View All Jobs 145258

Security Engineer

Design and implement enterprise security policies and procedures
Bangor, Maine, United States
Senior
yesterday
Cross Insurance

Cross Insurance

An independent insurance provider offering a range of personal and business insurance products across the United States.
1 Similar Job at Cross Insurance

IT Security Engineer

The IT Security Engineer performs two core functions for the enterprise. The first is the administrative operations and implementation of both in-place and new security solutions. This includes checking server and firewall logs, scrutinizing network traffic, establishing and updating virus scans, and troubleshooting, along with administration or implementation of systems, integration of security systems through API or other means to aggregate and correlate the security posture across the organization's digital footprint. The second is the identification, investigation, and resolution of security breaches detected by those systems. Secondary tasks may include involvement in the implementation of new security solutions, participation in the creation and or maintenance of policies, standards, baselines, guidelines, and procedures as well as conducting vulnerability audits and assessments. The IT Security Engineer is expected to be fully aware of the enterprise's security goals as established by its stated policies, procedures, and guidelines and to actively work towards upholding those goals.

Strategy & Planning

  • Lead in the planning and design of enterprise security systems.
  • Lead in the creation of enterprise security documents.
  • Participate in the planning and design of an enterprise business continuity plan and disaster recovery plan.
  • Assess need for any security reconfigurations and execute them if required.
  • Keep current with emerging security alerts and issues.

Acquisition & Deployment

  • Maintain up-to-date detailed knowledge of the IT security industry.
  • Recommend additional security solutions or enhancements.
  • Perform the deployment, integration, and initial configuration of all new security solutions.

Operational Management

  • Maintain up-to-date baselines for the secure configuration and operations of all in-place devices.
  • Administer operational configurations of all in-place security solutions.
  • Monitor all in-place security solutions for efficient and appropriate operations.
  • Review logs and reports of all in-place devices.
  • Participate in investigations into problematic activity.
  • Participate in the design and execution of vulnerability assessments, penetration tests, and security audits.
  • Provide on-call support for end users for all in-place security solutions.
  • Administer and maintain end user accounts, permissions, and access rights.
  • Download and test new security software and/or technologies.

Position Requirements

Formal Education & Certification

  • College diploma or university degree in Computer Science and/or five years equivalent work experience.
  • One or more of the following certifications:
    • CompTIA Security+
    • GIAC Information Security Fundamentals
    • Microsoft Certified Systems Administrator: Security
    • Associate of (ISC)2

Knowledge & Experience

  • Broad hands-on knowledge of firewalls, intrusion detection systems, anti-virus software, data encryption, security incident and event monitoring (SIEM) solutions, Multifactor Authentication (MFA), and other industry-standard techniques and practices.
  • Working technical knowledge of network, PC, Mobile Devices, and platform operating systems.
  • Working technical knowledge of Microsoft/Azure Active Directory, Group Policy, and M365/O365 services.
  • Strong understanding of IP, TCP/IP, and other network administration protocols.
  • Knowledge of applicable practices and laws relating to data privacy and protection.
  • Familiarity with analysis of system and event logs from devices and systems such as firewalls, intrusion detection systems, anti-virus software, data encryption, security incident and event monitoring (SIEM) solutions, Multifactor Authentication (MFA), Microsoft Active Directory, Group Policy, and Microsoft O365/Azure Security, Compliance, Privacy dashboards.

Personal Attributes

  • Proven analytical and problem-solving abilities.
  • Ability to effectively prioritize and execute tasks in a high-pressure environment.
  • Good written, oral, and interpersonal communication skills.
  • Ability to conduct research into IT security issues and products as required.
  • Ability to present ideas in business-friendly and user-friendly language.
  • Highly self-motivated and directed.
  • Keen attention to detail.
  • Team-oriented and skilled in working within a collaborative environment.

Work Conditions

  • 40-hour on-site or home office work week with on-call availability.
  • Some travel required.
  • Sitting for extended periods of time.
  • Sufficient dexterity of hands and fingers to efficiently operate a computer keyboard, mouse, and other computer components.
  • Lifting and transporting of moderately heavy objects, such as computers and peripherals.
+ Show Original Job Post
Suggest a correction
























Security Engineer
Bangor, Maine, United States
Engineering
Apply to job
About Cross Insurance
An independent insurance provider offering a range of personal and business insurance products across the United States.