Laureate Education, Inc. (NASDAQLAUR) is a leading provider of post-secondary education on an international scale. Laureate offers high-quality undergraduate, graduate, and specialized degree programs in a wide range of academic disciplines that result in strong employment and social mobility outcomes for its students. The Company is dedicated to being a Movement of change in the higher education industry and the communities that it serves, with a focus on preparing its students to engage and positively contribute to their communities and to the world. The Sr. Security Engineer should be a technical and proficient with Information Security practices. The engineer will be a self-driven technologist who works closely with others within the Laureate Security Services department as well as members of other Information Technology departments and business stakeholders to design, build, operate and monitor bleeding-edge security infrastructure, platforms, applications and tools to meet strategic and tactical security objectives as outlined in Laureate-s security information program. Responsibilities Assist in the development of technology security requirements and standards aligned to business strategy, security policies and objectives, and technology development and operations processes Provide evaluation, analysis, development and implementation of IT Security systemstechnologies across all security domains, including the necessary documentation to ensure manageability of the systems post implementation Provide security support expertise and implement for emerging technologies to include cloud and mobile Enforce compliance with set controls, standards, policies and procedures while carrying out IT activities Search for and analyze security technology to reduce risks in every information security segment. Research and suggest measures to improve IT related procedures, operations, processes and systems, specific to information security concerns, throughout organization providing input for the decision-making process Perform security risk analysis for current and new systems and recommend solutions for reducing exposure areas Implement security program plans from the strategic unit of the security organization. Support and provide consultancy for audit compliance actions. Implement periodic, on-demand project audits plus vulnerability analysis Support initiatives to protect high-value targets to include multi-factor authentication and User and Entity Behavior Analytics (UEBA) Develop and maintain documentation related to security processes, systems, procedures and events. Responsible for the analysis of the system logs in order to identify suspicious activities and take appropriate action Accountable for assisting infrastructure and application teams with prioritization of patches and security fixes following the vulnerability classification program Coordinate with different groups to ensure that all application, network and OS environments are patched on a regular basis Provide recommendations to mitigate risks through the appropriate use of technical, procedural, and administrative controls in accordance with legal and regulatory compliance standards and established industry best practice Serve as an information security engineer to deliver guidance and awareness of security standards and requirements in cross-functional technology project settings and through development and delivery of formal and informal information security training Analyze system logsinteract with external SOC to identify suspicious activities and take appropriate action Review alerts and data from sensors and document formal, technical incident reports Create tools for regular reporting of the security program, activities and progress across the organization Bachelor-s Degree in Computer Science or Engineering, Management Information Systems, or a related technical field 7+ years of combined hands-on experience in technical security engineering, research andor consulting 7+ years of networking background preferred experience with Cisco technologies Demonstrated ability to build and operate technical security solutions at a global enterprise level Strong understanding of enterprise, network, systemendpoint, and application-level security issues and risks Strong understanding of TCPIP networking comfort working with Linux and Microsoft Windows-based system platforms Demonstrated experience with the following types of security technologies distributed denial of service (DDoS) tools and services, network access control systems, network and application firewalls, IDSIPS systems, data loss prevention, web proxy, vulnerability assessment platforms and tools, antivirus and malware prevention and analysis tools, and log management, correlation and security information and event management platforms and tools. Understanding of network, system and application hardening techniques, processes, tools, standards and benchmarks Experience with automating and scripting tasks in engineering or security incident handling scenarios 6-year degree or job-related certification required with advanced degree or additional certification preferred. (eg CISSP, CISA) Strong Cloud Security knowledge preferred with AWS and Azure