Infrastructure & Cybersecurity Engineer - Redwood City, United States - Celito Tech, Inc.

Description

The Celito Team

The Celito Team architects the buildout of simplified, integrated, and compliant technology stacks. With both consulting and products, our expertise can help our customers save time and money as they move from strategic Clinical & Quality management all the way to widespread and profitable commercialization.

Job Overview

As an Infrastructure & Cybersecurity Engineer, you will be responsible for the implementing, maintaining, and overseeing the organization's cybersecurity program & Infrastructure (tools, technologies, services, infrastructure) to ensure that information security standards, practices and controls are in place to effectively manage risk to the enterprise and improve the company's overall security posture. You will help develop and implement security initiatives and standards, make recommendations on and install security technologies, and ensure compliance with regulatory and internal standards including incident response and investigations related to policy violations, security breaches, threats, and attacks. You will be a strategic technical leader, mentoring team members while partnering with other leaders to advance cybersecurity processes across the organization.

Responsibilities and Duties

• Develop, implement, and manage Infrastructure & cybersecurity policies, standards, and controls.
• Implement new technologies to ensure the technical enforcement of internal security policies.
• Take part in the monitoring of cybersecurity operations and technologies, responding to potential threats and alerts, and developing and standards and guidelines for response and remediation.
• Maintain all security tools and technologies and continually strengthen existing security configurations across existing infrastructure landscape.
• Define and implement standard, repeatable processes including vulnerability management, privileged access management, monitoring, and alert handling. This will include scanning, prioritization, and remediation of discovered vulnerabilities as well as performing regular penetration testing.
• Develop, implement, and maintain an Incident Response Program including developing IR playbooks.
• Work with and actively engage security service providers to deliver necessary services and manage contract requirements and service level agreements.
• Serve as lead advisory on cybersecurity matters to ensure appropriate levels of security are integrated in process designs and architecture.
• Develop and implement company-wide/departmental information security training and awareness programs.
• Monitor internal and external policy compliance to ensure that both vendors and employees understand the company's cybersecurity policies and that they operate within that framework.
• Work closely with the business to promote and support the cybersecurity initiatives of the organization.
• Administer the Windows Active Directory, DNS (internal & external), DHCP, Office 365 admin portal, and window server domain environments.
• Manage Windows and O365 accounts, OneDrive, SharePoint, and network share folder management.
• Maintains accurate technology asset inventory and assist in FA audits, acquisition, deployment, support, and retiring of assets based on the established IT life cycle as needed.
• Train and enhance user knowledge for new hires and existing staff regarding company technology systems.
• Perform routine server, network, and security monitoring and performance benchmarking.
• Maintains user accounts ensuring password policies and other system policies are enforced.
• Support and manage backup software, email security, endpoint protection & MDM, Desktop Management and SIEM software.
• Research and obtain quotes from vendors on various technology equipment needs.
• Provides input for new IT projects by investigating options and making recommendations as to what systems, hardware, and software changes are appropriate.
• Ensure appropriate management escalation takes place for issues that require it.
• Works with vendors on warranty issues.
• Flexibility to work nights and weekends to provide support as needed.
• Performs other duties as assigned.

Qualifications

• 5+ years developing infrastructure & security programs, managing security solutions, and security projects.
• Experience working with Security Incident and Event Management (SIEM) tools, endpoint detection and response tools, vulnerability management suites, and various security solutions.
• Knowledge of information security frameworks, best practices, and administrative, physical, and technical safeguards (experience with common security frameworks such as NIST preferred)
• Strong technical background and knowledge of network and systems security, system and network configuration, and application security as well as working with server technologies, cloud-based SaaS applications, and IaaS platforms such as AWS, Azure, and Google Cloud.
• Experience with incident response management, next gen firewalls, web application firewalls, multi-factor authentication, data loss prevention, disaster recovery.
• Excellent organizational, communication and customer service skills with active-listening skills.
• Knowledge of regulatory requirements such as California Consumer Privacy Act (CCPA), Sarbanes-Oxley (SOX), and quality guidelines (GxP) a plus.
• Experienced with implementing, managing, and performing investigations in the following technology platforms:
• Endpoint protection: Crowdstrike, Microsoft Defender, Sentinel One
• SIEM: including Rapid7 InsightIDR
• Vulnerability Management: Rapid7 InsightVM
• Email security: Mimecast, Proofpoint, Darktrace, Avanan
• MDM: Intune (MDM/MAM), Vmware Workspace One, Jamf
• Security awareness training and Phish testing: KnowBe4, Mimecast
• Firewalls: PaloAlto Networks, Cisco Firepower & ASA, SonicWALL
• Identity management & SSO: Okta, Microsoft Entra
• Email/Productivity: Microsoft 365, Google Workspaces
• DLP: Zscaler ZIA
• Cloud: AWS, Azure
• Data Backup and Recovery: Druva, Backblaze, Cloudally, Veeam

Compensation

The wage range for this role takes into account the wide range of factors that are considered in making compensation decisions including but not limited to skill sets; experience and training; licensure and certifications; and other business and organizational needs. The disclosed range estimate has not been adjusted for the applicable geographic differential associated with the location at which the position may be filled. At Celito, it is not typical for an individual to be hired at or near the top of the range for their role and compensation decisions are dependent on the facts and circumstances of each case. A reasonable estimate of the current range is $110,000 to $140,000 per annum.