IT Security Engineer
Scottsdale, AZ, United States
Vaco is on the market with a local client to hire two IT Security Engineers. In this role, you will represent security and mitigate risks throughout the company to improve and mature our security posture. You will bring a well-rounded background in IT and a working knowledge of security best practices, security tools, and cloud and on-premises infrastructure. This client is going through a major transformation across their technology platforms and looking for the best and brightest to join the squad. Please reach out to the Vaco team immediately if you are interested in learning more.
You are:
A team steward, you are motivated to do your best work and strive to elevate the entire team
A creative problem solver, you are energized by roadblocks and have a knack for troubleshooting problems in stride and solving them in a calm, cool, and collected manner.
An efficient worker, you enjoy having multiples priorities at one time and multitask and without breaking a sweat.
What you'll do:
You proactively maintain our security stack (SIEM/EDR/NDR/VM/WAF/firewalls/email security/browser security/IAM/etc.) within security leadership objectives.
Actively resolve security alerts, meet internal SLA, and escalate as needed.
Initiate the creation, prioritization, and execution of security projects in alignment with leadership.
Follow the process of planning, executing, and documenting work.
Manage security vulnerabilities.
Participate in security incident management when needed.
Create and maintain security policies and procedures.
Integrate security with DevOps, data, developers, engineering, IT Operations, and fraud teams to incorporate security best practices
Perform audits and assess, document, and mitigate risk.
Keep up to date on current and emerging security technologies and threats. Champion where we can benefit from these new technologies.
Participate in 24/7 on-call rotation to support essential business clients and emergencies.
You should have:
5+ years in IT with 3+ years in an IT Security role.
Security+ cert (within 3 months of hire). CISSP or AWS Security is preferred.
Hands on experience with as much of the following specifics as possible:
Palo Alto firewall rules
Palo Alto Global Protect with Prisma
Imperva cloud WAF
Rapid7 SIEM and Vulnerability Management
Qualys inventory and VM
CrowdStrike
Darktrace threat detection and email filtering
Okta and/or Auth0
DLP
Browser security
SSL certs
Encryption
Microsoft GPOs
Active Directory (Azure AD)
Endpoint hardening to a standard
AWS security
Code vulnerability management
Web application security
PCI, CCPA, GDPR, Law 25 compliance