Information Security Lead Engineer - Remote

The Information Security Lead Engineer is responsible for owning the deployment, maintenance, and tuning all of the enterprise’s information security infrastructure.

The Information Security Engineer is responsible for the continued deployment of new information security tools and technologies throughout the enterprise.

The Information Security Engineer is a senior leader within the Information Security and Compliance Department who leads the deployment and maintenance of complex cybersecurity technologies.

The cybersecurity lead engineer also handles complex cybersecurity cases, breaches, or other important issues.

Responsibilities / Essential Functions :

Project Manage deployment of security solutions (NAC, IDS, EDR, MDR, DLP, etc)

Maintain all information security solutions (NAC, IDS, EDR, MDR, DLP, etc)

Tune all security solutions (NAC, IDS, EDR, MDR, DLP, etc)

Serve as an escalation to the Vestis CyberSOC & MDR Teams

Execute on the deployment of projects pertaining to Information Security

Head Incident Response Team

Coordinate Penetration Testing

Execute Vulnerability Management Program

Execute Configuration Management Program

Provide data and reporting on all information security systems

Assist with documenting, modifying, and publishing compliance related SOPs and policies

All other duties, as assigned

Knowledge / Skills / Abilities :

Proven technical hands-on knowledge of the implementation, maintenance, and tuning of security systems and integrating those systems into the enterprise : Antivirus, EDR, MDR, IDS, IPS, CyberSOC, NAC, SEIM, DLP, Hard Drive Encryption, etc.

Crowdstrike, KnowBe4, CISCO Meraki, Checkpoint Firewalls, Fortinet Firewalls, Symantec, Endgame, Splunk, Solarwinds)

Skilled at managing projects by designing and implementing technology-enabled business solutions

Knowledge of Mobile Device Management tools, their implementation, and ongoing support

Knowledge of Network Segmentation : virtual and physical

Knowledge of common cybersecurity attacks and indicators of compromise : phishing, smishing, malware, man in the middle attack, SQL Injection, Denial of Service Attacks, Insider Threats, Cryptojacking, Ransomware

Knowledge in setting up and running information security training programs and phishing campaigns

Skilled and proficient in MS Office O365 suite security

Ability to effectively define a business case, determine return on investment, and measure achievement of the case over time

Ability to manage and work on multiple concurrent deliverables at various stages of development and completion

Strong problem solving and analytical skills

Professional level verbal and written communication skills

Knowledge of CCTV, Door Badge Access Systems, key management systems, and all other physical security access systems and their associated management programs

Demonstrated attention to detail and quality of work products and communications

Willingness to seek out and implement coaching, suggestions, and guidance from others

Working Environment / Safety Requirements :

Ensure necessary working environment and capabilities to effectively carry out responsibilities if working from a non-Vestis location (remote work)

Ability and willingness to handle work related issues during all hours of the day, every day of the week, understanding the responsibility of our organization’s requirement for 24 / 7 production support

Ability, willingness, and flexibility to travel as needed for approved work purposes in accordance with project and management schedules

Be legally able to work in the United States : U.S. Citizen or Legal Resident

Be legally able to travel to Canada and Mexico

Experience / Qualifications :

Bachelor’s degree in information technology, information security or related field or equivalent experience

7+ years of demonstrated hands-on experience leading security and technology teams with oversight for operations, project management, budgets, and team leadership

Demonstrated experience in successfully defining security programs, developing requirements, designing, prototyping, testing, training, defining support procedures, and implementing practical business solutions under set deadlines

Ability to lead and facilitate teams across the enterprise through security and compliance programs

Experience with the use of Project Management methodologies and tools

License Requirements / Certifications :

Valid U.S. driver’s license (for rental cars when applicable)