We strive to bring you the relief you need in a product you can trust.
Information Security Engineer
Location
Florida
Posted
16 days ago
Salary
0
Seniority
Senior
Job Description
Information Security Engineer
Trulieve
• The Information Security Engineer is responsible for managing the development of information security tools and ensuring technology initiatives are implemented to meet Trulieve security standards and framework. • This person will be accountable for securing company information and infrastructure by utilizing their experience to assess our systems and identify, develop, and implement additional tools as our needs evolve. • The role of the Information Security Engineer is to be the business customer-facing and to play an active role in transforming Trulieve's infrastructure security through designing and implementing security technologies across the Trulieve network. • Can lead projects and must work closely with other engineers, architects, and vendors to design secure, highly available production environments. • The engineer must be able to manage very dynamic environments and adapt quickly to technological changes at a moment's notice to provide quick detailed solutions with little or no supervision. • Must be experienced and results-oriented and demonstrate practical problem-solving and communication skills. • Must be able to manage very dynamic environments and adapt quickly to technological changes at a moment's notice to provide quick detailed solutions with little or no supervision. • Document the current state, perform gap analysis and create a target state for enterprise-wide network security. • Demonstrate hands-on experience administering, tuning, and operationalizing Microsoft Defender (e.g., Defender for Cloud, and Defender for Identity) to strengthen detection and response capabilities. • Have working knowledge of CrowdStrike Falcon, including endpoint deployment, policy management, alert triage, and incident response support. • Monitor network traffic for suspicious activity, detecting and responding to security incidents, and performing incident analysis. • Work with IT and Security leadership and cross-functional teams to develop strategies and plans to enforce security requirements and address identified risks. • Must have strong organizational skills and problem-solving expertise while working with current and emerging technologies. • Must practice a disciplined and systematic approach to all tasks. • The Engineer often serves as a subject matter expert for colleagues, and experience with multiple technologies, compliance requirements, and risk analysis methodologies is crucial. • Establish and manage business relationships. • Implement organizational policies and creates Security policies. • Incorporate the company's strategic goals with ongoing initiatives. • Use their experience to improve processes and mentor junior team members.
Job Requirements
- Bachelor's Degree – Computer Science, Engineering, Information Technology, or related discipline.
- Have 4+ years of experience in Information Security Experience implementing security best practices, architecture, and security management.
- One Security certification is preferred (GSEC, GISF, GPEN, GCIH, GCIA, CISSP, or equivalent) or obtained within 12 months of hire.
- Have experience leading the installation, configuration, and deployment of security tools, including the project manager role.
- Self-motivated and capable of working effectively with some supervision.
- Can build professional relationships and have excellent communication skills.
- Have a solid customer-focused mindset.
Benefits
- A comprehensive benefits package including paid time off
Related Guides
Related Categories
Related Job Pages
More Security Engineer Jobs
Cybersecurity Tools Administrator
Accenture Federal ServicesWe believe in the power of change, harnessed in ways that matter for our country and communities.
• Proposing, developing, installing, managing, operating, maintaining, integrating, and configuring a suite of cybersecurity tools to support project network cybersecurity operations • Ensuring proper configuration and operation of tools • Monitoring resource utilization • Contributing to the deployment of new tools • Developing security plans and maintaining network architecture diagrams
• Review cloud and infrastructure security architectures • Assess AWS, firewall, virtualization, and endpoint security controls • Support vulnerability analysis and remediation recommendations • Validate security configurations and technical evidence • Provide guidance on network, server, and SaaS security best practices • Support security assessment and testing activities
• Provide technical leadership for Certification & Accreditation (C&A) and Risk Management Framework (RMF) activities supporting system authorization decisions. • Lead RMF strategy and authorization roadmap. • Guide NIST SP 800-37 lifecycle activities. • Identify NIST SP 800-53 security controls. • Validate FIPS 199 and FIPS 200 categorization. • Oversee SSP, Risk Assessment, ST&E, and authorization package development. • Provide interpretation of NIST, FIPS, and federal requirements.
Security Researcher III – Phishing
SpyCloudThe leader in operationalizing Cybercrime Analytics to prevent ATO, ransomware, and online fraud.
• Data Collection: Locate, target and recapture data from Phishing-as-a-Service (PhaaS) kits using a combination of human intelligence and platform sourcing. • Data Analysis: Apply data science techniques to understand the quality of sourced data, in order to refine and improve the PhaaS data sourcing pipeline. • Human Intelligence: Perform human intelligence techniques such as managing multiple alternate personas, actor engagements, and social engineering in support of data recapture efforts. • Security Analysis: Participate in the drafting of research blogs and analytical products to support customers and business objectives. • Security Research: Participate in security research including investigation of threat actors, PhaaS, and other critical research in support of SpyCloud’s priorities.
