IT SR. Engineer, Information Security

JOB DESCRIPTION

JOB SUMMARY

The Senior Information Security Engineer plays a crucial role in maintaining the security posture of Denny’s. The candidate will be responsible for implementing and managing security solutions to protect our systems, networks, and data from potential threats.

This role requires deep technical expertise in information security along with the ability to collaborate with various teams to ensure the overall security strategy aligns with business objectives.

ESSENTIAL FUNCTIONS (Key Responsibilities)

Security Infrastructure Implementation :

• Deploy, and maintain security infrastructure including firewalls, intrusion detection / prevention systems (IDS / IPS), endpoint protection, and encryption technologies.
• Implement security solutions to protect against malware, ransomware, phishing, and other cyber threats.
• Implement security controls to protect cloud resources, such as virtual networks, storage, and compute instances.
• Ensure adherence to cloud security best practices and standards, such as the Cloud Security Alliance (CSA) guidelines and the Shared Responsibility Model.
• Configure and manage security tools and technologies to ensure optimal performance and effectiveness.

Security Operations :

• Monitor security systems for breaches or intrusions and respond promptly to security incidents.
• Implement and manage security monitoring tools and processes to detect and respond to potential security threats in real-time leveraging SIEM and automation technologies.
• Implement and manage security tools such as firewalls, intrusion detection systems, and antivirus software.
• Conduct regular security assessments and penetration testing to identify vulnerabilities and weaknesses.
• Stay current with emerging security threats, vulnerabilities, and technologies to proactively recommend security enhancements and improvements.

Incident Response :

• Lead incident response efforts during security breaches or incidents, including investigation, containment, and recovery.
• Conduct forensic analysis to determine the root cause of security incidents and implement measures to prevent recurrence.
• Develop and maintain incident response plans and playbooks.

EDUCATION & EXPERIENCE REQURIEMENTS

Education :

• Bachelor’s degree in Cyber Security, Computer Science, Information Technology, or a related field.
• Professional Cyber Security Certification Required (e.g., CISSP, CCSP, SSCP, CEH or equivalent.)

Experience :

5+ years IT Security experience required

REQUIRED KNOWLEDGE & SKILLS

• Deep understanding of security principles, technologies, and best practices.
• Experience with security tools and technologies such as firewalls, SIEM (Splunk), IDS / IPS, DLP, endpoint security, etc.
• Strong analytical and problem-solving skills with the ability to analyze complex systems and networks for security vulnerabilities.
• Excellent communication and interpersonal skills with the ability to effectively collaborate with cross-functional teams.
• Proven ability to manage multiple projects and priorities in a fast-paced environment.
• Knowledge of regulatory requirements such as GDPR, CCPA, HIPAA, PCI DSS, etc.
• Experience with Azure and AWS cloud security principles and technologies.
30+ days ago