Senior Security Engineer

Dycom Industries   •  

Palm Beach Gardens, FL

Industry: Telecommunications.

  •  

Not Specified years

Posted 186 days ago

Join us!

This is a great opportunity to join Dycom’s

Dycom Industries, Inc. is a leading provider of specialty contracting services to the telecommunications and infrastructure industry. These services, which are provided throughout the United States and in Canada, include engineering, construction, maintenance and installation services to telecommunications providers, underground facility locating services to various utilities and telecommunications providers.  Dycom’s corporate environment is constantly changing, growing to meet the needs of our subsidiary companies and their customers.  

Overview

The Security Engineer’s role is to serve as a security expert in SSO/Authentication, network and/or platform (operating system) efforts, application development, database design, helping project teams comply with enterprise and IT security policies, industry regulations, contractual obligations, SOX, and security best practices. This is achieved by planning, designing, and developing security best practices then implementing. In addition, the Security Engineer will participate with the installation, monitoring, maintenance, support, and optimization of all security hardware, software, and communication links. This individual will also analyze and resolve security related problems in a timely and accurate fashion, and provide end user training where required.

Responsibilities

  • Analyzes business impact and exposure, based on emerging securitythreats, vulnerabilities and risks
  • Researches, evaluates recommends, and implementsinformation-security-related hardware and software, including developing business cases for securityinvestments
  • Contributes to the development and maintenance of the information security strategy
  • Create security standards for firewalls, wireless access, othernetwork devices, servers, systems, applications, and databases
  • Researches, designs and advocates new technologies, architectures, and security products that will support security requirements for the enterprise and its customers, business partners and vendors
  • Communicates securityrisks and solutions to business partners and IT staff
  • Monitor securityrisk and troubleshoot problem areas as needed
  • Installation, configuration, maintenance, and troubleshooting of security software and equipment
  • Integrate new and existing applications using latest Authentication protocols and in-house SSO Identity Provider
  • Assist in automation of frequent tasks, security enhancements,
  • Assists in the coordination and completion of information security operations documentation
  • Reports to management concerning residual risk, vulnerabilities and othersecurity exposures, including misuse of information assets and noncompliance
  • Advises security administrators on normal and exception-based processing of security authorization requests
  • Penetration testing and vulnerability assessments: performs control and vulnerability assessments to identify control weaknesses and assess the effectiveness of existing controls, and recommends remedial action
  • Responsible for the execution of risk assessment activities, analyzing the results of audits (performed by other groups) to produce recommendations of acceptable risk and risk mitigation strategies

Qualifications 

  • Bachelor’s degree in computer science, Information Systems, or similar and/or 4-10 years equivalent work
  • Require one or more of the following certifications: GIAC (GSEC,GPEN,GCED, etc..), CISSP, CISM
  • Strong working knowledge of Single-Signon (SSO)
    • Implementing solutions
    • Setting up Identity Providers
    • Integrating applications
  • Strong working knowledge of latest authentication mechanisms and access controls
    • Federated authentication. e.g. ADFS, SSO, SAML, OpenID Connect, OAuth
    • RBAC
    • Active Directory
    • Application Authorization
  • Strongscriptingknowledge (This is a must!)
    • Experience with at least on of the following languages: PHP, Perl, Python, JavaScript, PowerShell, Bash, etc…
    • Experience with Web development is a
  • Strong knowledge ofnetworksecurity
    • Firewalls - Juniper / Cisco / Checkpoint
    • SSL VPN & remote access
    • Certificate based access
    • Access points
    • 11x standards
    • 1x
    • WEP / WPA(2)
    • WAF,Load Balancers, Web Proxies, .
  • Strong knowledge of cryptography
    • Encryption algorithms
    • Private / public key architecture
    • Digital signatures
    • Hashing
  • Strong knowledge of application anddatabasesecurity
    • The role of security within the SDLC
    • Database encryption
    • Application vulnerability discovery
  • Strong working knowledge of operations andsecuritymonitoring tools
    • Must have SIEM Experience: Qradar preferred or similar (AlientValut, ArcSight, LogRythm, .)
    • Vulnerability assessment (Rapid7, Tenable, Qualys,etc..)
    • Packet sniffers (Wireshark,TCPDUMP,etc..)
    • Enterprise Endpoint Protection (Symantec Endpoint, McAfee Enterprise,etc..)
  • Familiar with both Windows and Linux/Unix operating systems
  • Experiencewith cloud providers AWS/Google/Azure/Etc..
    • AWS preferred to include VPC,EC2,S3,CloudWatch,CloudTrail,Lambda,WAF,ELB/ALB,etc..
  • Strong troubleshooting skills
  • GeneralSecurityPrinciples to include:
    • Incident response
    • Malware analysis
    • Defense in Depth
    • Continuous monitoring
  • The following would be a definite plus
    • Experience in a large infrastructure or security implementation. e. multiple sites throughout a geographically dispersed area
    • Experience in a multi-datacenter environment
    • Understanding of MS Active Directory
    • Understanding of application development.