Senior IT Security Engineer

Summary

Join Cologix, a leading network-neutral interconnection and hyperscale edge data center company, as a Network Security Engineer. You will install, troubleshoot, and maintain network security infrastructure and software, configuring security tools to enhance detection and response. Daily responsibilities include collaborative issue remediation, configuring network security controls, responding to security events, and planning and implementing security tools. You will also create and maintain documentation, manage updates and patching, participate in project planning, and engage in security exercises. This role requires a computer science degree or equivalent experience, 5-8 years of relevant experience, and specific security certifications or equivalent experience. Cologix offers a competitive benefits package including medical, dental, vision, PTO, 401k, and an annual bonus.

Requirements

• A computer science related baccalaureate degree from an accredited college, or equivalent experience
• Minimum of 5 - 8 years’ experience in security in an enterprise environment
• Experience with vulnerability scanning applications, log management and alerting platforms, and packet analyzers
• Experience with network segmentation and/or security zones for applicable data protection according to data classification
• A team player with a willingness to establish a strong positive working relationship with all areas of the business
• Willing to share knowledge with co-workers and to assist them in understanding technical and business topics
• Willing to learn new tools and technologies as needed
• Working knowledge of information systems security standards and practices (e.g., access control, system hardening, system auditing, log file monitoring, security policies, and incident handling)
• SIEM experience
• Experience with detection and response tools including Network Behavior Anomaly Detection, Data Loss Prevention, Email Gateway services, Sandboxing, DDoS Mitigation, WAF, Forward/Reverse Proxies, DNS Security, etc
• Demonstrated experience of “hands-on” security knowledge of one or more of the following platforms: Windows, Apple IOS, Linux
• Working knowledge of networking protocols, web technologies, and cloud computing
• Ability to interpret information security data and processes to identify potential Indicators of Compromise (IoC)
• Ability to quickly understand complicated data flows to identify and validate security requirements
• Ability to work effectively, independent of assistance or supervision
• Ability to clearly communicate Information Security matters to executives, auditors, end-users, and engineers using appropriate language, examples, and tone
• Hands-on experience implementing and supporting Palo Alto firewalls
• One or more of the following advanced professional security certifications: CISSP, CASP+, GISP, or SecurityX (or requisite experience to attain within 12 months). Palo Alto Certifications are a Plus

Responsibilities

• Install, document, troubleshoot, and maintain network security infrastructure and software
• Configure security tools and applications to improve detection and response capabilities, track performance of controls, streamline internal processes, and make improvements to defensive controls
• Collaborative issue remediation on a broad set of IT related issues: Cybersecurity risks, regulatory compliance, data protection, user access, network controls, etc
• Configure network security controls including firewalls, IDS/IPS, email gateways, WLAN, vulnerability scanners, and endpoint controls such as EDR and DLP
• Respond to security events, validate findings, and remediate gaps identified by vulnerability scanning and penetration testing
• Plan, design, implement and support security tools used for preventative controls, detection of events, and incident response efforts
• Create and maintain system as-built documentation, security infrastructure topology, data flow diagrams, internal knowledgebase, and incident runbooks
• Proactively manage updates and patching of security applications and device software/firmware and hardware
• Participate in project planning and execution as information security SME and ensure adherence to internal policy and security best-practices
• Participate in blue/purple team exercises, design and execute DR/BCP/IR tabletop exercises, update processes and documentation based on lessons learned

Preferred Qualifications

• Experience with wired and wireless network-based passive and active controls like IDS and IPS
• Familiarity with ITILv2/v3 processes such as Service Support, Service Delivery, or Continual Service Improvement
• Familiarity with Regulatory Compliance and industry standards and frameworks such as ISO27k, SSAE18 SOC 2, and PCI

Benefits

• Medical, dental, and vision insurance
• Flexible spending account options
• Non-accrued PTO
• Company paid holidays
• 401k Retirement Plan
• Short- and Long-Term Disability
• Employee Discount Marketplace
• Employee Recognition Platform
• Individual compensation will be commensurate with the candidate's experience
• This position will also be eligible for an annual bonus