2,294 Ceh jobs in the United States

Thank you for considering Progyny!

The successful candidate will play a key role in supporting the Information Security program by assisting with day-to-day tasks. Under the guidance of the GRC Manager, this entry-level position will help with organizing and tracking documentation for audits, conducting initial security reviews of vendors, maintaining ticket queues for internal and client security questions, and handling assigned tasks as part of team projects. This role is designed to help build a foundation in information security, offering opportunities to develop practical skills while contributing to the team's compliance and security objectives.

The role offers valuable learning opportunities and growth within a dynamic, supportive environment for candidates eager to develop in information security. This position requires adaptability, advocating for flexible strategies, and the ability to collaborate across departments. Success depends on driving compliance initiatives while maintaining professionalism under pressure.

What you'll do.

• Conducts security assessments and audits of vendors through our vendor risk management platform. Prepares and coordinates corrective actions

• Assist with the enforcement of information security policies, standards, and guidelines

• Participate in incident response and disaster recovery tabletop exercises.

• Supports managing and responding to internal and client security-related requests via ticketing systems.

• Contribute to the delivery of annual security awareness and privacy training programs.

• Help maintain dashboards and reports for GRC projects.

• Participate in internal audits and support certification efforts (e.g., SOC 2 Type II, HITRUST).

• Assist with documentation and remediation security gaps.

• Collaborate with team members to support the long-term security roadmap.

About you.

• BS/BA in a related discipline or related work experience.

• Minimum of 1 year of experience in information security, compliance, or a related area.

• Experience working with office and communication tools (Office365, Outlook/Gmail, Teams/Slack, etc.)

• Strong analytical thinker who is organized and detail-oriented

• Experience with working to deadlines and the ability to organize tasks within those deadlines

• Team oriented approach to meeting our compliance requirements.

• Excellent verbal and written communication skills

Nice to have

• Experience with ticketing systems, security assessment tools, or compliance platforms.

• Basic understanding of compliance frameworks (e.g., HIPAA, PCI, NIST).

• Familiarity with cloud platforms (e.g., AWS, Azure, Salesforce).

• Interest in pursuing industry certifications (e.g., CompTIA Security+, GRC-related credentials).

Please note: This is not a digital nomad or remote international position; candidates must be based in the United States. Progyny is unable to provide visa sponsorship for this position. Candidates must be authorized to work in United States without the need for sponsorship, now or in the future.

About Progyny:

Progyny (Nasdaq: PGNY) is a global leader in women's health and family building solutions, trusted by the nation's leading employers, health plans and benefit purchasers. We envision a world where everyone can realize dreams of family and ideal health. Our outcomes prove that comprehensive, inclusive and intentionally designed solutions simultaneously benefit employers, patients and physicians.

Our benefits solution empowers patients with concierge support, coaching, education, and digital tools;provides access to a premier network of fertility and women's health specialists who use the latest science and technologies; drives optimal clinical outcomes; and reduces healthcare costs.

Our mission is toempower healthier, supported journeys through transformative fertility, family building and women's health benefits.

Headquartered in New York City, Progyny has been recognized for its leadership and growth as a TIME100 Most Influential Company, CNBC Disruptor 50, Modern Healthcare's Best Places to Work in Healthcare, Forbes' Best Employers, Financial Times Fastest Growing Companies, Inc. 5000, Inc. Power Partners, and Crain's Fast 50 for NYC. For more information, visit

Our perks:

• Family friendly benefits: Paid family and parental leave, preconception, fertility and family building benefits (including egg freezing, IVF, and adoption support), family and pet care fund, and Parents' Employee Affiliation Group

• Menopause and midlife care

• Health, dental, vision and life insurance options for employees and family

• Free in-person, virtual and text-based mental health and wellness support

• Paid time off, including vacation, sick leave, personal days and summer flex time

• Company equity

• Bonus program

• 401(k) plan with company match

• Access to on-demand legal and financial advice

• Learning and development programs to help you grow professionally and a mentorship program

• Company social eventsto include annual volunteer day and donation matching

• Flex days (3 days a week in the office) and onsite meals and snacks for employees reporting into our NY office

In compliance with New York City's Wage Transparency Law, the annual salary (wage) range for NYC-based applicants is: $55,000 - $70,000. There are a variety of factors that go into determining a salary range, including but not limited to external market benchmark data, geographic location, and years of experience sought/required. Progyny offers a total compensation package comprised of base salary, cash bonus, and equity.

