Information Security Engineer

Summary

Join Verra Mobility as an Information Security Engineer and design, implement, and maintain security systems to protect our infrastructure from cyber threats. You will configure and manage security tools, conduct security testing, and collaborate with IT teams. Responsibilities include incident response, documentation, and training. The ideal candidate possesses a Bachelor's degree in a related field or equivalent experience, along with experience with various security tools. Certifications such as CISSP or CompTIA Security+ are preferred. This role requires strong communication, collaboration, and problem-solving skills.

Requirements

• Bachelor’s degree in computer science, cybersecurity, or related field or 2 years of professional experience as an information security engineer
• Experience with security tools including SIEM, SOAR, WAF, PAM, firewalls, secure web/email gateways
• Articulate with strong business acumen and executive presence
• Coachable and willing to learn with an emphasis on positive demeanor
• Ability to take initiative and drive results
• Successful completion of the Nlets fingerprinting background assessment

Responsibilities

• Implement security solutions that reinforce a defense-in-depth and zero-trust posture
• Contribute to complex security projects
• Install, configure, maintain, patch and troubleshoot all information security tools and infrastructure including but not limited to SIEM, SOAR, WAF, PAM, firewalls, secure web/email gateways
• Perform routine configuration reviews of information security technology and infrastructure against industry best practices, vendor supplied recommendations and the company’s own internal baselines
• Create and maintain internal documentation such as network, architectural and data flow diagrams and internal procedures for all information security owned products and tools
• Train the security team on newly deployed technologies and act as an escalation point and subject matter expert for all information security owned systems
• Support proof of concept efforts of new security technology solutions while working closely with established vendors and resellers. Implement and test new security technologies deployed to safeguard access to resources, enterprise networks and computer systems as directed by the Information Security Manager
• Participate and lead security incident response procedures as outlined in the company security incident response plan. Responsibilities may include playing a role as the senior technical resource leading triage efforts and taking the lead on communications with senior leadership
• Work closely with the Governance, Risk, Compliance team to document internal operational and audit procedures around information security owned infrastructure, gather technical evidence, speak to cybersecurity procedures and standards

Preferred Qualifications

• Certified in information security industry certifications such as CISSP, CompTIA Security+. CEH, OSCP, preferred
• Experience with the CrowdStrike suite of cybersecurity tools is a nice to have
• Proficiency in scripting languages such as Python, PowerShell, Bash, or similar for automation and tool development
• Extensive knowledge of networking protocols, operating systems (Windows, Linux) is a plus
• Exposure in security operations and incident response would be a great perk
• Secured cloud-native environments (Kubernetes, Docker) and implementing DevSecOps practices would be desired
• Worked with zero-trust architecture, is a bonus
• Knowledge of machine learning for anomaly detection or threat intelligence would be great to have