NAVA Software is looking for a Sr Security Engineer
Details:
Sr Security Engineer - 2 roles
Location: Houston Tx - 4 days onsite
Duration: 12 months
The Senior Security Engineer is a member of the cyber security team providing advanced analysis troubleshooting and resolution of complex technical issues impacting the companys networks operating systems applications and services. The primary focus is system security and managing utilities policies configuration changes and monitoring required to keep our servers and workstations protected at all times. The role identifies potential weaknesses remediates vulnerabilities conducts security assessments and investigates and resolves security incidents working closely with the Information Technology team to ensure security standards and best practices are implemented across the enterprise.
Key Responsibilities
Evaluate risk assess controls and identify improvements to mitigate risk; perform application and infrastructure risk assessments and threat modeling.
Identify investigate and resolve security-related incidents and escalations including root cause analysis and after-action reports.
Research identify and implement security solutions; perform computer and network security vulnerability assessments.
Implement administer and maintain security tools and utilities; configure deploy and integrate tools to protect information assets and infrastructure.
Help design maintain and improve the enterprise security architecture and continuously monitor systems and networks for security issues.
Maintain detailed awareness of new vulnerabilities threat vectors and indicators of compromise.
Interface with IT to remediate vulnerability findings and reduce risk to the business.
Develop security procedures and standards supporting full life-cycle protection of information systems and confidential information.
Perform periodic testing for compliance with documented security policies procedures and standards.
Initiate facilitate and promote activities that foster information security awareness across the enterprise.
Required Experience & Skills
10 years of hands-on Information Technology experience including 5 years in IT Security.
Advanced technical background with the ability to understand network operating system database and application design and support.
Advanced knowledge of security technologies such as vulnerability management intrusion detection/prevention endpoint protection email security remote access solutions and privileged access management.
Hands-on experience with these or similar products: Cortex XDR BeyondTrust Proofpoint Tenable and Nozomi.
Knowledge of LAN WAN SAN Microsoft Entra Microsoft Purview Active Directory Windows server and desktop operating systems Linux Microsoft IIS Microsoft SQL and firewall management.
Strong working knowledge of security standards regulations and control frameworks such as NIST SOX ISO 27001 IEC 62443 PCI DSS and CIS Controls.
Experience producing technical documentation spreadsheet reports and visual presentations.
Ability to effectively communicate security exposures misuse and noncompliance to both technical and non-technical audiences.
Advanced communication documentation prioritization and investigation skills; excellent problem-solving and analytical ability.
Bachelors degree in Computer Science Information Technology or a related technical discipline - or equivalent applicable work experience with at least one technical certification.
Preferred / Nice-to-Have
Security certifications such as CISSP GICSP or comparable.
Scripting or general-purpose programming languages (JavaScript PowerShell Python etc
NAVA Software is looking for a Sr Security Engineer Details: Sr Security Engineer - 2 roles Location: Houston Tx - 4 days onsite Duration: 12 months The Senior Security Engineer is a member of the cyber security team providing advanced analysis troubleshooting and resolution of complex technic...
NAVA Software is looking for a Sr Security Engineer
Details:
Sr Security Engineer - 2 roles
Location: Houston Tx - 4 days onsite
Duration: 12 months
The Senior Security Engineer is a member of the cyber security team providing advanced analysis troubleshooting and resolution of complex technical issues impacting the companys networks operating systems applications and services. The primary focus is system security and managing utilities policies configuration changes and monitoring required to keep our servers and workstations protected at all times. The role identifies potential weaknesses remediates vulnerabilities conducts security assessments and investigates and resolves security incidents working closely with the Information Technology team to ensure security standards and best practices are implemented across the enterprise.
Key Responsibilities
Evaluate risk assess controls and identify improvements to mitigate risk; perform application and infrastructure risk assessments and threat modeling.
Identify investigate and resolve security-related incidents and escalations including root cause analysis and after-action reports.
Research identify and implement security solutions; perform computer and network security vulnerability assessments.
Implement administer and maintain security tools and utilities; configure deploy and integrate tools to protect information assets and infrastructure.
Help design maintain and improve the enterprise security architecture and continuously monitor systems and networks for security issues.
Maintain detailed awareness of new vulnerabilities threat vectors and indicators of compromise.
Interface with IT to remediate vulnerability findings and reduce risk to the business.
Develop security procedures and standards supporting full life-cycle protection of information systems and confidential information.
Perform periodic testing for compliance with documented security policies procedures and standards.
Initiate facilitate and promote activities that foster information security awareness across the enterprise.
Required Experience & Skills
10 years of hands-on Information Technology experience including 5 years in IT Security.
Advanced technical background with the ability to understand network operating system database and application design and support.
Advanced knowledge of security technologies such as vulnerability management intrusion detection/prevention endpoint protection email security remote access solutions and privileged access management.
Hands-on experience with these or similar products: Cortex XDR BeyondTrust Proofpoint Tenable and Nozomi.
Knowledge of LAN WAN SAN Microsoft Entra Microsoft Purview Active Directory Windows server and desktop operating systems Linux Microsoft IIS Microsoft SQL and firewall management.
Strong working knowledge of security standards regulations and control frameworks such as NIST SOX ISO 27001 IEC 62443 PCI DSS and CIS Controls.
Experience producing technical documentation spreadsheet reports and visual presentations.
Ability to effectively communicate security exposures misuse and noncompliance to both technical and non-technical audiences.
Advanced communication documentation prioritization and investigation skills; excellent problem-solving and analytical ability.
Bachelors degree in Computer Science Information Technology or a related technical discipline - or equivalent applicable work experience with at least one technical certification.
Preferred / Nice-to-Have
Security certifications such as CISSP GICSP or comparable.
Scripting or general-purpose programming languages (JavaScript PowerShell Python etc