Progyny is proud to be anEqual Opportunity and Affirmative Action employer.We respect and seek to empower each individual and support the diverse cultures, perspectives,skillsand experiences within our workforce. All qualified applicants will receive consideration for employment without regard to race, creed, color, religion, sex, sexual orientation, gender identity or expression, national origin, disability, age, genetic information, marital status, pregnancy or related condition, status as a protected veteran, criminal history consistent with legal requirements or any other basis protected by law.

If you are an individual with a disability and need assistance or an accommodation during the recruiting process, please send an e-mail to

#LI-BG1

• Monitor and correlate events across AWS CloudWatch, CloudTrail, GuardDuty, and Security Hub.
• Configure and maintain Rapid7, LogRhythm, and related monitoring tools for ingestion of logs from servers, PCs, and laptops.
• Develop detection rules, alerts, and dashboards for real-time visibility into threats and anomalies.
• Conduct continuous log analysis, identifying suspicious activity, compromised accounts, or policy violations.
• Monitor logs and events across AWS and on-premises environments (Dallas and China offices), ensuring consistent visibility into threats.

• Perform Tier 1/Tier 2 triage of alerts and escalate to senior security/engineering staff as appropriate.
• Support incident response exercises, playbook development, and forensic analysis.
• Lead investigations of security events: review indicators of compromise, assess impact, and recommend containment/remediation actions.
• Collaborate with IT Operations, Network Engineering, and DevOps to remediate vulnerabilities and harden systems.
• Escalate incidents and findings to the Senior Cloud Network Engineer or Senior Security System & Network Engineer as appropriate, with oversight from the Director of Information Security.

• Support compliance initiatives (PCI, SOC, NIST, CIS) by maintaining monitoring evidence, documenting incidents, and assisting with audit requests under the guidance of the Director of Information Security.
• Document incidents, vulnerabilities, and remediation efforts for audit and reporting purposes.
• Assist in the rollout and implementation of zero-trust controls (MFA, IAM policies, endpoint protection) as directed by the Director of Information Security."

• Create and maintain scripts and automation (Python, PowerShell, Terraform) for log ingestion, enrichment, and reporting.
• Develop runbooks for common security incidents and monitoring alerts.
• Recommend enhancements to SIEM rules, AWS GuardDuty findings, and log retention strategies.
• Identify and implement emerging security best practices to keep pace with evolving threats.
• Contribute to security KPIs, including SIEM coverage across assets, incident response times, and patch/vulnerability remediation metrics, by providing accurate monitoring and escalation

• 5+ years of experience in Security Operations, Threat Monitoring, or Incident Response.
• Strong familiarity with AWS-native security/monitoring tools (CloudWatch, CloudTrail, Security Hub, GuardDuty).
• Hands-on experience with SIEM platforms, preferably Rapid7 InsightIDR, LogRhythm, or Splunk.
• Knowledge of security frameworks (NIST 800-53, CIS Benchmarks, PCI DSS).
• Understanding of networking (TCP/IP, firewalls, VPNs) and operating system hardening (Windows, Linux).
• Strong analytical skills with experience conducting log analysis, packet captures, and event correlation.
• Practical scripting/automation knowledge (Python, PowerShell, Bash).
• Relevant certifications a plus (CompTIA Security+, GSEC, AWS Security Specialty, CEH, or similar).

• This is an hybrid role and open to candidates in Salt Lake City, UT or within commuting distance of our South Salt Lake City headquarters.

• Ensure proper implementation of security practices, such as vulnerability management
• Support achievement of meaningful industry certifications (e.g. ISO 27001, SOC2)
• Manage prioritization of security related activities
• Monitor threat landscape (e.g. CISA feeds, industry publications, news, etc.) and engage with Product, engineering, and infrastructure Leaders to ensure adequate controls are in place
• Collaborate with infrastructure teams to ensure security controls are implemented in production environments
• Automate security checks and scans as well as help prioritize and remediate findings.
• Assist with in response and recovery related to security incidents or breaches
• Monitor security alerts and logs to detect potential threats, suspicious activity, or breaches.
• Perform incident triage, investigation, and response, escalating when appropriate.
• Conduct vulnerability assessments, risk analysis, and remediation follow-up.
• Assist with security audits, compliance requirements, and reporting.
• Support the development and implementation of security policies, procedures, and controls.
• Research emerging threats, attack vectors, and best practices to improve organizational security posture.
• Provide guidance and training to staff on cybersecurity awareness and safe practices.
• Engage in threat hunting activities both in PDQ products and within PDQ networks.
• Monitor and stop fraud and abuse of our products.

