Remote Cyber Security Engineer

Summary

Join a dynamic team at Verifone as a Cyber Security Engineer and contribute to the success of our customers, partners, and investors by designing, implementing, and maintaining security measures to protect our organization's computer systems, networks, and data.

Requirements

• Bachelor’s degree in computer science or related field
• 2+ years of hands-on experience with the design, implementation, and operation of enterprise vulnerability management
• 2+ years’ experience supporting diverse IT systems, processes, or capabilities in large organizations
• 2+ years of solid understanding of industry best practices for hands on, security vulnerability remediation
• 2+ years with SCCM, WSUS (or other, similar tools) running in an enterprise environment
• 2+ years in scripting of packaged installation of patches, software, and configuration changes, including the knowledge and ability to write PowerShell scripts needed to automate patch management processes
• Extensive experience with core vulnerability management scanners (e.g. Qualys, Tenable etc.)
• Strong knowledge of OWASP Top 10 and the ability to articulate application security risks and determine threat level
• Technical understanding of a range of enterprise IT and cloud-based architectures and technologies such as networking, server infrastructure, operating systems, web applications, databases, containerization, mobile

Responsibilities

• Help develop and implement security policies, protocols, and procedures
• Conduct regular security assessments, vulnerability scans, and penetration testing
• Design and implement security solutions, including firewalls, intrusion detection/prevention systems, and encryption technologies
• Prepare and present reports on security status and incidents to management
• Stay current with the latest security trends, threats, and technology solutions
• Understands, reviews, and interprets vulnerability assessment and scanning results, reduce false positive findings, and act as security advisor to business unit partners
• Creates detailed risk assessment reports which explain identified technical and logical security findings, describes potential business risks, and presents prioritized recommendations
• Develop and maintain documentation for security processes and compliance requirements
• Contributes to the ongoing enhancement of the company's security assessment capabilities through the development and implementation of improved methodology, processes, infrastructure, tools, and deliverables
• Maintains knowledge with current emerging technologies and advancements within Cybersecurity
• Provides expertise and solutions for others as a subject matter expert
• Monitor and enforce guidelines for best practices in security and compliance
• Orchestrate daily compliance requirements and tasks as required
• Review and respond to escalated security events
• Proactively hunting for vulnerabilities and threats within our environment
• Maintain knowledge of adversary tactics, techniques, and procedures (TTP)
• Provide timely and relevant updates to appropriate stakeholders and decision makers
• Monitor and analyze security systems to detect and respond to security incidents
• Investigate security breaches and other security-related incidents

Preferred Qualifications

Preferred certifications: Net+, Security+, OSCP, CEH, CISSP, GIAC (GSEC, GEVA, GPEN etc.)

Benefits

Our commitment to creating a diverse environment and being an equal opportunity employer