Security Engineer

Location: Pittsburgh

Job Type: Full Time / Permanent

This position will be will be focused on the operations, reporting and monitoring of security technologies in conjunction with the requirements of Information Security and Privacy Programs.

Essential Duties and Responsibilities: • Provide subject matter expertise in information security applications and operation. • Manage software security applications and solutions for NGFW, EDR/NGAV, SIEM, SEG, Privileged Account Management, vulnerability scanning, intrusion detection, content filtering systems & other security related systems. • Review security events from all security monitoring environments on a daily basis and follow defined incident response processes in their analysis and reporting. • Serve as the department’s liaison with our managed security service provider for managing any detected security events and follow defined incident response processes in their analysis and reporting. • Coordinate with appropriate parties to ensure the timely deployment of operating system and application security patches, deployment of security applications and currency of security application patch levels. • Monitor treat vectors to the security of the Firm’s environment. Provide notification to all impacted parties related to the actions needed to mitigate threats and manage the threat lifecycle in totality. • Maintain knowledge of the information security needs of clients and implement measures to satisfy those requirements in the most efficient manner. • Develop and maintain security policy and procedures and ensure compliance. • Keep abreast of emerging security technologies and discipline developments. • Make appropriate recommendations that meet needs. • Design and build operational environments that scale to meet the needs of our security products and assure appropriate reliability. • Create appropriate measures and metrics related to the security hygiene of the environment. • Support general troubleshooting related to information security tasks and provide support to end users as needed. • Provide other teams with security consulting services, including responding to requests for additional information and assisting with specific projects.

Required Education/Experience: • Strong Info Systems & Technology background with at least five (5) years of experience in Information Security. • Must be able to communicate clearly and effectively with people from both technical and non-technical backgrounds. • Knowledge and experience with varying information security processes and tools. • Ability to identify security technology risks. • Ability to visualize, plan and execute any areas of process improvement that increase the efficiency and delivery of our security capabilities. • Proficient knowledge of IP networking and public cloud security principals. • Experience managing information security platforms, such as EDR, SSO, MFA and LogRhythm, • Expertise in malware detection technologies and remediation. • Expertise in the following technologies (or comparable) : CrowdStrike, Palo Alto, LogRhythm, Tenable, Azure AD/MFA. • Experience with wireless security, network monitoring, network design, windows desktop/server security, database security, routing protocols and incident management. • Understanding of ISO27001/NIST principles.

We offer an outstanding benefit package that includes: • Medical • Dental • Vision • 401K Program • Pension Profit Sharing Program • Paid Time Off • Paid Holidays