• Solid understanding of web and mobile application security across the SDLC
• Strong experience with secure cloud architecture and design
• Experience with a variety of security testing tools and best practices
• Strong experience with threat modeling and analysis
• Experience implementing and securing cloud storage and cloud infrastructure
• Understanding of common threats and attacks, as well as security protocols and standards
• Work collaboratively across multiple departments
• Handle sensitive and confidential information
• Apply strong analytical and problem-solving skills
• Exercise curiosity and seek opportunities for continued learning
• Think creatively and outside the box
• Stay up to date on latest security trends and technologies
• Communicate concepts to technical and non-technical audiences alike

• 3-5 years of experience in cybersecurity
• Familiarity with SIEM tools, intrusion detection/prevention systems, and vulnerability management platforms.
• Knowledge of networking fundamentals, operating systems (Windows/Linux), and cloud environments.
• Understanding of common attack techniques (e.g., phishing, malware, privilege escalation, lateral movement).
• Strong analytical, problem-solving, and communication skills.
• Ability to work in a fast-paced environment with attention to detail.

• Applications written in Elixir, C#, Ruby, JavaScript, Python
• Infrastructure implemented in GCP/Kubernetes
• SIEM is Azure Sentinel
• Security tooling like Microsoft Sentinel, Defender for Endpoint, and Wiz

• 4-Day Work Week
• Managers who champion professional development
• 100% Premium Coverage for medical, dental and vision for you and your dependents
• 100% Premium Coverage for Short Term Disability, Long Term Disability, Life, and AD&D Insurance
• Company Match of the first 6% of your employee deferrals
• Flexible Paid Time Off Policy that treats you like the adult that you are
• Health Savings Account (HSA) and wellness incentives
• Quarterly Company Values Award (team member nominated)

Description

Tyto Athene is searching for a Security Analyst to join our team of cloud, security, and compliance experts. This role requires experience with ensuring the security, confidentiality, integrity, and availability of AWS-based applications and systems.

Responsibilities:

• System Compliance: Responsible for understanding the security baselines of the environments assigned and performing work in compliance with the standards set forth by the security baselines

• System Monitoring and Reporting: Reviews on a daily, weekly, or monthly basis the scans and dashboards created to monitor the assigned environments in compliance with the required standards. Reports must be generated on a defined reoccurring timeline based on the above scans and dashboards. Monitoring and Reporting requirements will include but are not limited to Splunk Alerts, Trend Micro dashboard, Vulnerability scans.

• Understand and operate in accordance with security authorization packages and procedures/plans for client requirements and FedRAMP or FISMA compliance including:

• System Security Plan(SSP)

• Contingency Plan(CP)

• Incident Response Plan(IRP)

• Plan of Action and Milestones(POA&M)

• Configuration Management Plan(CMP)

• Remediation Plan(s)

• Develops and maintains POA&Ms and supports remediation activities in coordination with the customer and Security Engineers.

• Maintains an inventory of hardware and software for information systems for the client.

• Develops, coordinates, tests, and trains on CPs and IRPs.

• Performs risk analyses to determine cost-effective and essential safeguards in response to Significant Change Requests (SCR).

• Reviewing, analyzing, and documenting security vulnerability and compliance scans

• Reporting and coordinating with customers on their role in remediation

• Communication through ticketing and verbal communication

• Supports CCB type activities

• Attends client meetings

• Provides continuous monitoring to enforce client security policy and procedures

• Creates processes that provide oversight of the clients internal ConMon Activities:

• Ticketing

• Reporting

• Configuration Management

Qualifications

Required:

• Ability to actively and effectively communicate, interact, and solve critical customer problems.

• Ability to think and act strategically and proactively.

• Demonstrated experience with AWS, Systems Administration and Vulnerability Management. Industry certifications are a plus.

• Ability to work independently with minimal direction or supervision.

• Hands-on experience using and/or configuration of one or more of the following:

• Palo Alto Networks Firewalls

• Splunk Enterprise

• Tenable Security Center/Nessus

• TrendMicro Deep Security

• Anchore

• Twistlock

• Terraform

• Cloud formation

• Ansible

About Tyto Athene

Compensation:

• Compensation is unique to each candidate and relative to the skills and experience they bring to the position. This does not guarantee a specific salary as compensation is based upon multiple factors such as education, experience, certifications, and other requirements, and may fall outside of the above-stated range.

