Information Security Engineer

Subsidiary : Colas Inc.

Colas IS Support is the information technology arm of the North America business for Colas and is based in Denver, Colorado.

Colas ISS strives to make Colas an industry leader through developing custom mobile applications and business intelligence tools, supporting core applications, maintaining our infrastructure, and much more.

Through a partnership with the Colas Companies in the USA & Canada Colas IS Support helps empower our employees for success while also providing direct contact with users and other innovators across the organization.

To learn more about Colas IS Support visit www.colasiss.com / .

Throughout our local Colas companies, we provide competitive pay, outstanding benefits, career advancement opportunities, professional education, and extensive training for every employee.

We pride ourselves on upholding the highest standards of safety, environmental conservation, and ethical conduct as we strive to grow our infrastructure products and services through empowering and developing our people, fostering innovation, utilizing new technology, and maximizing vertical integration at all levels of the company's value chain.

Colas IS Support and the Colas companies in North America are part of the Colas Group, the worldwide leader in transportation infrastructure construction and maintenance.

For information on our international network visit www.colas.com .

Compensation

$101,000.00 - $123,000

Job Summary

The Information Security Engineer position at Colas Inc. offers a unique opportunity to make a significant impact on the confidentiality, integrity, and availability of our information systems and data.

As part of our team, you will play a crucial role in protecting against cyber threats, vulnerabilities, and attacks for Colas in North America.

Your focus will be primarily in cyber programs :

Developing and implementing industry-leading security solutions in North America, maintaining close collaboration with our counterparts in France.

Our strong conviction lies in tapping into the expertise of our global network to establish highly robust security measures.

Evaluating the security risks of new solutions built or implemented by Colas ISS through the Cyber-by-Design process, working closely with the CISO office.

Your keen eye for identifying vulnerabilities will help us maintain flawless operations.

Coordinating audits with the CISO office and internal Colas ISS teams, analyzing identified gaps, designing remediation plans, and successfully implementing necessary actions.

Your expertise in identifying and addressing security gaps will ensure our systems remain secure.

• Training Colas ISS users on the best cybersecurity practices to ensure flawless execution. By sharing your knowledge and expertise, you will empower our team to maintain a world-class security posture.
• Contributing to cyber operations by analyzing, prioritizing, and efficiently resolving incidents and vulnerabilities. Your dedication and efficient problem-solving skills will help us compete against ever-evolving cyber threats.

Main Responsibilities

Security projects : Lead the design, installation, and configuration of various security solutions to meet project and operational requirements.

Your expertise will enable us to implement world-class security measures.

Cybersecurity Risks : Evaluate the security risks of new and existing solutions built or implemented by Colas ISS through the Cyber-by-Design process.

Collaborate closely with the CISO office to develop remediation action plans, ensuring exceptional security standards.

Cybersecurity Audits : Take charge of coordinating audits with the CISO office and internal Colas ISS teams. Analyze identified gaps, design effective remediation plans, and successfully close or coordinate closing actions as needed.

Your attention to detail will help us maintain a flawless security posture.

Incident Response : Investigate security breaches and implement mitigation strategies to minimize impact and maintain flawless operations.

Your quick thinking and decisive actions will be crucial in maintaining the integrity of our systems.

Security Vulnerabilities : Proactively investigate, triage, and remediate identified vulnerabilities to ensure a robust security posture.

Your proactive approach will ensure that potential vulnerabilities are addressed before they can be exploited.

Documentation and Reporting : Maintain comprehensive documentation of security measures to ensure transparency and facilitate accurate reporting.

Your meticulous documentation will provide valuable insights and support effective decision-making.

Collaboration : Consult and collaborate with multiple teams to design and implement security technology protections and processes.

Conduct periodic audits to ensure strict compliance with our cybersecurity processes. Your collaborative approach will foster a culture of security awareness and compliance.

Review and Training : Take charge of regularly reviewing exemptions and access to Security Tools. Support internal Colas ISS users by sharing your knowledge of cybersecurity best practices, while also coordinating training for Colas North American users with the CISO office.

Your expertise and guidance will contribute to strengthening our team's security posture.

Emerging Technologies : Stay updated with the latest advancements in security technologies and recommend relevant solutions to enhance our security infrastructure.

Your knowledge of emerging technologies will help us stay one step ahead of potential threats.

Education

• Bachelor's degree in computer science or a similar field.
• Minimum of 5 years of experience as a sysadmin working with Windows Servers, SCCM, and Linux.
• Minimum of 3 years of experience in cybersecurity.
• Minimum of 3 years of experience securing a Cloud Infrastructure environment (Azure - preferred, OCI, AWS).

Skills

• Proficiency in working with automation tools and scripting languages (e.g., Python, PowerShell) for automation platforms.
• Positive attitude and dedication to fostering a collaborative and inclusive team environment.
• Excellent written, verbal, and listening interpersonal skills to effectively communicate with different teams and individuals.
• Willingness and ability to travel in the US and Canada 2-3 times per year to support our North American operations.
• Knowledge of French is desirable but not required.
• One or more current security-related certifications (e.g., CISSP, SANS GIAC, etc.) is helpful.
• One or more cloud security certifications (Azure, AWS, GCP, CCSP) would be beneficial.
• Proficient understanding and expertise in information security frameworks, standards, and effective approaches, including ISO 27001, NIST, COBIT, CMMC.

Colas Inc. and its subsidiaries are an Equal Opportunity Employer. For details on the specifics of this commitment, please click here to view the EEO document .

If you are an individual with a disability and require a reasonable accommodation to :

• to meet the requirements of the role in which you are applying
• complete any part of the application process
• access or use the online application process and need an alternative method for applying

Please contact Colas Inc. at 973-290-9082 or send an email to ColasRecruiter@colasinc.com .