|
About the role:
The Endpoint Security Engineer is responsible for implementation, configuration, automation, management, and maintenance of security related platforms. The Endpoint Security Engineer is a technology and process focused security professional with an emphasis in information security, secure system implementation, and maintenance. They will review, assess, recommend, automate, and implement technical controls to ensure the security platforms are well managed and resilient. They will also ensure that routine maintenance and configuration management are well maintained.
What we'll want you to have:
The Endpoint Security Engineer should possess some knowledge of the following concepts, skills, and technologies:
-
Strong understanding of next-gen and traditional endpoint protection strategies and technologies.
-
Understand and be able to maintain, test, and troubleshoot endpoint protection policies and rules
-
Experience with responding to endpoint detection events and developing incident response plans.
-
Partner with Threat, Detect and Response teams to improve effectiveness in incident management
-
Knowledge of information security concepts, to include the triad of security concepts and others specific to endpoint protection.
-
Experience using SIEM technologies
-
Working knowledge of one or more anti-malware technologies for both physical and virtual systems
-
Experience and expertise with ethical hacking, firewall and intrusion detection/prevention technologies, secure coding practices and threat modelling
-
4+ years of progressively responsible experience in the management of information systems with at least 2+ years of formal experience in information security is preferred
-
Additional Experience with:
Certifications
-
Certification are a plus in information security disciplines such as: CISSP, OSCP, GIAC – GDAT, GMON, GCIA, GCED, GSEC, etc. or from security specific product/service vendors.
What you’ll be doing:
-
Perform interviews with company representatives and business owners to confirm anticipated business effects resulting from the actual occurrence of any of the identified enterprise security risks
-
Maintain an inventory of key security platform related risks
-
Perform activities to review, develop, and implement security vendor agreements, and security exceptions to control standards as they relate to security platforms and services
-
Perform activities to conduct technical security reviews and assessments of current systems and processes
-
Perform activities to monitor and track remediation activities to address weaknesses and issues discovered through platform reviews
-
Perform activities to develop strategies to ensure compliance with security standards as well as regulatory and audit issues
-
Perform activities to provide periodic reporting including assessment findings and recommendations for improvement
-
Assist in achieving security architecture compliance on requirements, including PCI, Sarbanes-Oxley, HIPAA/HITECH, global data privacy requirements, as well as state and federal regulations
-
Provides technical lead on individual security projects across multiple technologies including infrastructure, secure electronic data transfer, network security, platform security and application security
-
Provides expert opinion on security solutions and software prior to purchase
-
Supports the security team in creating and maintaining the company’s security design
-
Assist with the design and implementation of disaster recovery and business continuity plans, procedures, audits, and enhancements
-
Investigate opportunities to update security system capabilities to sustain and enhance network and system security integrity
#LI-REMOTE
Stay up to date on everything Blackbaud, follow us on Linkedin, Twitter, Instagram, Facebook and YouTube
Blackbaud is a remote-first company which embraces a flexible remote work culture. Blackbaud supports hiring and career development for all roles from the location you are in today!
Blackbaud is proud to be an equal opportunity employer and is committed to maintaining a diverse and inclusive work environment. All qualified applicants will receive consideration for employment without regard to race, color, religion, gender, gender identity or expression, sexual orientation, national origin, physical or mental disability, age, or veteran status or any other basis protected by federal, state, or local law.
To all recruitment agencies: We do not accept unsolicited agency resumes and are not responsible for any fees related to unsolicited resumes.
|
