Security Engineer

Twitter Facebook
Provo, UT
Job Type
Direct Hire
Nov 20, 2017
Job ID
Security Engineer
Job Summary 
The responsibilities of this position include security engineering: production support, development, system and software engineering, system testing, and maintenance with the emphasis on promoting and maintaining information security architectures, systems and applications.  This position designs/engineers systems to help with managing, processing, and granting access; performing vulnerability assessments; automating and orchestrating security operations tasks; forensic investigations; intrusion detection/prevention systems; and security data analytics systems.  This position also works to develop solutions to support the security incident monitoring and response for the company.  Depending on the employee’s education and experience, this position may also perform business consultation, evaluation of vendors and commercial solutions. The security engineer also provides leadership and guidance to other employees.
  • Experience with programming and other domain-specific languages (specifically Python, Bash, SQL, JavaScript, PowerShell). Experience with common version control systems (e.g. Git).
  • Hands on experience with security systems, including firewalls, intrusion detection/prevention systems, anti-virus software, advanced endpoint protection, authentication systems, log management, security event management, content filtering, data loss prevention, data encryption, computer forensics etc.
  • Experience with log management tools and data analytics platforms such as Elastic (ELK), Splunk, etc. 
  • Experience with web related technologies (Web applications, Web Services, Service Oriented Architectures) and of network/web related protocols. Experience with Application Programming Interface (APIs) development and integration (REST, SOAP).
  • Experience with developing or implementing open-source/third-party tools to assist in detection, prevention and analysis of security threats
  • Experience with common network security solutions, networking protocols, networking technologies and network monitoring/scanning tools. 
  • Experience in planning, researching and developing security policies, standards, procedures and runbooks for security operations.
  • Experience in developing secure networks, systems and application architectures. Experience in identifying and defining system security requirements.
  • Experience developing technical solutions and new security tools to help mitigate security vulnerabilities and automate security operations tasks.
  • Experience in systems administration and OS security hardening of multiple OS platforms (Red Hat Linux, Windows).
  • Familiarity and experience with AWS and cloud platform as a service (PaaS) security
  • Experience writing comprehensive reports including assessment-based findings, outcomes and propositions for further system security enhancements
  • Familiarity and experience with standards and compliance frameworks including PCI, ISO, SANS, OWASP, NIST etc.
  • Experience in integrating security systems with other technologies and systems in an organization
22 vacation days, 12 sick days, 12 calendar holidays, a pension, 401k matching, no-cost retirement savings program, and excellent medical/dental benefits.