Enterprise IS Security Engineer
United States
Full Time
3 hours ago
H1B Sponsor Likely
Key skills
CActive DirectoryProject ManagementCommunicationZero Trust
About this role
Pyxus International, Inc. is seeking an Enterprise Security Engineer to join their growing security team. This role is responsible for designing, implementing, and maintaining security measures to protect systems, networks, and data from cyber threats, as well as ensuring compliance with industry standards and regulations.
Responsibilities:
- Implement, manage and monitor M365 and Cloud services security tools and controls
- Implement, manage and monitor appropriate identity and access management tools and controls
- Implement, manage, and monitor security measures that support Zero Trust Architecture
- Implement, manage and monitor Endpoint Security systems (application whitelisting, device control, Anti-Virus, encryption)
- Create, maintain and implement Active directory Group Policy Objects related to cybersecurity
- Management over the patch rollout system and process
- Manage the end user security awareness training platform
- Management of Password Management tools
- Architect and implement enhanced Domain Security structures
- Enhance and maintain Pyxus Cybersecurity Framework plans and documentation
- Ensure Security/Cybersecurity best practices are being followed
- Implement, manage and monitor enterprise IDS and IPS systems
- Manage Internal Certificate infrastructure
- Manage External Certificates
- Manage monthly network vulnerability tests and the remediation process
- Assist as required regarding any legal or audit issues requiring IS resources for investigative or forensic data analysis efforts
- Implement, maintain and monitor Data Loss Prevention tools
- Work with application development teams to ensure application security
- Monitor Internet Security sites for information on new threats (Microsoft, Cisco, CERT & SANS)
- Keep abreast of emerging IS security threats
- Keep abreast of best practices and new technologies for mitigating IS security threats
- Provide upfront cybersecurity guidance and input into IS projects and policies so that security is not an afterthought
- Contribute content to cybersecurity updates for C-level executives
- On call 24X7 for suspected intrusions and incident response
Requirements:
- 4 year Degree in Information Technology or Business related field
- Certification in industry recognized cybersecurity qualifications (e.g. CompTIA Security+, CISSP)
- Minimum of 4 years experience in Cybersecurity
- Strong working knowledge of TCP/IP, DNS, Active Directory, IP Address Management
- Working knowledge of Firewalls (ISA, CISCO ASA, Palo Alto)
- Experience with Endpoint Security and SIEM systems
- Experience with Infrastructure related Security tools and procedures – perimeter and internal
- Experience with securing Cloud based workloads, services and resources
- Strong Knowledge of encryption and certificate infrastructure
- Excellent Oral and Written Communication skills
- Excellent Documentation skills
- Consistency and attention to detail
- Ability to work well with others while maintaining a high degree of confidentiality, honesty and integrity
- Able to do international and/or domestic travel as required
- Project Management Experience beneficial