SourcePro Search is conducting a search for a Senior System Security Engineer with 10-15 years (required) of experience in Los Angeles, CA. This role offers a competitive base and excellent benefits and culture in a well known and highly ranked law firm.
The ideal candidate will make things more secure by protecting system boundaries, keeping computer systems and network devices hardened against attacks, and securing highly sensitive data. Qualified candidates will have a background in cybersecurity or systems engineering.
What You'll Do:
Engineer, implement, and monitor security measures for the protection of computer systems, network, and information;
Integrate security tasks and activities into system development methodologies (e.g. planning, design, implementation, operations, maintenance, and disposal); and
Identify and verify security requirements are met throughout the process.
Prepare and document secure system development standard operating procedures and protocols;
Perform vendor technical solution acceptance verification and validation;
Develop technical solutions and new security tools to help mitigate security vulnerabilities and automate repeatable tasks;
Assess gaps in existing policy and propose amendments to existing policy or new policy to address these gaps;
Participate in the development and implementation of enterprise-level technical standards and procedural directives and other guidance materials;
Write comprehensive reports including assessment-based findings, outcomes and propositions for further system security enhancement;
Participates in the development, implementation and review of security controls for the systems under their purview;
Coordinates with system owners to resolve security issues through system lifecycle; and
Provides guidance and support to self-testing, security control assessment, preparation of remediation plans, and development of continuous monitoring plans.
What You'll Bring:
Minimum of 10 years’ experience (preferred); (8 years of experience with cybersecurity or information assurance);
BS degree in Computer Science or related field (required);
Thorough understanding of the latest security principles, techniques, and protocols;
Detailed technical knowledge of network, database, and/or operating system security;
Hands on experience in security systems, including vulnerability management, identity and access management, security risk assessments, application testing, etc.;
Experience with network security, networking technologies, and network monitoring tools;
Intermediate understanding of Active Directory components and structures; and
General understanding of networks, protocols in relation to Windows Operating systems.