SHI International
Security Engineer
SHI International, New York, New York, United States,
Job SummaryThe Security Engineer will work as a security technology generalist ensuring that all relevant technologies are running the appropriate security tools and configured for best practice and secure computing. The Security Engineer will work with other team members and cross-functional teams to improve the security posture of SHI International Corp.
This position reports to the Manager of Security Engineering & Architecture. This position is remote as determined by SHI management.
About Us
Since 1989, SHI International Corp. has helped organizations change the world through technology. We’ve grown every year since, and today we’re proud to be a $14 billion global provider of IT solutions and services.
Over 17,000 organizations worldwide rely on SHI’s concierge approach to help them solve what’s next.
But the heartbeat of SHI is our employees – all 6,000 of them.
If you join our team, you’ll enjoy:
Our commitment to diversity, as the largest minority- and woman-owned enterprise in the U.S.
Continuous professional growth and leadership opportunities.
Health, wellness, and financial benefits to offer peace of mind to you and your family.
World-class facilities and the technology you need to thrive – in our offices or yours.
ResponsibilitiesInclude, but are not limited to:
Safeguard information systems by identifying and remediating potential and actual security issues.
Implement security improvements by analyzing existing infrastructure, evaluating changes and controls, anticipating new requirements.
Proactively identify technology gaps and develop and implement solutions collaboratively.
Diagnose system problems; propose and rapidly develop high quality solutions.
Monitor logs for unusual or suspicious activity and take appropriate action.
Research, plan for, and implement new systems technology in the current operating environment.
Introduce latest information security issues and requirements to management.
Identify current and emerging technology issues including security trends, vulnerabilities, and threats.
Act as a technical consultant on information security incidents and forensic investigations.
Experience with SOAR practices, including playbook development, data and artifact collection, process automation, technology orchestration, and response actions.
Qualifications
Bachelor’s Degree in computer science or 4 years of relevant work experience required
3+ years of relevant IT/ Technical industry experience
2+ years of cybersecurity experience
3+ years of Administration/Engineering experience.
3 years + experience working on one or more of the following complex technologies:
Knowledge of security standards, regulations, and compliance frameworks (PCI, NIST, ISO)
Knowledge of adversarial tactics, techniques and procedures (TTPs)
Knowledge of the MITRE ATT&CK framework
Required Skills
Exceptional administrative, organizational, and problem-solving skills
Excellent written and verbal communication skill
Strong analytical and problem-solving skills
Ability to work and collaborate with diverse worldwide teams and peers
Ability to document and explain technical details to both technical and non-technical teams
Strong Understanding of Operating System and Native Applications, not limited to Windows, Windows Server, MacOS, Linux Server.
Familiarity with scripting languages such as Python
Strong understanding of network protocols, operating systems, and web application technologies
Deploy best practices by understanding and researching security attack patterns and practices.
Well-versed in keeping up with the current and emerging threats and techniques for exploiting security vulnerabilities.
Experience interconnecting security tools using a data lake to correlate data for use in risk management and continuous monitoring practices.
Preferred Skills:
Experience developing automation with a general-purpose programming or scripting language
Experience leveraging threat intelligence to develop new detection automation.
Experience analyzing large data sets within automation.
Ability to provide risk mitigation solutions present in solutions that do not offer sufficient security practices.
Proficient in troubleshooting security incidents.
Unique Requirements
Off hours responsibilities may include troubleshooting major issues, and executing changes to accommodate off-hours maintenance schedules.
Additional Information
The estimated annual pay range for this position is $90,000 - $150,000. The compensation for this position is dependent on job-related knowledge, skills, experience, and market location and, therefore, will vary from individual to individual. Benefits may include, but are not limited to, medical, vision, dental, 401K, and flexible spending.
Equal Employment Opportunity – M/F/Disability/Protected Veteran Status
This position reports to the Manager of Security Engineering & Architecture. This position is remote as determined by SHI management.
About Us
Since 1989, SHI International Corp. has helped organizations change the world through technology. We’ve grown every year since, and today we’re proud to be a $14 billion global provider of IT solutions and services.
Over 17,000 organizations worldwide rely on SHI’s concierge approach to help them solve what’s next.
But the heartbeat of SHI is our employees – all 6,000 of them.
If you join our team, you’ll enjoy:
Our commitment to diversity, as the largest minority- and woman-owned enterprise in the U.S.
Continuous professional growth and leadership opportunities.
Health, wellness, and financial benefits to offer peace of mind to you and your family.
World-class facilities and the technology you need to thrive – in our offices or yours.
ResponsibilitiesInclude, but are not limited to:
Safeguard information systems by identifying and remediating potential and actual security issues.
Implement security improvements by analyzing existing infrastructure, evaluating changes and controls, anticipating new requirements.
Proactively identify technology gaps and develop and implement solutions collaboratively.
Diagnose system problems; propose and rapidly develop high quality solutions.
Monitor logs for unusual or suspicious activity and take appropriate action.
Research, plan for, and implement new systems technology in the current operating environment.
Introduce latest information security issues and requirements to management.
Identify current and emerging technology issues including security trends, vulnerabilities, and threats.
Act as a technical consultant on information security incidents and forensic investigations.
Experience with SOAR practices, including playbook development, data and artifact collection, process automation, technology orchestration, and response actions.
Qualifications
Bachelor’s Degree in computer science or 4 years of relevant work experience required
3+ years of relevant IT/ Technical industry experience
2+ years of cybersecurity experience
3+ years of Administration/Engineering experience.
3 years + experience working on one or more of the following complex technologies:
Knowledge of security standards, regulations, and compliance frameworks (PCI, NIST, ISO)
Knowledge of adversarial tactics, techniques and procedures (TTPs)
Knowledge of the MITRE ATT&CK framework
Required Skills
Exceptional administrative, organizational, and problem-solving skills
Excellent written and verbal communication skill
Strong analytical and problem-solving skills
Ability to work and collaborate with diverse worldwide teams and peers
Ability to document and explain technical details to both technical and non-technical teams
Strong Understanding of Operating System and Native Applications, not limited to Windows, Windows Server, MacOS, Linux Server.
Familiarity with scripting languages such as Python
Strong understanding of network protocols, operating systems, and web application technologies
Deploy best practices by understanding and researching security attack patterns and practices.
Well-versed in keeping up with the current and emerging threats and techniques for exploiting security vulnerabilities.
Experience interconnecting security tools using a data lake to correlate data for use in risk management and continuous monitoring practices.
Preferred Skills:
Experience developing automation with a general-purpose programming or scripting language
Experience leveraging threat intelligence to develop new detection automation.
Experience analyzing large data sets within automation.
Ability to provide risk mitigation solutions present in solutions that do not offer sufficient security practices.
Proficient in troubleshooting security incidents.
Unique Requirements
Off hours responsibilities may include troubleshooting major issues, and executing changes to accommodate off-hours maintenance schedules.
Additional Information
The estimated annual pay range for this position is $90,000 - $150,000. The compensation for this position is dependent on job-related knowledge, skills, experience, and market location and, therefore, will vary from individual to individual. Benefits may include, but are not limited to, medical, vision, dental, 401K, and flexible spending.
Equal Employment Opportunity – M/F/Disability/Protected Veteran Status