Senior Security Engineer - Cloud Infrastructure in Melville, NY

$150K - $170K(Ladders Estimates)


Melville, NY 11747

Industry: Media


5 - 7 years

Posted 60 days ago


This job is no longer available.


Location: Nassau County, Long Island Status: Full Time Staff position - Media Company

Brian Green, VP Notes: This is a unique opportunity to work for a well-funded emerging company involved in the Media industry. The company is comprised of engineers, analysts, data scientists, media experts and marketing strategists. The firm has had over a 50% growth rate in the last 2 years.


Reporting to the Director of Information Security, the Sr. Security Engineer will help implement the firms information security program, comprised of cloud infrastructure, on-premise networking, and end-user endpoints. The Senior Security Engineer will be directly responsible for implementing and managing cloud and on-premise firewalls and the various security tools to ensure the confidentiality, integrity, and availability of the environment.

Essential Duties:

Works with the Director of Information Security to implement and maintain all security services and infrastructure, with special emphasis on cloud technologies and tools to integrate into a CI/CD development environment

Works with IT and DevOps teams to apply appropriate patches and system hardening procedures including updating necessary firmware on all systems to ensure the network remains secure from unauthorized access

Troubleshoots issues and provides hands-on support as needed, to ensure smooth and efficient operation of security systems. This will include Linux servers, Mac and Windows workstations

Monitors established network and security controls to ensure compliance with Information Security policies. Must have a command of NIST, CIS, and ISO security frameworks

Must be hands-on, with a strong technical ability to perform security engineering and operations functions as part of this role

Must-have skills:

Administration and Engineering of Palo Alto firewalls (physical and virtual). VPN setup and administration (P2P and Global Protect end-point clients)

Linux operating systems installation and troubleshooting (AWS-Linux and Ubuntu)

System hardening and infrastructure security

AWS security configuration, including IAM roles, security groups, EC2 instance creation, S3 bucket policies, JSON creation, VPC engineering, and Cloud Trails setup and auditing

Cisco Meraki wireless controllers configuration and management

Cylance end-point protection (Protect / Optics) troubleshooting

Splunk Cloud: dashboard creation and monitoring

Vulnerability scanning tools such as Tenable's Security Center, Nessus Airwatch / Jamf / scripting

Duo MFA implementations and integrations

Email protection solutions such as Proofpoint

Skills that would be a strong plus:

Experience with integrating LDAP, SAML, federated identity services and MFA services

Penetration testing tools such as Burp Suite,

Metasploit, Nmap, Aircrack-ng, Kali Linux Implementation and setup of static and dynamic code assessment tools

Preferred Qualifications:

Bachelor's Degree in Computers Science, Management Information Systems, Cybersecurity or equivalent

CEH, CCNP, CCIE, TIA Security+, LPIC2, or similar Linux certifications. 5 – 7 years hands-on with network/systems engineering and security systems

Valid Through: 2019-9-13

$150K - $170K