Cyber Security Engineer

The position requires working on-site in Laurel, MS. About Howard: Howard Industries is the nation's leading manufacturer of distribution transformers. As Mississippi's largest privately held employer headquartered within the state, the company employs over 4,000 team members, generates over $1 billion in revenue, and consists of 4 main corporate divisions: Howard Power Solutions, Howard Lighting, Howard Transportation, and Howard Technology Solutions. Job Overview: We are seeking a highly skilled and motivated Cyber Security Engineer to join our growing IT security team. The ideal candidate will have hands-on experience in protecting our digital infrastructure, ensuring the confidentiality, integrity, and availability of information systems. As a Cyber Security Engineer, you will be responsible for implementing, monitoring, and managing security measures to safeguard our organization from cyber threats and vulnerabilities. Key Responsibilities: Network Security: Design, implement, and maintain security measures for protecting network infrastructures including firewalls, intrusion detection systems (IDS), and intrusion prevention systems (IPS). Vulnerability Management: Conduct regular vulnerability assessments, analyze results, and manage remediation efforts. Work with stakeholders to resolve identified security issues. Incident Response: Lead and coordinate responses to security incidents, ensuring quick recovery and minimal impact. Perform root cause analysis and recommend long-term fixes to prevent recurrence. Security Audits & Compliance: Perform regular security audits, assessments, and compliance checks. Ensure adherence to industry standards and regulatory requirements (e.g., ISO 27001, NIST, GDPR, HIPAA). Risk Assessment: Perform risk analysis and identify potential security threats, evaluating risks and recommending mitigation strategies. Security Tools & Technology: Utilize and manage a range of security tools such as SIEM (Security Information and Event Management), anti-virus software, encryption technologies, and endpoint protection solutions. Policy Development & Training: Develop and enforce security policies and procedures. Provide security awareness training to employees and ensure adherence to security best practices. Collaboration: Work closely with IT teams, developers, and other departments to ensure secure software development practices, secure system configurations, and consistent application of security controls. Research & Development: Stay up-to-date with the latest cyber threats, security technologies, and trends. Proactively recommend improvements to security architecture and processes. Required Qualifications: Education: Bachelor's degree in Computer Science, Information Security, or related field. Relevant certifications (e.g., CISSP, CISM, CEH, CompTIA Security) are highly preferred. Experience: 5 years of professional experience in Cyber Security or IT Security roles Hands-on experience with firewalls, VPNs, IDS/IPS, and other security technologies. Proven experience with vulnerability management, penetration testing, and incident response. Experience with regulatory and compliance frameworks such as GDPR, HIPAA, PCI-DSS, etc. Technical Skills: Knowledge of network protocols (TCP/IP, HTTP/HTTPS, DNS, etc.) and network architecture. Proficiency in security tools like SIEM (Splunk, ArcSight, etc.), antivirus/antimalware software, and encryption methods. Experience with cloud security platforms (AWS, Azure, etc.). Familiarity with scripting languages (Python, PowerShell, etc.) for automation tasks is a plus. Soft Skills: Strong problem-solving and analytical abilities. Excellent communication skills, with the ability to explain complex security concepts to non-technical stakeholders. Ability to work in a fast-paced, high-pressure environment. Strong attention to detail and commitment to maintaining security standards. Preferred Qualifications: Experience with advanced persistent threats (APT) and malware analysis. Familiarity with DevSecOps practices and securing CI/CD pipelines. Experience in leading or managing security operations teams. Knowledge of data privacy laws and regulations.