Location: Plano, TX (Remote)
The Information Security Engineer is responsible for monitoring, analyzing, and supporting the day-to-day protection of clent’s information systems and data.
This role is critical in ensuring the confidentiality, integrity, and availability of company and client information by identifying vulnerabilities, assessing risks, and implementing security solutions.
The Information Security Engineer collaborates with teams across the organization to enforce security policies and proactively manage threats.
Key Responsibilities:·
Design and implement security controls and threat protection strategies across Azure services.·
Monitor, assess, and respond to security events using tools like Microsoft Defender for Cloud, Sentinel, and Log Analytics.·
Manage and configure Azure Active Directory (AAD) and implement RBAC and Conditional Access policies.·
Developing and maintaining application security standards, policies, and procedures.·
Work closely with the software development team to ensure that secure coding practices are implemented throughout the application development lifecycle·
Automated security processes using PowerShell, ARM templates, and Azure CLI.·
Collaborate with DevOps, IT, and development teams to embed security into cloud architecture and deployments.·
Participate in incident response planning and execution for cloud-related incidents.·
Keep up with evolving security threats and proactively suggest mitigation strategies.·
Analyze and investigate security alerts and provide timely incident response, including escalation and resolution tracking.·
Support the management and maintenance of security tools and platforms (e.g., SIEM, endpoint protection, vulnerability scanners).·
Conduct regular vulnerability assessments and assist with remediation efforts across systems and infrastructure.·
Collaborate with IT and business teams to ensure secure implementation of technologies and projects.·
Strong Documentation skills in creation, review, and enforcement of security policies, standards, and procedures.·
Perform user access reviews and audits to ensure compliance with least-privilege principles.·
Participate in security awareness training initiatives and help promote a culture of security throughout the organization.·
Support compliance efforts related to security frameworks (e.g., HIPAA, SOC 2, PCI) through documentation and evidence gathering.
Other tasks or projects as needed or assigned.
—
You received this message because you are subscribed to the Google Groups “MydailyReksforC2C” group.
To unsubscribe from this group and stop receiving emails from it, send an email to mydailyreksforc2c+unsubscribe@googlegroups.com.
To view this discussion visit https://groups.google.com/d/msgid/mydailyreksforc2c/ea411cde-c4c2-4ddd-8115-2e890eb3a023n%40googlegroups.com.