Provides leadership and development of new or existing cybersecurity projects, including requirements definition, documentation, and communication. Works directly with customers, business, and other technology entities to create, document, implement, and manage security controls, policies, procedures, and practices that ensure the availability, integrity, and confidentiality of information assets. Provides subject matter expertise (SME) leadership with design, installation, operation, service, and maintenance of a variety of multi-user information security systems.

Security Administration

· Active in the life-cycle management of multiple hardware and software

technologies designed to protect information.

· Maintain process and or procedures for security technologies.

· Prepare periodic reports on risk analysis reviews, security compliance

reviews, and security incidents, etc.

· Support security solution development with operational feedback and

evaluations.

Incident Response

· Participate in activities of the Product Security Incident Response Team.

· Monitor for new security threats and make recommendations for additional

controls.

· Identify security risks to the organization and recommend corrective actions.

· Triage, resolve, and document security incidents and escalations

through analysis and troubleshooting.

Security Design and Implementation

· Draft solution specifications and develop requirements for new information security systems, configurations, sub-systems, software, and products in support of projects and initiatives. · Prepare documentation of designs and requirements for new information security systems, configurations, sub-systems, software, and products in support of projects and initiatives. · Conduct design reviews of requirements implementation.

· Working knowledge and understanding in the implementation/administration/security of cloud technologies such as AWS/Azure/GCP.

· Working knowledge and understanding of Public Key Infrastructure (PKI), Digital Rights

Management (DRM), or Hardware Security Modules (HSM).

· Working knowledge of applied cryptography.

· Familiarity with various programming languages such as C, C++, Python, PHP, or Java

· Hands on experience with Linux/Unix, Android, and iOS.

· Familiarity regarding common attacks, attack methods, and defense architectures.

· Experience and knowledge in the use of open-source security technologies.

· Ability to coordinate with internal (i.e. project managers, engineering/operations,

employees, etc.) and/or external customers.

· Strong interpersonal skills, system level definition capabilities, and customer service skills.

· Uses skills as a seasoned, experienced professional with a full understanding of industry

practices and company policies and procedures; resolves a wide range of issues in

imaginative as well as practical ways.

· Works on problems of diverse to complex scope where analysis of data requires evaluation

of variable factors.

· Demonstrates good judgment in selecting methods and techniques for obtaining solutions.

· Knowledge and experience with frameworks such as NIST, RTCA, PCI DSS a plus.

Educational Requirements

· Bachelor of Science Degree in Systems Engineering, Electrical Engineering, Computer Sciences, Computer Engineering, Information Security, or other related engineering degree, or equivalent experience.

· 8+ years’ experience in an Information Technology role, with 3+ years specific to an

Information or Cybersecurity role.

· Ability to obtain Industry recognized security certifications; CISSP: Certified Information

Systems Security Professional, GIAC: SANS Global Information Assurance Certification

etc

· Working knowledge and understanding in the implementation/administration/security of cloud technologies such as AWS/Azure/GCP.

· Working knowledge and understanding of Public Key Infrastructure (PKI), Digital Rights

Management (DRM), or Hardware Security Modules (HSM).

· Working knowledge of applied cryptography.

· Familiarity with various programming languages such as C, C++, Python, PHP, or Java

· Hands on experience with Linux/Unix, Android, and iOS.

· Familiarity regarding common attacks, attack methods, and defense architectures.

· Experience and knowledge in the use of open-source security technologies.

· Ability to coordinate with internal (i.e. project managers, engineering/operations,

employees, etc.) and/or external customers.

· Strong interpersonal skills, system level definition capabilities, and customer service skills.

· Uses skills as a seasoned, experienced professional with a full understanding of industry

practices and company policies and procedures; resolves a wide range of issues in

imaginative as well as practical ways.

· Works on problems of diverse to complex scope where analysis of data requires evaluation

of variable factors.

· Demonstrates good judgment in selecting methods and techniques for obtaining solutions.

· Knowledge and experience with frameworks such as NIST, RTCA, PCI DSS a plus.

Educational Requirements

· Bachelor of Science Degree in Systems Engineering, Electrical Engineering, Computer Sciences, Computer Engineering, Information Security, or other related engineering degree, or equivalent experience.

· 8+ years’ experience in an Information Technology role, with 3+ years specific to an

Information or Cybersecurity role.

· Ability to obtain Industry recognized security certifications; CISSP: Certified Information

Systems Security Professional, GIAC: SANS Global Information Assurance Certification

etc