Benefits:

• Highlights of our benefits include Health/Dental/Vision, 401(k) match, Flexible Time Off, STD/LTD/Life Insurance, Referral Bonuses, professional development reimbursement, and maternity/paternity leave.

Tyto Athene is a trusted leader in IT services and solutions, delivering mission-focused digital transformation that drives measurable success. Our expertise spans four core technology domains—Network Modernization, Hybrid Cloud, Cybersecurity, and Enterprise IT—empowering our clients with cutting-edge solutions tailored to their evolving needs. With over 50 years of experience, Tyto Athene proudly support Defense, Intelligence, Space, National Security, Civilian, Health, and Public Safety clients across the United States and worldwide.

At Tyto Athene, we believe that success starts with our people. We foster a collaborative, innovative, and mission-driven environment where every team member plays a critical role in shaping the future of technology. Are you ready to join #TeamTyto?

Tyto Athene, LLC is an Equal Opportunity Employer; all qualified applicants will receive consideration for employment without regard to race, color, religion, sex, (sexual orientation, gender identity,) national origin, disability, status as a protected veteran, or any characteristic protected by applicable law.

Submit a Referral (

Location US-VA-Reston

ID

Category Information Technology

Position Type Full-Time

My direct end client Florida Dept. of Transportation (FDOT) in Boca Raton, FL.
Onsite position.
Rate: $65 hr. C2C
Exhibit E must be completed.
USC, GC

Description
The Security Analyst is responsible for assisting with the day-to-day operations of securing the departments various
information systems. Reporting to the Security Risk and Compliance Office Security Manager, the Security Analyst is
tasked with providing technical expertise in all areas of network, system, and application security. The Security Analyst
works closely with the various teams in the infrastructure department to ensure that systems and networks are always
designed, developed, deployed, and managed with an emphasis on strong, effective security and risk management
controls. The Security Analyst is responsible for departments vulnerability management program, administers the
annual cybersecurity assessments and penetration tests, and researches and reports on emerging threats to help the
department take pre-emptive risk mitigation steps. The Security Analyst effectively correlates and analyzes security
events to proactively detect threats and mitigate attacks before they occur.

Responsibilities
Proactively monitor the environment to detect and implement steps to mitigate cyber-attacks before they occur.
Provide technical expertise regarding security-related concepts to operational teams within the department
and the business.
Review, investigate, and respond to real-time alerts within the environment.
Review real-time and historical reports for security and/or compliance violations.
Monitor online security-related resources for new and emerging cyber threats.
ssesses new security technologies to determine potential value for the enterprise.
Conducts vulnerability assessments of department systems and networks.
Manage systems owned by the Security Risk and Compliance Office (SRCO)
Liaise with the departments trusted security manage services, infrastructure technical resources, and 3rd party
business vendors.

Demonstrable Requirements
four-year college degree or equivalent industry training and certifications.
Three to five years of experience in a security analyst or related position.
Technical knowledge of enterprise-class technologies such as firewalls, routers, switches, wireless access
points, VPNs, and desktop and server operating systems.
Thorough understanding of Microsoft's enterprise technology platform, including Azure, Active Directory,
SQL, and the Windows server and desktop operating systems.
Thorough understanding of Redhat and Oracle database operating systems.
Working experience with the following technology vendors and products: Splunk, Tripwire, Rapid7 Nexpose
Vulnerability Scanner, Metasploit, Qualys Vulnerability Scanner (Cloud), Delinea Secret Server, Carbon Black
Application Protection, Veracode SAST & DAST Technologies.
Strong writing skills, as well as the ability to articulate security-related concepts to a broad range of technical
and non-technical staff.
Demonstrated experience implementing and/or enforcing security and compliance frameworks such as NIST,
PCI DSS, and ISO.
bility to demonstrate self-sufficient working capacity and proficient problem-solving skills.

Taxwell helps everyday Americans get every tax advantage they deserve by finding credits and deductions they never even knew existed. Our tax preparation software offers easy guidance and ensures your maximum tax refund. We strive to build a team of like-minded experts in both tax and technology who align with our brand purpose, are advocates for our customers and have a fresh, non-traditional approach to the tax industry.

Serves as a consultant for Taxwell

At Taxwell, we believe our work benefits from the diverse perspectives of our employees. As such, Taxwell welcomes and celebrates diversity and inclusion and is committed to equal opportunity employment. At Taxwell, you can expect a supportive, open, and inclusive atmosphere and a team that values your contributions.

