IT Security Engineer || New York, NY (Hybrid)

Hope you are doing well,

Please find the job description given below and let me know your interest.

Position : IT Security Engineer Location : New York, NY (Hybrid) Duration : 6+ Months

JOB DESCRIPTION :

In this role, you will help strengthen the organization's internal and cloud security framework. Responsibilities include participating in incident response, supporting business continuity and disaster recovery planning, conducting vulnerability assessments, and ensuring compliance with data security policies and standards such as ISO 27001 : 2022, ISO 27017 : 2015, ISO 22301, as well as meeting client audit requirements.

QUALIFICATIONS :

• Bachelor's degree in Computer Science or a related field, or a minimum of 5 years of applicable experience.
• In-depth knowledge of Azure, AWS, Microsoft E5, Sentinel, Defender for Endpoint, and various other security technologies.
• Strong expertise in network security and monitoring practices.
• Relevant security certifications (CISSP, CISM, CISA, GIAC, CCSP, OSCP, CEH, etc.) are required.
• Proficient in automation scripting using Python, Bash, and PowerShell.
• Experience in designing security architectures across different deployment models.
• Familiarity with enterprise security solutions and security protocols.
• Knowledge of regulatory compliance and information security management frameworks (NIST, ISO 27001, PCI DSS, GDPR, HIPAA, etc.).
• Understanding of security frameworks such as MITRE ATT&CK and CIS 20.
• Experience with security considerations in DevOps and CI / CD pipelines, including container orchestration security.

RESPONSIBILITIES :

• Provide round-the-clock support for security incidents, ensuring prompt escalation and resolution.
• Mentor junior team members in the use of security tools, report generation, and problem-solving, while facilitating cross-training opportunities within the team.
• Document and escalate unresolved network security issues to ensure timely attention.
• Develop and maintain thorough documentation of security processes and systems.
• Exhibit extensive knowledge of both on-premises and cloud environments, with a focus on Azure, AWS, and Microsoft E5 platforms.
• Improve visibility and detection capabilities within fully managed Azure and AWS environments.
• Perform penetration testing and identify security gaps, providing recommendations for remediation.
• Assist in the design, development, implementation, and troubleshooting of various information systems and cybersecurity software.
• Automate security testing and auditing processes to prevent regressions and identify issues prior to production deployment.
• Offer expertise in systems, networks, encryption, authentication, and governance.
• Collect reports, metrics, and key performance indicators to assess and validate the effectiveness of current security controls for team evaluation.
• Engage in activities and create materials aimed at raising security awareness throughout the organization.
• Oversee the management of Active Directory, Privileged Identity Management, Local Administrator Password Solution, and associated privilege management technologies.
• Work in partnership with leadership to implement the Zero Trust security model and strengthen CIS standards.
• Lead initiatives for Business Continuity and Disaster Recovery, collaborating closely with the CIO, CISO, and Director of Enterprise Architecture and Service Delivery to test and enhance BC / DR strategies.
• Be available on-call for security incidents, working alongside vendors and the Service Delivery team to address and mitigate threats.
• Proactively evaluate security controls to identify vulnerabilities that could be exploited by malicious actors, and recommend remediation strategies to address security gaps.
• Ensure the operational efficiency and health of all endpoint security agents.
• Maintain up-to-date security architecture diagrams and actively participate in cybersecurity initiatives and projects.

MUST HAVES :

• Primary experience should be a Professional Services industry background.
• Good employment duration.
• Must hold at least one current security certification.
• Must have a college degree.
• Hands-on expertise w / Azure and M E5
• Azure Compliance Manager
• Sentinel
• Working experience with regulatory compliance frameworks such as NIST, ISO 27001, PCI DSS, GDPR, and HIPAA.
• Powershell
• DLP experience with Netskope or similar tool
• Experience with CASB solutions, preferably Netskope

Please share your updated resume and suggest the best number & time to connect with you.

Thanks & Regards,

Raveena Mourya

US IT Recruiter, DMS Visions Inc

972-452-6160 / 972-325-9476 dmsvisions.com / [email protected]

4645 Avon Lane, Suite 210, Frisco, TX 75033

linkedin.com / in / raveena-mourya-766314250