Tech Tammina
Information Security Engineer
Tech Tammina, Okemos, Michigan, 48864
Role: Information Security Engineer Location: Okemos, MI (Hybrid, remote/on-site) Duration: Long term Rate: Market Job Summary: Able to provide guidance in all areas relating to information security in order to align and establish information security and strategy with business requirements. Primary Job Responsibilities: Assist with audits of corporate information systems to ensure compliance with security policies, NIST security controls, PCI-DSS and applicable state and federal laws and regulations. Identifies functionality requirements, performs implementation and security administration of tools (e.g. SIEM, vulnerability management, web application firewall). Establishes control-related standards and procedures and prepares project status reports for management. Designs and coordinates business resumption and recovery test and evaluation plans for security, in support of disaster recovery and business continuity plans. Identifies potential risk items and subsequent remediation of vulnerabilities in the environment. Supports day-to-day monitoring of logs and alerts from firewalls, log management, intrusion detection systems and content filtering controls, etc. Performs forensic analysis and investigation of log alerts and malware. Provides security analysis and guidance to the information security analyst and administrator team members. Provides technical problem solving in configuration and utilization of all security enabled applications, systems and network devices. Provides technical analysis of commercial and government customer requirements and controls. Perform other related assigned duties as necessary to complete the Primary Job Responsibilities as described above. Minimum Qualifications: Position requires a bachelor's degree in information technology or a related field, and seven years' experience in information security or system administration. CISSP certification is preferred but not required. Will accept any suitable combination of education, training, or experience. Position requires strong knowledge of information security principles and practices, intrusion detection systems, installation, configuration, monitoring and response to security systems, security protocols and standards, software and security architectures, risk management, control techniques and frameworks, planning and project management, regulations, and laws; ability to lead teams; ability to collect and analyze complex data; use data extraction and analysis tools; ability to use active listening skills; effective verbal and written communication.