Taxwell is committed to providing an environment of mutual respect where equal employment opportunities are available to all applicants without regard to race, color, religion, sex, national origin, age, disability, marital status, sexual orientation, gender identity, veteran status, and any other status protected under applicable law. Taxwell considers information gathered in the hiring process, including information on this application, confidential, and only shares it on a need-to-know basis or as required by law.

If you need assistance or accommodation due to a disability, you may contact us at or by calling extension 6049 to speak with a member of the HR Talent Acquisition team.

Apply now: Security Analyst II, location is Hybrid (2 days onsite in Alexandria, VA). The start date is ASAP.

Job Title: Security Analyst II
Location-Type: Hybrid (Tues & Thurs onsite in Alexandria, VA)
Start Date Is: ASAP
Duration: Permanent
Compensation Range: $150K-$165K

Job Description:
Support and enhance security operations, ticketing processes, and incident response across various cybersecurity tools, ensuring efficient security event monitoring, troubleshooting, and process automation.

Day-to-Day Responsibilities:

• Work with IDS, IPS, SIEM, and other security tools to generate and action tickets.
• Troubleshoot and resolve security incidents, escalating as needed.
• Ensure log sources and search sources are correctly consolidated for streamlined response.
• Document security processes and work toward automating operations.
• Generate reports on security operations, incident trends, and system performance.
• Collaborate cross-functionally with cybersecurity engineers and other IT teams.
• Participate in an on-call rotation (every six weeks) for cybersecurity incidents.

• Must-Haves:
  
  • 5 years in cybersecurity and 4 years as a Security Analyst.
  • Tenure in full-time roles (ideally 3-5 years per position).
  • Hands-on experience with ITSM (ticketing systems), SIEM, IDS/IPS, next-gen firewalls, DLP, email security, and web application firewalls.
  • Strong documentation experience with the ability to create and operationalize security processes.
  • Experience investigating, blocking, and remediating malicious traffic and alerts.
  • Ability to interpret logs and analyze security events using tools like Wireshark, Fortinet Analyzer, DeepSeas, and Microsoft Defender.
  • Familiarity with scripting languages such as PowerShell, Bash, or Python for security automation.
  • Strong interpersonal skills: proactive, team player, independent, and flexible.
• Nice-to-Haves:
  
  • Experience in startups or Managed Security Providers (MSPs).
  • Knowledge of DFIR, IAM, PAM, NGFW, EDR, CASB, SOAR, MSSPs, and MITRE Telecommunication&CK framework.
  • Background in systems engineering or administration.
  • Relevant cybersecurity certifications (GCIH, GCIA, GMON, GCED, CISSP, CEH, Fortinet, CompTIA, or similar).
  • Bachelor's degree in cybersecurity, IT, or a related field (or equivalent experience).

• 60 months experience implementing information security and compliance programs for IT systems and OT systems.
• 60 months experience conducting written risk assessments using industry standards such as NIST, CIS Critical Controls, ISO 27001, etc.
• 48 months experience triaging and determining mitigation plans (with and/or without Vendor) to resolve security threats to business information systems.
• 48 months experience evaluating business systems (Commercial Off the Shelf and Custom Developed) for alignment with IT and OT information security policies.
• 36 months experience in securing cloud environments
• 36 months conducting information systems security analysis using Secure System Development LifeCycle (SSDLC)
• pplicable Information Security or Information Technology certifications such as GSEC, GOCSP, CGEIT, CISA, CRISC, GCCC, Security+, Network+, CCSP, CSSLP, ISSAP, ISSEP, SSCCP, etc.
• Bachelor's Degree or higher in one or more of the following: Information Security, Computer Science, Information Science, Information Assurance, Information System Management, Cybersecurity, Digital Forensics, IT Governance, Compliance and Risk Assessment

• Implement information security and compliance programs for IT systems and OT systems.
• Conduct written risk assessments for existing systems/solutions, new systems/solutions, and services in use or to be used by the business.
• ssist with management and resolution of security threats to business information systems.
• Serve as information security analyst and evaluate systems and contracts for alignment with Business and State information security policies.
• Monitor and remain aware of information security industry trends, tools, and techniques.
• Perform additional duties as required.

The IT Security team is responsible for overseeing the security of the firm's data and systems. The team manages server and endpoint security, network security, edge security, regulatory compliance and operational security concerns globally. The team is responsible for designing security policies and procedures that align with corporate and regulatory goals, implementing technology solutions to enforce policies, and supporting all security systems.

