Jobs
>
Olympia

    Security Engineer - Olympia, United States - Municipal Securities Rulemaking Board

    Municipal Securities Rulemaking Board
    Municipal Securities Rulemaking Board Olympia, United States

    3 weeks ago

    Default job background
    Description


    The MSRB is looking for a committed and driven Information Security Engineer with - 7 years of experience and a broad understanding and appreciation of multiple security domains, and deep expertise in at least one.


    The Security Engineer will contribute directly to hands-on, operational processes and will be empowered to proactively drive change at the program and organizational level.

    Candidates should demonstrate knowledge and understanding of Information Security principles, frameworks, and concepts along with excellent communications skills and a desire to learn and grow.


    The Information Security Engineer is responsible for securing the MSRB by supporting existing controls and processes and through leading efforts to continually improve security across multiple dimensions and domains, including MSRB Web Applications, Cloud environments, networks, SaaS platforms, and enterprise systems.

    The engineer will support operational security processes as a key escalation point and by directly triaging a portion of our security alerts, phishing reports, vulnerabilities, and end-user requests.

    We expect the Engineer to work effectively with internal stakeholders, including the information security team, MSRB leadership, developers, system, database, and network administrators, and with external vendors including Cloud Service Providers and Managed Security Providers.


    The Engineer will be responsible for proactively improving security by identifying and implementing new tools and controls, enhancing existing controls, and monitoring the evolving threat environment to make informed recommendations and changes.


    Essential Duties and Responsibilities:

    Operational Oversight and Support:
    Serve as a key escalation point within the security team, providing guidance for effective resolution.
    Directly triage and respond to security alerts, phishing reports, and end-user requests on a regular basis.
    Identify and resolve issues in MSRB controls, systems, and applications.
    Lead and support maintenance and troubleshooting activities for the Information Security program.
    Lead and support vulnerability management processes, such as scanning, assessments, penetration testing, and remediation efforts.

    Architectural Excellence and Resilience:
    Design and implement robust security measures, including for web applications, cloud infrastructure, and enterprise systems.

    Effectively identify and resolve issues in web applications using web application code security tools and by working proactively with developers.

    Identify and implement best practices to secure web applications against potential threats.
    Provide risk-based recommendations for improving new and existing architectures.

    Monitor for and ensure compliance with relevant regulations, standards, organizational policies, and best practices, including cloud standards and best practices.


    • Continuous Improvement and

    Attack Surface Reduction:
    Proactively monitor and understand the evolving threat environment and cybersecurity developments.

    Ensure that the MSRB adapts to the changing security landscape, making informed recommendations for adjustments to configurations, security controls, and technology platforms.

    Identify and implement new security tools and controls to enhance the organization's security posture.
    Build and improve custom detections in anti-malware and SIEM platforms.
    Automate controls and processes where possible.

    Enterprise Security:

    Apply expertise in enterprise security, including networking and security measures for systems in physical offices, end-user laptops, conference room computers, etc.

    Identify configuration issues and improvement opportunities.
    Lead and assist defense-in-depth efforts.
    Review and improve security-related SaaS configurations.
    Lead Identity and Access Management efforts.

    Collaboration, Coordination, and Incident Response:
    Lead incident response efforts, coordinating with cross-functional teams for swift and effective resolution.
    Improve the MSRB Incident Response plan and lead other efforts to improve readiness, including by supporting cybersecurity tabletop exercises.

    Regularly engage with key MSRB vendors, including the Managed Security Service Provider (MSSP).Monitor, understand, and adapt to the evolving threat environment and cybersecurity developments, making informed recommendations for adjustments to configurations, security controls, and technology platforms.


    Security Policy and Processes:
    Develop and maintain comprehensive security policies and procedures.
    Design, document, implement, maintain, and report on security controls, processes, requirements, standards, and guidance.
    Monitor and ensure compliance with security policies and procedures across the organization.

