Logo
Nexcel Computer Solutions

Senior Information Security Specialist

Nexcel Computer Solutions, Palo Alto, California, United States, 94306


Roles & Responsibilities:

Monitoring the system and ensuring the system is available 24/7.

Maintain best practices and security standards.

Design and implement security solutions that protect the organization's On-prem / cloud infrastructure, applications, and data from security threats.

Conduct regular security assessments of the organization's On-prem / cloud environment to identify potential security vulnerabilities and recommend appropriate remediation measures.

Configure and maintain various security tools such as firewalls, intrusion detection and prevention systems, and security information and event management (SIEM) systems to ensure optimal protection against security threats.

Regularly monitor the syslogs and take corrective actions if any security breaches or vulnerabilities are found in the logs.

Run VAPT tools to mitigate security vulnerabilities.

Manage access controls for cloud resources, including user authentication and authorization, identity and access management (IAM), and network security groups (NSGs).

Monitor the On-prem / cloud environment for security incidents and respond promptly to any security breaches or threats.

Create and maintain security policies and procedures for the organization's On-prem / cloud environment, including disaster recovery plans, incident response plans, and security awareness training for employees.

Keep up-to-date with the latest security trends and best practices to ensure that the organization's On-prem / cloud environment remains secure against evolving security threats.

Review and apply the WAF policies to protect against DDoS and application-related attacks.

Test the WAF rules and ensure they block malicious traffic.

Qualifications & Technical Skills:

Minimum of 10 years of experience.

B.Sc. in Computer Engineering or Equivalent.

Security Incident Handling & Response.

Security Management Frameworks.

Firewall/IDS/IPS (Palo Alto, Fortinet, Cisco, etc.).

Vulnerability management (VAPT).

SIEM Management.

Data Management Protection.

Advanced Malware Prevention.

Identity & Access Management.

AWS: IAM, KMS, VPC, Security Groups, Network ACLs, VPC endpoints, CloudWatch, VPC Flow Logs.

Logging and Monitoring, SIEM, Syslog.

CloudFront, WAF, and Certificate Management.

Technical Certifications like CEH, Security+, CISSP, etc.

#J-18808-Ljbffr