Join us for coffee + conversation at our February Virtual Coffee Connect on February 18 @ 8:30 AM | Learn More and Sign Up!

Online Job Board

Information Security Engineer I

Cape Cod Five Cents Savings Bank
Job Description

Summary:

The Information Security Engineer I will provide consultative, technical research and analytical support on Information Security systems such as firewalls, cloud security, intrusion prevention, web content filter, end point protection as well as cyber forensic and incident response efforts, and act as an advisor to the Chief Information Security Officer. The role requires the candidate to provide support and guidance based on experiences in the areas of security system management, forensics, and incident response. 

Essential Job Functions & Responsibilities:

  1. Assist the Chief Information Security Officer and Information Security Engineer II in providing for the safekeeping and integrity of information assets by maintaining systems and controls that prevent unauthorized access, modification, disclosure, and/or deletion of information from computer networks and resources.
  2. Provide security research and analysis of systems.
  3. Perform vulnerability assessments and manage remediation efforts across the external and internal security horizons.
  4. Provide security engineer support for issues escalated by the IT Service desk with the Information Security Engineer II.
  5. Networking with entities outside the organization to stay informed of threats and countermeasures.
  6. Co-Manage firewalls and intrusion prevention systems with third party security operations centers.
  7. Co-administer information security tools and systems.
  8. Assist in the administration and management of information security team functions including but not limited to: information security oversight reporting, vulnerability testing, vendor management, and contingency planning and recovery program.
  9. Maintain technical proficiency regarding the information security process evolution and provide appropriate related knowledge transfer throughout the Bank.

Qualifications:

Education & Certifications:

  • Bachelor’s degree in Computer Science or related field, Advanced Degree preferred.
  • CISSP certification desired, SANS – GCIH certification is a plus.

Knowledge, Skills & Abilities:

  • Minimum of 3-5 years of Information Technology Security experience, business analysis/systems engineering experience and working knowledge of development life cycle stages.
  • At least 1-2 years of experience in computer forensics, hacker methodologies, and data recovery.
  • Proven and demonstrated accomplishments in the Information Security field.
  • Member of various Information Security Organizations (i.e., ISSA, SANS, ISC2, ESF, etc.) preferred.
  • Active participation in one or more of the following organizations (or equivalent): Information Systems Security Association (ISSA); InfraGard.
  • Experience developing, testing, maintaining, and managing a forensics & incident response program.
  • Demonstrated ability to respond to network intrusions, cyber criminals and network security vandalism, including hands-on experience with digital forensics and investigations, as well as researching and maintaining proficiency in tools, techniques, countermeasures, and trends in computer and network vulnerabilities, data hiding and encryption.
  • Experience with Networking Security and network segmentation, hardening operating systems and current web application technologies; Palo Alto firewall experience; perimeter protection, virtual private networks (VPN); intrusion detection in depth; advanced incident handling and forensics practices.
  • Working knowledge of graphic applications used for flow-charting and infrastructure depiction (i.e. Visio) and demonstrated ability to produce high quality documentation.
  • Must have excellent project management skills, including the ability to plan, organize, & prioritize multiple projects to ensure target dates & goals are achieved.
  • Ability to proactively identify, take ownership, and improve the Bank’s information security posture
  • Must have cyber security awareness to protect the digital environment, the Bank, and customers.
  • Strong verbal and written skills with ability to present and influence stakeholders.
  • Travel requirements estimated to be local to Cape Cod, Nantucket and Martha’s Vineyard Islands and South East Massachusetts.

Competencies:

  • Self-starter / Initiative
  • Attention to Detail / Follow-through
  • Problem Solving
  • Excellent Verbal and Written Communication Skills
  • Critical Thinking Skills
  • Technology Savviness/Digital Enthusiast
  • Adaptability and Flexibility
  • Learning Agility
 

Equal Opportunity Employer/Protected Veterans/Individuals with Disabilities

The contractor will not discharge or in any other manner discriminate against employees or applicants because they have inquired about, discussed, or disclosed their own pay or the pay of another employee or applicant. However, employees who have access to the compensation information of other employees or applicants as a part of their essential job functions cannot disclose the pay of other employees or applicants to individuals who do not otherwise have access to compensation information, unless the disclosure is (a) in response to a formal complaint or charge, (b) in furtherance of an investigation, proceeding, hearing, or action, including an investigation conducted by the employer, or (c) consistent with the contractor’s legal duty to furnish information. 41 CFR 60-1.35(c)