Cyber Engineer opportunity in Cary, NC! in Raleigh, NC at Vaco

Date Posted: 1/30/2020

Job Snapshot

Job Description

We are looking for a motivated and talented Security Engineer to join our client's team in Cary, North Carolina. The ideal candidate is an enthusiastic, multi-tasker who feels comfortable in a challenging, fast-growing environment. You'll be participating in the research, development and implementation of technical security programs and solutions necessary to us and our clients. The role will have a vast variety of duties including conducting risk assessments, drafting of policies, implementing external solutions, responding to client security questionnaires, participating in security audits, compliance and any other security-related tasks. Our work environment is lively, fast-paced, exciting, and flexible. We'll provide you with the tools, resources, and outstanding leadership to take your career to the next level.

If you're looking for an invigorating workplace and aren't afraid of a "work hard, play hard" mindset, we want to meet you!

Responsibilities:
  • Development and implementation of security-related policies and procedures
  • Selection and evaluation of security solutions
  • Conduct regular internal reviews and audits
  • Design and implementation of controls that mitigate identified risks and compliance goals
  • Incident response plan, including development, implementation, and annual test exercises D
  • Development of security training and awareness program
  • Coordinating with third-party vendors to implement regular pentesting and vulnerability management
  • Participate in the implementation and development of SIEM monitoring, IDS/IPS and logging tools
  • Work with SOC2 and ISO auditors to complete annual security audits and maintain certifications
  • Apply security engineering best practices according to well-known industry standards (NIST 800, SANS…)
  • Communicate with current and prospective clients to address security-related concerns or solutions.
  • Constantly work on growing your knowledge on relevant topics, product, solutions and best practices.
Qualifications:
  • Bachelor's degree in computer science, information systems or similar
  • More than 5 years of experience in security, compliance, risk management, technical security implementations
  • Demonstrated expertise in providing security-focused solutions for the enterprise
  • Active CISSP certification
  • Experience with SOC2 Type II and ISO 27001 certification audit processes
  • Strong understanding of security compliance and privacy regulations (GDPR, PCI…)
    Strong analytical skills
  • English fluency, both written and verbally, is a must
  • Good communication and attitude
  • Strong client-facing skills and ability to address audiences of varying technical levels
  • Attention to detail and accuracy
  • Ability to collaborate in a team environment across multiple time zones
  • Other industry-accepted certifications (SANS, CISA, CISM…)
  • Ability to quickly learn new technologies
  • A self-starter comfortable working independently with minimal supervision
  • Able to take ownership of projects and propose innovative solutions to maximize productivity

Employee perks:
  • Comprehensive medical, vision, and dental coverage
  • 401(k) with matching contribution
  • Flexible vacation and PTO policies
  • Monthly gym membership
  • Commuter perks
  • Monthly group activities