A TekStream client, a healthcare technology company located in Atlanta, GA, has an immediate need for a Cybersecurity Operations Engineer for a long-term (1 year+) and fully remote contract position. Candidates must be able to work the EST business day (Monday-Friday, 8:30-5:30), and must be able to work directly on a W2 of TekStream Solutions (no C2C candidates).
Responsibilities:
- Develops creative technical and procedural solutions to effectively secure information systems without introducing significant operational overhead
- Aids in the development of architectural designs, and reviews new product implementations
- Assists with troubleshooting and performs research to identify the cause of issues and identify potential solutions
- Provides mitigation recommendations to reduce identified security risks
- Establishes and enforces security best practices, protection objectives, process improvements and effective security controls with associates and customers
- Assists in security incident response and documentation
- Assesses the overall security risks to the system by understanding system security vulnerabilities and associated threats
- Analyzes impact of software installations, configurations and infrastructure modifications to minimize system downtime when recommending security remediations
- Assists in mentoring junior team members on security operations processes and procedures
- Advises associates of the security features and procedures used in their products and systems
- Performs regularly scheduled security reviews (e.g., technology, operations and personnel)
- Participates in annual reviews of policies, procedures and security controls in support of security framework assessments
Qualifications:
- Technically proficient knowledge of network and security architecture principles, enterprise-grade firewall and intrusion detection and prevention systems fundamentals, endpoint security systems and other security protective/detective systems
- Knowledge of cybersecurity operation processes and essential security program functions that include event monitoring and security information and event management technologies, risk management, vulnerability scanning and management, access controls and authentication measures
- Ability to connect threat analysis to risk management principles to formulate security priorities and provide business level risk decision support
- Ability to gather, analyze and interpret business drivers and developing practical security solutions that provide value to security and support the business
- Ability to work with customers to understand and respond to their information security needs and/or concerns, represent our security program and how the program protects the customers’ data, and discuss the roadmap designed to continuously improve our security posture
- Ability to present technical information to technical and nontechnical audiences using collaborative systems and presentation software
- Ability to quickly learn and understand complex environments, independently reaching stretch goals, and continually improving knowledge and capabilities
- Ability to be on-call and available when work requires
Experience Required:
- 8 years in Information Security
- 5 years implementing and enforcing security directives, policies, publications and regulations
- 5 years with software and security architectures and has a clear understanding of security protocols and standards
- 3 years in networking concepts and services
- 5 years with IT system, local and wide-area network administration, telecommunications, and/or security protection technologies including multi-factor authentication and single sign-on technologies
- 5 years conducting risk assessment work, IT auditing of compliance requirements, or framework gap analysis
- 5 years with multiple cloud provider security standards and cloud administration capabilities
