), antivirus/antimalware software, and encryption methods.
- Experience with cloud security platforms (AWS, Azure, etc.).
- Familiarity with scripting languages (Python, PowerShell, etc.) for automation tasks is a plus.
Soft Skills:
- Strong problem-solving and analytical abilities.
- Excellent communication skills, with the ability to explain complex security concepts to non-technical stakeholders.
- Ability to work in a fast-paced, high-pressure environment.
- Strong attention to detail and commitment to maintaining security standards.
Preferred Qualifications:
- Experience with advanced persistent threats (APT) and malware analysis.
- Familiarity with DevSecOps practices and securing CI/CD pipelines.
- Experience in leading or managing security operations teams.
- Knowledge of data privacy laws and regulations.