ShorePoint, LLCRemote
Senior System Security Engineer
United States of America
Full Time
4 hours ago
No H1B
Key skills
Linux operating systemsMicrosoft Windows securityActive Directory securitySystem hardeningWindows security stackWindows Event LogsSysmonSIEM systemsInfrastructure hardeningOn-premises serversCloud-based serversNetwork devicesHypervisorsNetwork engineeringFirewallsVLAN segmentationAccess control lists (ACLs)Python scriptingBash scriptingCloud environmentsAWSAzureGCPContainerization technologiesDockerKubernetesNetwork securityTCP/IP protocolsEncryptionAuthentication systemsSecurity frameworksPCI-DSSSOC 2NISTISOVulnerability scanning toolsTenable NessusNetwork toolsCisco FMCExtrahopSIEMSplunkEDRTrellixPythonBashActive DirectoryLeadershipCommunicationCritical ThinkingNetwork Security
About this role
ShorePoint, LLC is a fast-growing cybersecurity services firm dedicated to protecting critical infrastructure for both private and public-sector clients. They are seeking a Senior System Security Engineer to design, implement, and manage security strategies to safeguard systems against evolving threats while ensuring compliance and operational continuity.
Responsibilities:
- Develop security solutions and ensure hardening of network, Linux-based and Windows systems
- Diagnose complex security issues and deliver timely, effective solutions
- Secure cloud environments such as AWS, Microsoft Azure and GCP, as well as containerized platforms such as Docker and Kubernetes, ensuring systems meet DISA-STIG standards
- Serve as the sole System Security Engineer in a hands-on capacity, proactively maintaining system and security integrity and driving efforts forward independently
- Work directly with other security team members to ensure uptime and compliance of security tools and processes
- Report security findings, communicate risk and collaborate with teams and leadership
Requirements:
- 10+ years of relevant work experience. Associate's degree substitutes for 2 years; Bachelor's degree substitutes for 3 years; Postgraduate degree substitutes for 6 years
- Extensive hands-on experience with Linux operating systems such as RHEL, CentOS and Ubuntu, including system internals, administration, template hardening and troubleshooting
- Extensive hands-on experience with Microsoft Windows security, including Active Directory security, system hardening and configuration, Windows security stack and logging and monitoring using Windows Event Logs, Sysmon and integration with SIEM systems for threat detection
- Hands on experience with infrastructure hardening and configuration of on-premises and cloud-based servers, network devices and hypervisors, including secure network engineering using firewalls, VLAN segmentation and access control lists (ACLs)
- Advanced proficiency in scripting languages such as Python and Bash to automate tasks and build security tools
- Experience securing cloud environments such as AWS, Azure and GCP and containerization technologies such as Docker and Kubernetes
- Strong understanding of network security, including protocols such as TCP/IP, firewalls, encryption and authentication systems
- Proficiency with security frameworks and compliance standards such as PCI-DSS, SOC 2, NIST, ISO
- Proficiency with for vulnerability scanning tools (Tenable Nessus), network tools (Cisco FMC, Extrahop and others), SIEM (Splunk), EDR (Trellix) and other various toolsets
- Must have excellent verbal and written communication skills to effectively report security findings, communicate risk and collaborate with diverse teams and leadership
- Proven ability to analyze complex requirements and translate them into clear, actionable tasks and processes through critical thinking
- Applicants must currently be a U.S. citizen and eligible to obtain and maintain a security clearance, in compliance with federal contract requirements
- Industry recognized certifications