Cybersecurity Engineer I

**This role will work fully on-site in Franklin TN.**

Heres some of what you will be doing:

• Planning implementing monitoring and upgrading security controls for the protection of the organizations data systems and networks.
• Monitor vulnerabilities and remediate issues for all devices and systems on the K-LOVE network.
• Responsible for preparing and documenting standard operating procedures and protocols.
• Support patch management implementation and process.
• Submit patch and vulnerability scan reports as defined by reporting manager.
• Help develop effective strategies for digital threat remediation and technology to orchestrate and automate responses.
• Provide detailed technical analysis of vulnerabilities identified (through scan results research vendor assessments or static-code analysis) to determine impact.
• Establish and maintain documents of security incidents process and procedures.
• Accumulate operational threat intelligence and maintain threat profiles of likely attackers.
• Perform security risk assessments develop and maintain vendor scorecard.
• Assist Governance Risk and Compliance (GRC) Manager with ongoing business continuity management initiatives and disaster recovery.
• Work with GRC team on Payment Card Industry (PCI) compliance requirements and initiatives to ensure operational effectiveness with applicable laws and regulations as well as internal policies and procedures.
• Coordinate PCI audit-related tasks to ensure the readiness of managers and their teams for audit testing and facilitate the timely resolution of any audit findings.
• Monitor and maintain current knowledge of technologies and methodologies current to industry security trends and advances; and present recommendations as necessary through continued education and certifications.
• Conduct investigative analysis on investigations related to Human Resources Incident Response Special Investigations and others as needed.
• Respond to incidents SOC alerts via security controls such as; web application firewall (WAF) file integrity monitoring (FIM) intrusion detection systems/ intrusion prevention systems (IDS/IPS) security information and event management (SIEM) endpoint detection and response (EDR) data loss prevention (DLP) and provide digital forensics (DF) as needed to incidents.
• Remediate ServiceNow incident tickets and participate in the change management process.
• Provide executive and operational reports on Vulnerability Management Incident Response etc.
• Ensure that the Ministrys sensitive information and IT equipment are kept safe and confidential by implementing the correct security measures.
• Assist Senior Engineers in developing policies procedures playbooks and standards that exceed existing and newly developed policy and regulatory requirements.
• Develop technical solutions and help implement security controls to help mitigate security vulnerabilities and automate repeatable tasks.
• Support Security Awareness training programs and assist in phishing test platform.
• Administer and support enterprise security controls.
• Daily administrative tasks reporting and communication with the relevant departments in the organization.
• Partner with Team Members and other departments to troubleshoot and resolve issues.
• Maintain an inventory of all security applications and hardware in an organized manner
• Ensure all existing policies and procedures are stored in an organized and accessible fashion.

Heres some experiencewe are seeking:

• Bachelors Degree in Computer Sciences Information Systems or equivalent experience.
• Security Plus certification will be given preference.
• 1-2 year of cybersecurity systems experience.
• Solid ability to manage and report on multiple projects / system deployments concurrently prioritizing efforts managing time effectively and requiring minimal supervision in the execution.
• Good understanding or ability to rapidly learn the technology and social gaming industry and desire for expanding skills through continued education.
• Demonstrate problem solving analytical and investigative skills combined with the ability to develop creative solutions and navigate through ambiguity in a dynamic agile environment.
• Familiarity with leading industry vulnerability and software (preferably Qualys) and standard disaster recovery policies and procedures.
• Familiarity with cybersecurity standards such as NIST CSF ISO CFC and CIS.
• Familiarity with infrastructure architecture virtualization and cloud technology.
• Familiarity with Microsoft Server Linux Apple and Active Directory/Entra architecture.

What can we offer you

• Industry leading Medical Dental & Vision coverage
• Short/long term disability and life insurance
• Robust 401K with company match
• Parental leave with Baby Bonding pay
• Generous PTO holidayand sick pay
• Unique company culture that includes exclusive access to concerts movie premieres media industry events and more
• Leadership and Career Development Programs including free access to LinkedIn Learning platform

Why work for Educational Media Foundation K-LOVE/Air1

Educational Media Foundation (EMF) is a nonprofit multi-platform media company on a mission to draw people closer to Christ. Founded in 1982 in Santa Rosa CA with a single radio station EMF today owns and operates the nations two largest Christian music radio networks (K-LOVE and Air1) with over 1000 broadcast signals across all 50 states and beyond streaming audio reaching around the world and a growing family of media ministries including podcasts books films concerts and events. EMF employs nearly 500 team members between its offices in Nashville TN Rocklin CA and field locations around the country. You can view our mission and values hereMission Beliefs & Values.

As an Equal Opportunity Employer EMF makes employment decisions based on merit and other legitimate reasons. The Company is committed to a diverse and inclusive work environment and the promotion of equal employment opportunities regardless of protected class characteristic or status. However EMF is also a religious non-profit organization where all team members contribute to the Companys mission of encouraging our audiences to have a meaningful relationship with Christ.Thereforepursuant to the Civil Rights Act of 1964 Section 702 (42 U.S.C. 2000e I(a)) EMF has the right to hire only candidates who agree with the Companys Statement of Faith. Also as a religious non-profit organization the Company is not governed by the CA Fair Employment and Housing Act.