Senior Cyber Security Engineer

Job Title

Senior Cyber Security Engineer

Location

Preference for Walnut Creek CA will consider Phoenix AZ --Will Have to go onsite 3 days a week.

Project Description

Job Summary

The Senior Cyber Security Engineer role is responsible for designing implementing and enhancing appropriate cyber security controls to protect the large complex IT environment. This is a highly visible hands-on position responsible for identifying and mitigating security risks. The Senior Cyber Security Engineer is a resident security expert and drives efforts focused on both cyber security and product security. Reporting to the Director Cyber Security and Network Engineering this role plans and deploys technical cyber security solutions to protect Member data and prevent disruption of critical systems applying risk assessment techniques to select control strength and assurance suited to the environment being protected. This role is also responsible for developing and maintaining technical documentation creating and reviewing SOPs for the deployment and maintenance of security tools and solutions and identifying and recommending remediations for gaps in existing security tool coverage across the enterprise.

Duties/Day to Day Overview

• Oversee all aspects of enterprise-level cyber security including designing implementing and documenting appropriate security measures to protect data and systems - 20%
• Manage projects initiatives and changes including planning scheduling implementation and reporting of status and risks - 15%
• Assess impact of proposed new systems or integrations on security posture of the environment as a whole and communicate risks and mitigation options to key stakeholders - 10%
• Audit controls such as firewall rules cloud and SaaS security configurations and API controls and recommend improvements - 10%
• Monitor in-house developed software for vulnerabilities and oversee remediation - 10%
• Maintain and recommend changes to cybersecurity architecture and toolbase - 10%
• Conduct periodic testing of security controls to evaluate effectiveness and recommend improvements and establish and collect risk-based metrics - 10%
• Develop security requirements and assessment program for business use of technologies including Artificial Intelligence (AI) - 5%
• Assist with development of roadmaps for cybersecurity initiatives - 5%
• Other duties as assigned by the Director Cyber Security and Network Engineering - 5%

Top Requirements

(Must haves)

Knowledge and Skills

Ability to lead/develop a program

Balance the risks and usefulness of IT initiatives and advise business partners appropriately

Understand the role of cybersecurity in the context of the Clubs mission business cycles critical systems and projects

Application of core security concepts - 5 years minimum in two or more of the following specialties:

Security and risk management

Asset security

Security architecture and engineering

Communication and network security

Identity and access management

Security assessment and testing

Security operations

Software development security

Project Management - 2 years

Strong oral and written communication skills

Build relationships across organization

Act with a sense of urgency to research questions or issues brought by the team

Qualifications:

Bachelors Degree or equivalent work experience required

10 years experience in information security field

Licenses and Certifications:

Information or Cyber Security certification - Required

Certified Information Systems Security Professional (CISSP) or Certified Cloud Security Professional (CCSP) - preferred

Information Systems Security Engineering Professional (CISSP-ISSEP) or Certified Secure Software Lifecycle Professional (CSSLP) desirable

Additional Notes

Additional Notes from Qualification:

• Must be onsite 3 days a week Walnut Creek is ideal but can consider Phoenix AZ and Helena MT
• Any previous experience with Salesforce is very nice to have. They have dedicated SFDC teams the partner with but experience here is very helpful
• puts a lot of value into certifications loves to see CCSP
• Need to have experience with a Diagraming Utility Visio or anything similar is fine.
• The team is moving to Agile must be familiar with Agile Methodologies
• Need documentation skills this person will be writing project-based requirements.