Senior Systems Engineer - Threat and Vulnerability Management (Remote)

The ODP Corporation is a leading provider of products and services through a B2B distribution platform. They are seeking a Senior Systems Engineer to manage the Global Information Security Operations Center and Threat and Vulnerability Management group, focusing on securing the computing environment and leading penetration tests and ethical hacking efforts.

Responsibilities:

• Manage, implement and monitor a strategic, comprehensive enterprise-wide information security monitoring and operation program to ensure the integrity, confidentiality and availability of information owned, controlled or processed by the organization
• Design, develop and recommend security standards and implement them
• Manage information security activities related to the protection of PCI and PII information
• Ensure that Office Depot follows all applicable regulatory and compliance directives and policies regarding securing and monitoring of PCI and other sensitive information
• Provide expertise to executive management on a broad range of information, security standards and best practices
• Provide strategic and tactical security guidance for key IT projects, including the evaluation and recommendation of technical controls
• Liaise with the Information Security Architecture & Engineering team and the Information Security Information Assurance team
• Liaise between the information security team and corporate compliance, audit, legal, Security/Safety and HR management teams as required
• Create and facilitate the information security risk assessment process, including reporting and oversight of remediation efforts to address negative findings and management of outside assessors
• Manage security incidents and events to protect corporate IT assets, including intellectual property, fixed assets, and the company's reputation
• Coordinate the use of external resources involved in the information security program, including managing external resources
• Develop business-relevant metrics to measure the efficiency and effectiveness of the program, facilitate appropriate resource allocation, and increase the maturity of the security program
• Direct the implementation of security technologies including (a) evaluating security products; (b) installing security products and making necessary system changes; (c) developing rollout plans and communications to Office Depot’s staff; and (d) training and coordinating with other IT departments

Requirements:

• Bachelor's degree or equivalent experience
• Preference for a degree in Computer Science, Electrical or Software Engineering, or similar technical field of study
• Minimum Years of Experience: 4
• Expertise in generic information security standards and experience in deploying some set of these standards like PCI, SOX, Sans and ISO 27001-27005
• Vendor training and certifications (e.g., CISSP, CISM, CISA, CEH) are required
• Thorough understanding of following technologies/systems: Networking; Firewall (Checkpoint); NIPS, network monitoring (Checkpoint, AirDefense, SNORT); HIDS (Tripwire); VPN (Cisco); Proxy (Bluecoat); Spam appliance (Postini); Server architectures including hardening frameworks; Endpoint firewall, antivirus, patching, and client hardening frameworks; End user authentication (Microsoft Azure), PKI (CAC, Microsoft), Enterprise tools, event management (Qualys, Splunk Enterprise, Microsoft Defender); Application related – SQL injection, cross site, mobile, database, scripting languages, Web (Apache, IIS, Tomcat, WebSphere). Bugcrowd. Email anti-phishing (Proofpoint)
• Excellent written and oral communication skills with the ability to effectively communicate with information technology professionals as well as senior management and auditors, assessors, and inspectors
• Critical thinkers with strong problem-solving skills
• Thorough project management skills
• Ability to lead and motivate cross-functional, interdisciplinary response teams
• High level of personal integrity, and the ability to professionally handle confidential matters and exude the appropriate level of judgment and maturity
• High degree of initiative, dependability, and ability to work with little supervision