We are seeking an IT Security Engineer for a contract-to-hire role in Englewood, CO. This role will be onsite in the south Denver office Monday-Friday during normal business hours (no remote options) and will be responsible for:
- Managing security-centric infrastructure components such as IPS, IDS, DLP, AV and various scanning tools.
- Identifying, tracking, and helping remediate vulnerabilities and other security concerns.
- Reviewing and providing system security requirements/guidance on new initiatives, applications, systems and services.
- Participating in incident response activities.
- Intrusion detection/prevention (Palo Alto, TippingPoint, McAfee, Checkpoint, etc.)
- Database security (Imperva, etc.)
- Data encryption solutions (Thales / Vormetric, etc.)
- Network proxies (Zscaler, McAfee Web Gateway, etc.)
- Data loss prevention (DLP) (Symantec, McAfee, Zscaler, etc.)
- Network and/or desktop encryption (PGP, Gemalto / SafeNet, Thales / Vormetric, etc.)
- SSL decryption (Zscaler, F5, etc.)
- Application security (F5, Okta ASA, Beyond Trust, etc.)
- Cloud access security brokers (CASB) (Palo Alto, McAfee Skyhigh, Zscaler, etc.)
Additional Desired Skills and Experience:
- Log collection and aggregation (Logz.io, ArcSight, McAfee / Nitro, Splunk, IBM/QRadar, etc.)
- Public key infrastructure (PKI)
- Network Firewalls (Check Point, Fortinet, Palo Alto, Cisco, Juniper, McAfee, TippingPoint, etc.)
- Knowledge of security technologies such as SIEM, Firewall/NGFW, EDR / DLP, UEBA and hybrid/Cloud Security environments
- Experience with automation (Ansible, Chef, Puppet, python)
- Superior communication skills with the ability to ask questions, escalate roadblocks early, and interact effectively at multiple levels in the organization
- Excellent verbal and writing skills and the ability to communicate effectively with all levels
- Experience migrating applications from the enterprise to public cloud providers (e.g. Amazon, Google, or Microsoft)
- Good understanding of private and public cloud design considerations and limitations in the areas of virtualization and global infrastructure, distributed systems, load balancing and networking, and security.
- Working knowledge and experience with project and portfolio management tools, preferably Service Now, Microsoft Project, and/or Jira
EDUCATION & WORK EXPERIENCE REQUIRED
- 8+ years of relevant professional system security engineering or administration experience, with significant exposure to a variety of technologies and domains
- 5+ years of advanced working knowledge of Windows and Linux operating systems
- Experience automating server configurations to include standard build installations and system security hardening
- Experience writing standard operating procedures, system requirements, and other technical documents
- Experience centrally monitoring systems for alerts and incident management functions; preferable with Amazon CloudWatch
- Scripting language experience (Python, NodeJs, etc.), Strong working knowledge of automation tools such as (Puppet, Jenkins, and Chef).
- Bachelors degree required (technical bachelor degree is preferred).
- Preferred security certifications:
- Preferred vendor certifications:
- Palo Alto
- Zscaler
- McAfee
- F5
- Checkpoint
This contract-to-hire role is located in Englewood, CO. This role will be onsite in the south Denver office Monday-Friday during normal business hours (no remote options) and will pay $140,000 per year upon conversion to full time employee after the contract duration.