Security and Compliance Engineer | 904628

Revel IT

Apply Now

Our direct HealthTech client is seeking a Security and Compliance Engineer for their NYC office. The role is responsible for supporting, administering, maintaining, and optimizing infrastructure hardware & software. They will also participate in planning and executing IT security strategy including vulnerability management, security policy development, and awareness training development. Our ideal candidate must be a problem solver with a lot of initiative and excellent, well rounded, technical knowledge.
 
**Estimated salary: $165K/yr.

RESPONSIBILITIES:

  • Analyze systems and seek improvements on a continuous basis
  • Report possible threats or software issues within organization infrastructure, on endpoints, or cloud-based assets
  • Conduct testing and deliver insightful reports based on findings
  • Recommend cost-effective solutions to resolve cybersecurity issues
  • Understand software, hardware and other technical needs while adjusting them according to our business environment
  • Develop and maintain best practices and security standards for the organization
  • Perform testing of company infrastructure and IP
  • Assist fellow employees with cybersecurity, software, hardware, or IT needs
  • Participate in maintaining compliance, change management, and the organization compliance program
  • Stay on top of industry standards and ensure complete compliance
  • Be a part of the SDLC by acting as an advocate for secure coding practices and working with engineering as a part of the release process

REQUIRED QUALIFICATIONS:

  • 7+ years in a cybersecurity related role
  • Experience with incident detection, response, and forensics
  • Experience with security platforms such as firewalls, SIEMs, EDR/XDR, MDM, NACs, DLP, pen testing tools and distributions (e.g., Kali, Parrot, or Arch Linux, Burpsuite, Metasploit) – Functional use and maintenance
  • Has a led a team of any size preferably in cybersecurity related projects
  • Experience and comfort with being the POC for security related business tasks (e.g. DDQs and data requests such as e-discovery)
  • Experience with vulnerability detection, testing, and mitigation (emphasis on testing)- Red or blue teaming experience a plus
  • Scripting experience in Python, JS, and PowerShell- Ruby, Node, or Go a plus
  • Experience with and strong knowledge of secure infrastructure architecture – Functional use and maintenance (e.g. Architecting, implementing, maintaining)
  • Experience with managing compliance such as HIPAA, PCI, SOC, or ISO – Experience in drafting policies a plus
  • Strong understanding of the NIST CSF or CISA Cyber Framework and best practices
  • Experience with code review
  • Strong attention to detail
  • Excellent communication skills
  • Strong critical thinking and problem-solving skills
  • Ability to prioritize projects
  • Experience with Office 365 and securing Microsoft platforms
  • Experience with and working knowledge AWS, web application architecture, and secure cloud
  • Experience using Governance, Risk, and Compliance platforms

PREFERRED QUALIFICATIONS:

  • Bachelor’s Degree in Computer Science, IT, or related field preferred but not required
  • Combination of CISM, CEH, OSCP, CySa+, PenTest+. or GSEC desired
  • CISSP and OSWP is a plus

Reference: 904628

Don’t meet every single requirement? Studies have shown that women and people of color are less likely to apply to jobs unless they meet every qualification. At Revel IT, we are dedicated to building a diverse, inclusive, and authentic workplace, so if you’re excited about this role, but your experience doesn’t align perfectly with every qualification in the description, we encourage you to apply anyway. You might be the right candidate for this or our other open roles!  

Revel IT is an Equal Opportunity Employer. Revel IT does not discriminate on the basis of race, religion, color, sex, gender identity, sexual orientation, age, non-disqualifying physical or mental disability, national origin, veteran status or any other basis covered by appropriate law. All employment is decided on the basis of qualifications, merit, and business need.

#gdr4900

Apply Now

  • Hidden
  • Max. file size: 128 MB.
  Apply with Google   Apply with Twitter
  Apply with Github   Apply with Linkedin   Apply with Indeed
  Stack Overflow