Job Information
IT1 Cyber Security Engineer in United States
iT1, a leading national technology solution provider headquartered in Tempe, AZ, is looking for a motivated Cyber Security Engineer to join our NOC team. iT1 has been recognized by the Phoenix Business Journal's "Best Places to Work" in Arizona for the past 11 years. This is a testament to the great team and culture we have here at iT1!
The Cyber Security Engineer will be a part of our managed services organization working directly with our internal engineering teams and customers. In this role, you will work in a fast-paced and challenging environment with the responsibility of security architecture, security systems/tools, and on-going administration.
Essential Functions:
Implement the cybersecurity requirements of networks, systems, and applications, documenting them in formal security engineering documents using the Risk Management Framework and supporting artifacts associated with risk assessments.
Work directly with system engineers, security leadership team, and management to deliver results for internal and Client environments.
Conducts periodic tests, and scans of networks and systems to find and mitigate vulnerabilities. This includes the monitoring and response to Intrusion Detection System (IDS), alerts from 3rd-party solutions, and anti-virus alerts.
Review threat and vulnerabilities identified from security tools and threat intelligence, understand vulnerabilities as they related to the platforms, and understand misconfigurations, and communicate results.
Provide subject matter expertise on architecture, authentication, and systems security.
Design, install and configure network security architectures, including firewalls, Demilitarized Zones (DMZ), router ACLs (Access Control Lists), and web content filters.
Design security controls appropriate for cloud environments (Microsoft365 and Azure-hosted solutions)
Applying security controls as part of zero-trust strategy
Hands on experience with vulnerability scanning tools (Tenable, Rapid7, etc.)
Work with existing security tools and vendors to assist with:
Assist in digital investigations for security incidents.
Assist in executing processes and activities within the security Incident response lifecycle.
Develop, test, document, employ and communicate threat hunting methodologies, findings, and outcomes and aid in development of metrics. This includes reports with varying levels of leadership.
Assist in threat hunting to identify, classify, prioritize, and report on cyber threats following industry best practices.
Author, update, and maintain SOPs, playbooks, work instructions.
Create reports on evaluations and recommendations.
Other duties as assigned.
Requirements
Bachelor's degree in a related field (Cybersecurity, Information Technology, etc.)
10 or more years of experience in cyber security
Industry certifications such as ITILv4, Security+, Network+, CISSP, CISM, CEH, or similar.
Proven experience in designing and implementing security solutions, including firewalls, IDS/IPS, SIEM, and endpoint protection.
Strong knowledge of security best practices, compliance standards, and industry regulations
Skilled communicator with presentation skills and the natural ability to explain complex concepts in a clear and concise manner, whether it’s to technical or non-technical audiences.
Strong leadership and team management skills
Experience working with clients and delivering security services within an MSSP or MSP environment.
Expertise in security incident response and vulnerability management
Ability to work in a fast-paced and dynamic environment, meeting client needs and deadlines
Understanding of Zero Trust methodologies
Must have some knowledge of Cybersecurity Maturity Model Certification (CMMC)
Experience deploying and managing NGFW and SASE solutions from OEMs such as Zscaler, Palo Alto Networks (Prisma Access, Prisma Cloud, XDR, XIAM), Cisco/Meraki, Microsoft (Defender, O365, Intune)
Scripting experience with PowerShell
Experience with LogicMonitor and other monitoring systems
Working Knowledge of one or more of the following cybersecurity standards would be preferable. NIST SP 800-171, NIST SP 800-53, and ISO 27001
Physical Demands may Include:
Sit at a computer for 8 hours per day
Keyboarding for 8 hours per day
Near Vision (working with small objects or reading small print)
Speaking (communicating information to clients/coworkers)
Hearing Requirements (In person speech, telephone, other sounds)
Job Location
Hybrid if local to the Tempe, AZ area
Remote if located outside of a reasonable commute
Timeline to fill: November 2024
Benefits
Insurance: Health Insurance, Vision, Dental, and Life Insurance
Leave and Holidays: Paid Vacation, Paid Holidays
Retirement: 401K Plan with company match (eligible after 1 year of employment)
In-house fitness center
*iT1 is an equal opportunity employer. Employment decisions are made without regard to race, religion, sexual orientation, gender identity, national origin, disability status, veteran status, or other characteristics protected by law.