Information Security Specialist

Information Security Specialist (Remote - Romania)

Department: Information Security

Reports to: VP, Information Security

 Responsibilities:  

• Assess, review and administer firewalls; Palo Alto PAN-OS experience strongly preferred  
• Work with Managed Service Provider to address SIEM logging and alerting requirements  
• Review escalated security alerts, provide deep investigative support as required  
• Manage and perform internal and external vulnerability scanning tests  
• Evaluate and manage vulnerability and audit remediation items to ensure timely resolution  
• Conduct system baseline validations to identify operating system deficiencies   
• Monitor, configure and maintain enterprise security systems, software and devices as required  
• Research, demo and recommend new security technologies to help the company stay current with industry trends and best practice security posture recommendations; deploy solutions  
• Perform security checks to ensure company data security and policy adherence is in aligned with audit and client requirements  
• Foster open communication with internal IT teams to maintain the ongoing relationship as it pertains to enterprise information security  
• Keep up to date on security industry best practices, frameworks, standard and trends, pursue relevant security certifications  
• Provide proactive feedback to management concerning potential problems and recommendations for improvement.   
• Maintain a proactive approach to all information security matters in relation to managing information security related systems  

Requirements:  

• Bachelor's Degree within Information Security, Cyber Security, or Computer Engineering preferred, or related experience and training required  
• One or more of the following security certifications or equivalent experience desired: Palo Alto PCNSA\PCNSE, AWS Security, Rapid7 preferred  
• Ability to be adaptable, flexible, and change activities quickly according to business needs.  
• Prior experience in a regulated industry. Experience with SOC 2 preferred.  
• Must be critical thinker with strong technical skills with the ability to prioritize and troubleshoot issues, while providing attention to detail in a fast-paced global Information security environment  
• Must be able to learn new technology and applications quickly  
• Strong understanding of the criticality of Information Security and the impact to internal and external business functions  
• Excellent communication and interpersonal skills. Ability to listen, communicate (written and verbal)  
• Ability to effectively interact with all staffing levels, both internally and externally.  
• Ability to effectively work virtually in a diverse international team in a multi-tasked environment  
• Strong attention to detail  

Experience:  

• At least 3 year of experience of IT Security experience required.
• Experience in a large enterprise or corporate environment is preferred.  
• At least 3 years of hands-on experience with a vulnerability management platform, such as such as Qualys Cloud, performing scans and providing remediation guidance and tracking  
• At least 3 years of hands-on experience with a SIEM platform  
• At least 3 years of hands-on experience with next generation firewalls  
• Strong knowledge of security technologies and tools such as MDM, DLP, PAM, vulnerability testing tools, Anti-virus and anti-malware products, next generation firewalls, and other relevant information security related solutions  
• Strong knowledge of and commitment to deep learning of Palo Alto PAN-OS is highly desired  
• Strong knowledge and understanding of networking, TCP/IP network protocols, ports, concepts and practices  
• Knowledge of Microsoft Active Directory, Windows Server\Desktop Operating Systems, MacOS  
• Knowledge and understanding of securing Office 365  
• Knowledge and understanding of Advanced email solutions such as Mimecast 
• Knowledge of AWS Security Best Practices  
• Knowledge and understanding of security frameworks and controls found in NIST 800-53, NIST Cybersecurity framework, ISO 27001\2, CIS 20  

We are aware that an individual(s) are fraudulently representing themselves as Suvoda recruiters and/or hiring managers. Suvoda will never request personal information such as your bank account number, credit card number, drivers license or social security number — or request payment from you — during the job application or interview process. Any emails from the Suvoda recruiting team will come from a email address. You can learn more about these types of fraud by referring to this FTC consumer alert. 

As set forth in Suvoda's Equal Employment Opportunity policy, we do not discriminate on the basis of any protected group status under any applicable law.

If you are based in California, we encourage you to read this important information for California residents linked here.