Overview

Reporting to the manager of the IT Networking & Security team, this position is part of the IT Infrastructure group. The IT Security Engineer has responsibility for the design and implementation of security technology and policies that protect the firm's data and systems from internal and external threats. Since the firm has a cloud-first strategy, a key skill will be the ability to understand and respond to the unique risks in a cloud environment that supports IaaS, PaaS, and various SaaS platforms. A strong candidate will have extensive hands-on experience with Palo Alto Firewalls (including Panorama Management, Clustering, SSL Decryption and URL Filtering), Checkpoint Firewalls, Bit9/ Carbon Black Application Whitelisting, Microsoft Azure Security & Compliance Center, Microsoft Cloud App Security, Windows Defender and Defender ATP.

This is a hands-on role which spans responsibilities for security architecture, design, implementation, and support. This individual has responsibility for improving security policies and configuration of our current systems, as well as working with the team to improve their overall effectiveness. This individual will participate in product selection for net new and replacement systems, as well as design and produce reports to track threats to our network. The role requires knowledge and experience working with the security systems used by the firm.

Primary Responsibilities:

• Hands-on approach when it comes to implementing and supporting the firm's security systems
• Define key threats to critical data and systems; create policies and engineer systems to reduce threats and risk
• Research and develop future road maps, strategies, and technical visions to support security program
• Assist in performing product evaluations and recommend products/services for data security
• Responsible for identifying and protecting against emerging threats associated with risks in the cloud and third-party vendor systems
• Management, troubleshooting, and monitoring of firewalls, intrusion detection systems, enterprise anti-virus systems, enterprise log management system, and data loss prevention system
• Create and compile enterprise-wide security reporting at set intervals to management
• Respond to security incidents 24 x 7
• Monitor security audit and intrusion detection system logs for system and network anomalies, investigate and/or escalate security violations, and document and report events
• Ensure environment is stable and in compliance with corporate security policy and industry standards
• Work closely with Risk Management, Legal, and Compliance teams to create cohesive security policies
• Work with IT Risk Management and Security team on definition and implementation of security policies
• Create and maintain documentation for supported systems, including DR/BCP planning
• Participate in scheduled off-hours configuration changes, service outage upgrades, and DR/BCP testing
• Perform and/or manage internal and external vulnerability scanning and remediation
• Identify and support quality improvement initiatives

• Undergraduate degree in technology discipline or equivalent experience
• 5+ years of information systems security experience
• 5+ years experience in the financial services industry preferred
• CISSP preferred
• PCNSE preferred

• Proactive approach to learning and educating others about cloud threats
• Excellent, proven troubleshooting skills
• Strategic thinking and roadmap design for multi-year model.
• Ability to work with other teams within Infrastructure, such as Network, DevOps, and Architecture to create comprehensive and holistic security solutions
• Palo Alto (PCNSE), Cloud Security (CCSP) and other related vendor certifications a plus.
• Experience with Microsoft Azure Security & Compliance Center, Microsoft Cloud App Security, Windows Defender and Defender ATP preferred
• Experience working with IP networking, networking protocols and understanding of security related technologies including encryption, IPsec, PKI, VPNs, firewalls, proxy services, DNS, electronic mail and access-lists.
• Experience with Palo Alto and Checkpoint firewall management and associated system managers
• Experience with TippingPoint IPS and associated system mangers, or other IDS/IPS products
• Experience with Bit9/ Carbon Black Application Whitelisting product
• Experience analyzing Firewall and IPS logs, as well as Windows Event and Security logs
• Experience working with enterprise log management software SIEM (preferably LogRhythm)
• Experience with data loss prevention and eDiscovery technologies (preferably Symantec DLP)
• Experience working with internal IT Development or IT Architecture teams to develop secure coding practices and educate Developers a plus
• Experience working within the banking/finance/regulatory industry
• Experience working with relevant operating system security (Windows, Linux, etc.)
• Experience working with teams outside of IT to create effective security policies
• Strong written and verbal communications and interpersonal skills
• Must exhibit a team-oriented approach
• Engineering level knowledge of the following areas:
  
  
  • Active Directory and Group Policy structure and management.
  • Authentication solutions (ex. RADIUS, TACAS)
• Experience with Security and System Forensic tools and methodologies.
• Experience designing and implementing endpoint protection (i.e. Symantec Endpoint Protection, Bit9, Windows Defender)
• Understanding of IT Management processes such as ITIL.
  
  #LI-MC1