Security Engineer: Reporting to the Sr. Manager of Engineering, the Sr. Security Engineer is a member of the IT Information Security department within the Information Technology organization. The Sr. Security Engineer should be a technical and proficient with Information Security practices. The engineer will be a self-driven technologist who works closely with others within the Security Services department as well as members of other Information Technology departments and business stakeholders to design, build, operate and monitor bleeding-edge security infrastructure, platforms, applications and tools to meet strategic and tactical security objectives as outlined in the security information program. The Sr. Security Engineer will work with technical managers, software development, and IT operations staff to mitigate or remediation vulnerabilities and manage technology risks across the enterprise. The Sr. Security Engineer will be responsible for the evaluation and implementation of a broad range of security technologies, processes and best practices. This calls for a resourceful engineer with the ability to interpret complex information and develop solutions to address security concerns in a timely manner. This role will also contribute to strategic information security operations and planning. Major Responsibilities Assist in the development of technology security requirements and standards aligned to business strategy, security policies and objectives, and technology development and operations processes Provide evaluation, analysis, development and implementation of IT Security systems/technologies across all security domains, including the necessary documentation to ensure manageability of the systems post implementation Provide security support expertise and implement for emerging technologies to include cloud and mobile Enforce compliance with set controls, standards, policies and procedures while carrying out IT activities Search for and analyze security technology to reduce risks in every information security segment. Research and suggest measures to improve IT related procedures, operations, processes and systems, specific to information security concerns, throughout organization providing input for the decision-making process Perform security risk analysis for current and new systems and recommend solutions for reducing exposure areas Implement security program plans from the strategic unit of the security organization. Support and provide consultancy for audit compliance actions. Implement periodic, on-demand project audits plus vulnerability analysis Support initiatives to protect high-value targets to include multi-factor authentication and User and Entity Behavior Analytics (UEBA) Develop and maintain documentation related to security processes, systems, procedures and events. Responsible for the analysis of the system logs in order to identify suspicious activities and take appropriate action Accountable for assisting infrastructure and application teams with prioritization of patches and security fixes following the vulnerability classification program Coordinate with different groups to ensure that all application, network and OS environments are patched on a regular basis Provide recommendations to mitigate risks through the appropriate use of technical, procedural, and administrative controls in accordance with legal and regulatory compliance standards and established industry best practice Serve as an information security engineer to deliver guidance and awareness of security standards and requirements in cross-functional technology project settings and through development and delivery of formal and informal information security training Analyze system logs/interact with external SOC to identify suspicious activities and take appropriate action Review alerts and data from sensors and document formal, technical incident reports Create tools for regular reporting of the security program, activities and progress across the organization Experience Bachelor's Degree in Computer Science or Engineering, Management Information Systems, or a related technical field 7+ years of combined hands-on experience in technical security engineering, research and/or consulting 7+ years of networking background; preferred experience with Cisco technologies Demonstrated ability to build and operate technical security solutions at a global enterprise level Strong understanding of enterprise, network, system/endpoint, and application-level security issues and risks Strong understanding of TCP/IP networking; comfort working with Linux and Microsoft Windows-based system platforms Demonstrated experience with the following types of security technologies: distributed denial of service (DDoS) tools and services, network access control systems, network and application firewalls, IDS/IPS systems, data loss prevention, web proxy, vulnerability assessment platforms and tools, antivirus and malware prevention and analysis tools, and log management, correlation and security information and event management platforms and tools. Understanding of network, system and application hardening techniques, processes, tools, standards and benchmarks Experience with automating and scripting tasks in engineering or security incident handling scenarios 4-year degree or job-related certification required with advanced degree or additional certification preferred. (eg CISSP, CISA) Distinguishing Characteristics Excellent communication skills. Propensity and willingness to learn new technologies. Demonstrates sense of urgency Self-starter, able to work in a fast-paced environment and comply with tight deadlines. Detail-oriented, organized and analytical approach to performing work Has good interpersonal skills and is a team player EEO EmployerApex is an Equal Employment Opportunity/Affirmative Action Employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, age, sexual orientation, gender identity, national origin, disability, protected veteran status, or any other characteristic protected by law. Apex will consider qualified applicants with criminal histories in a manner consistent with the requirements of applicable law. If you have visited our website in search of information on employment opportunities or to apply for a position, and you require an accommodation in using our website for a search or application, please contact our Employee Services Department at 844-463-6178