Job thumbnail

System Engineer

TEKsystems

05/03/2021

Posting ID: JP-002081716

Full Time
Share:Facebook iconTwitter iconLinkedin icon

100% Remote Position (Must sit in EST or CST timezone) - 3 Year project

Description:

The Engineer – System Security is responsible for the security of the computer systems, storage arrays and networks that span both on premises and cloud installations. This role is highly collaborative in that this individual is expected to be able to work directly with a project manager and various technical teams to meet all goals and timelines. It is the primary duty of this engineer to identify, design and execute on security projects that improve detection and response capabilities across the footprint.

The engineer would participate on a team, and would take a system-by-system view of technology, use lab or test instances to determine the best security approaches for those systems, and drive implementation in the live/production instances of those systems through collaboration with and education of the engineers who run them. This individual will be asked to design, review, implement/deploy and in some cases remove security agents and patches from systems as well as document all resulting measures.

The Information security engineer should work in collaboration with multiple teams to achieve the following below.

What will you be doing?

Gap Analysis

• Research and investigate the potential impact of new threats and exploits & identify opportunities for mitigation

o Guides the various teams in examining and developing networks security solutions.

o Provides advice on vulnerabilities or potential vulnerabilities within architecture.

o Analyzes any security-related data from a wide range of security products and devices

 May conduct beta testing for new tools

 Suggests new data sources to enhance these toolsets.

o Creates security tools and processes for scanning, testing, monitoring, and reporting.

o Conducts log analysis and other network forensic investigations.

o Researches and investigates the potential impact of new threats and exploits.

• Works directly with a representative from the Information Security team toward examining and developing networks security solutions.

o Works with PM and business team on solutions implementation for these scenarios

o Organizes security research and documents all findings for the future review

• Conducts risk analysis and offers suggestions for remediation or mitigation.

Agent Deployment & Management

• Leads the deployment for all security tools and agents such as Tenable, Sentinel One and Splunk

• Documents the configurations and network designs to help in the effective execution of these deployments.

• Sponsors any type of exception for systems that cannot be managed through these agents

• Works directly with the project manager assigned and business teams on scheduling

• Ensures 100% compliance by delivery date

Patch Deployment & Management

• Manages the deployment of WSUS patches and framework for all Windows systems in Production Technology.

o Works with all teams within Production Technology to ensure Windows systems that can be automatically patched are set to do so at some predefined schedule

o Will require engaging with customer groups for automatic patching

• Oversees the execution and delivery of RPMs or security patches for Linux environments via Satellite or other appropriate repos.

o Works with vendors to ensure their “appliance” Linux machines are patched on a regular cadence.

• Ensure virtualization infrastructure (i.e. VMware, Docker, etc.) are patched against critical bugs.

• Conducts thorough gap analysis for additional systems and applies recommendations (i.e. – implements IP Tables based FW for ‘x’)

• Responsible for all zero-day patches.

• Documents the configurations and network designs to help in the effective execution of these deployments.

• Works directly with the project manager assigned and business teams on scheduling

• Ensures 100% compliance by delivery date (assume quarterly patching for now) for in-scope systems.

• Works with their PSC peers to ensure that base images used by the rest of Production Technology are kept up to date on relevant patches and security agents.

• Partners with the database team to ensure their systems are kept current with vendor supplied patches and that operating system patches don’t cause functional impacts

• Ensure storage solutions from vendors like NetApp, OpenDrives, and Hitachi are kept up to date with relevant OS and security patches.

• Ensure hardware in the environment is kept at a supported and secure baseline.

This team is open to having candidates we are strong in one of the top skills than others. Example - if there is someone with scripting and automation experience and another candidate who is stronger with OS's they are open to building their team out with different strengths.

Skills:

linux, windows, systems engineering, powershell, automation, scripting, python, windows server, ansible, jenkins, bash

Top Skills Details:

Experience as a Windows & Linux Systems Engineer (environment is 60/40 Windows/Linux with Windows 2000-current and LinuxAS21 all the way up to RHEL8)

Scripting experience - ability to write, edit, modify scripts (Powershell, Python or Bash) - will be needed to write scripts from scratch

Experience with automation tools (Ansible or Jenkins) they use Ansible as tool of choice for deployments

Additional Skills & Qualifications:

• Demonstrated mastery of Windows and Linux (CentOS, RHEL, or Ubuntu) operating systems

• Direct experience with anti-virus software, intrusion detection, firewalls and content filtering

• Demonstrated deployments using Ansible/Chef/Puppet and Jenkins

• Knowledge of modern risk assessment tools, technologies, and methods

• Experience designing secure networks, systems, and application architectures both in the cloud and on premises

• Knowledge of disaster recovery, computer forensic tools, technologies and methods

• Experience planning, researching and developing security policies, standards and procedures

• Familiar with ticketing systems, such as Service NOW and Jira

• Works with collaborative tools like Slack and Confluence

• Must possess excellent documentation skills

• Professional experience in a system administration role supporting multiple platforms and applications

• Ability to communicate network security issues to peers and management

• Experience with at least one of the following scripting languages: Bash, Python, PowerShell.


About TEKsystems:

We're partners in transformation. We help clients activate ideas and solutions to take advantage of a new world of opportunity. We are a team of 80,000 strong, working with over 6,000 clients, including 80% of the Fortune 500, across North America, Europe and Asia. As an industry leader in Full-Stack Technology Services, Talent Services, and real-world application, we work with progressive leaders to drive change. That's the power of true partnership. TEKsystems is an Allegis Group company.

The company is an equal opportunity employer and will consider all applications without regards to race, sex, age, color, religion, national origin, veteran status, disability, sexual orientation, gender identity, genetic information or any characteristic protected by law.

Contact Information

Recruiter: Jean Chambers

Phone: (410) 579-3072

Email: jchambers@careercircle.com

Related Courses

Browse All

Blog