Network Security Engineer - San José, Costa Rica - VS-Staffing

VS-Staffing

Empresa verificada

San José, Costa Rica

hace 1 semana

Publicado por:

Andrea Rodríguez

beBee Recruiter

Descripción

Network Security Engineer

Job Description:

Title:

Network Security Engineer

Location:

Remote, based in Costa Rica

Job Overview:

Faced with an ever-increasing cyber-security threat, organizations need to maintain a vigilant approach to protect their systems and data, and Security Engineers play a key role in this process.

You will be responsible for several functions associated with IT security - from ensuring the security of software to selecting and/or constructing and deploying broader network security systems.

Responsible for completing a thorough risk assessment, identifying vulnerabilities within a network, creating firewalls, or configuring systems to enhance existing security features.

You are expected to respond to, and document, any security threats, resolve technical faults, and allocate resources to deliver real solutions in a cost-effective way.

Key responsibilities include:

Understanding complex technical issues and managing them within a fastpaced business environment
Maintaining all the software and hardware in relation to security
Documenting security certification
Identifying current and emerging technology issues including security trends, vulnerabilities, and threats
Threat intelligence
Sourcing and implementing new security solutions to better protect the organization.
Conducting proactive research to analyze security weaknesses and recommend appropriate strategies.
Liaising with vendors to implement security solutions.
Qualifications and requirements
University degree in Security related field or equivalent experience
CISSP, GISP, and CISM
Expertise across a variety of security products including firewalls, URL filtering, information security, and virus protection.
The commercial acumen to provide costeffective security solutions.
An enthusiasm for staying up to date with the very latest updates about security threats and solutions.
Outstanding communication skills that go beyond "tech talk" the ability to translate complex IT matters to those without an IT background.
Strong time management and organizational skills
Previous exposure to Linux and/or Windows Operating Systems, coding languages, and/or Networks
Ability to support and maintain security controls for On-Prem and Cloud Security Environments including NextGen Firewalls, WAF, VPN, Load Balancers, and SSL Decryption technologies (Palo Alto/Aviatrix, Imperva, AWS, ZScaler, Okta).
Respond to security incidents by identifying, containing, analyzing, and mitigating the incident's impact.
Develop and maintain incident response procedures and playbooks, ensuring they are uptodate and effective.
Conduct postincident reviews and provide recommendations for improvement, with an understanding of industry standards and applicable regulations.
Work with the vSOC to ensure that incidents are detected and reported promptly and appropriately.
Provide technical expertise in threat analysis, vulnerability assessments, and penetration testing, using industryleading tools and techniques.
Collaborate with the IT team to implement security measures and controls to prevent future incidents and ensure compliance with regulatory requirements.
Develop and maintain relationships with external stakeholders and stay informed about the latest security trends and best practices.

Preferred Qualifications and Experience:

Bachelor's degree in computer science, Information Technology, or a related field.
35 years of experience in cybersecurity, with at least 2 years of incident response experience.
Indepth knowledge of cyber threats, attack methodologies, and incident response techniques, including industry standards such as NIST and ISO 2700
Experience with incident response tools and technologies, such as SIEM, XDR, and threat intelligence platforms.
Strong analytical and problemsolving skills, with the ability to analyze large volumes of data to identify security incidents.
Excellent communication and collaboration skills, with the ability to work effectively with technical and nontechnical stakeholders.
Expert Splunk administration experience, with the ability to create complex dashboards and reports to support incident response.
Crowdstrike Falcon Complete, to provide advanced endpoint protection and threat intelligence.
SOAR D3 Integration, to automate and orchestrate incident response activities.
Active Directory, to manage user identities and access controls.
MS Defender, to provide advanced threat protection for Windows endpoints.
Solid English/communication skills, with the ability to clearly articulate technical information to nontechnical stakeholders.

Additional Qualifications:

Qualys vulnerability management, to identify and prioritize security vulnerabilities in the environment.
KnowBe4 PhishER, to identify and remediate phishing attacks.
PCI compliance experience, to ensure compliance with the Payment Card Indus