    Communication, Education, and Security Awareness:
    Assist with selection and management of security awareness courses, simulated phishing campaigns, and other routine education exercises.
    Conduct security awareness training sessions for employees.
    Communicate security policies and best practices to end-users, fostering a security-conscious culture.
    Evaluate emerging technologies and educate staff on associated risks and benefits.

    Qualified candidates will - 7 years of progressive experience in the IT security field.

    They will have proven expertise in detection and detection engineering, incident response, Identity and Access Management (IAM), networking and endpoint security.

    Strong Cloud or application security backgrounds with a willingness to develop expertise in additional security specialties is expected.

    They will also have the following capabilities:

    Critical ThinkingGood JudgmentInitiativeCollaborative SpiritInfluence

    We are proud to be a collaborative organization that values diversity, equity and inclusion. We offer comprehensive benefits that support our employees' overall mental and physical health and wellness. We aim to empower our employees with the resources they need to achieve a successful work-life integration.

    A resume must be attached for full consideration. All applicants must demonstrate their ability to work in the U.S. without current or future employer sponsorship. No exceptions will be made.

    #J-18808-Ljbffr
  • Ark Solutions

    Security Engineer

    6 days ago

    Ark Solutions Olympia, United States

    CLIENT: · FederalPosition : Security Engineer/ Splunk Engineer6 months ContractWashington, DC (Onsite) · Education: · Bachelor's degree in in Cybersecurity or related field. · Required Skills: · "Five (5) to seven (7) years of hands-on experience with security monitoring too ...

  • MindPoint Group

    Security Engineer

    1 week ago

    MindPoint Group Olympia, United States

    Security Engineer - Remote · Department: A&E · Location: · Text code LEAD to to apply · Since 2009, MindPoint Group has been the cybersecurity firm of choice for the most security-conscious US federal agencies and commercial enterprises. · We're proud to be one of Inc. 5000's fas ...

  • MindPoint Group

    Security Engineer

    5 days ago

    MindPoint Group Olympia, United States

    Security Engineer - Remote · Department: A&E · Location: · Text code LEAD to to apply · Since 2009, MindPoint Group has been the cybersecurity firm of choice for the most security-conscious US federal agencies and commercial enterprises. · We're proud to be one of Inc. 5000' ...

  • Zolon Tech

    Cyber Security Engineer

    3 weeks ago

    Zolon Tech Olympia, United States

    Job requirements : · Lead special projects or investigations into specific technology or solution issues and to shepherd research and piloting of new technologies. Serve as a point of contact for engineering efforts and has overall responsibility for the accuracy and integrity of ...

  • Pierce Corporation

    Information Security Engineer

    1 week ago

    Pierce Corporation Olympia, United States

    Utilizes knowledge of SiEM solutions like Splunk, Rapid7 Insight IDR etcDevelops and maintains documentation for security systems, procedures, and security diagramsAnalyzes, proposes, and implements solutions concerning residual risk, vulnerabilities, and other security exposures ...

  • DevSelect

    Sr. Security Engineer/Architect

    1 week ago

    DevSelect Olympia, United States

    Title: Sr. Security Engineer/Architect · Location: Seattle Area · Openings: 1 · Type: Long-Term Contract · Looking for a highly motivated, experienced Security Engineer/Developer/Architect. This individual needs to be highly technical and analytical with strong verbal and wri ...

  • Nodel

    Security Splunk Architect/Engineer

    1 week ago

    Nodel Olympia, United States

    Location: Washington DC metro area (Hybrid)Must have an active Secret OR Top Secret ClearanceWe are seeking a Security Splunk Architect/Engineer to support a Navy enterprise network within the Engineering and Cyber Divisions. The candidate's primary responsibility is to maintain ...

  • Centene Corporation

    Senior Network Security Engineer

    17 hours ago

    Centene Corporation Olympia, United States

    You could be the one who changes everything for our 28 million members by using technology to improve health outcomes around the world. As a diversified, national organization, Centene's technology professionals have access to competitive benefits including a fresh perspective on ...

  • Cardinal Health

    Senior Engineer, Information Security

    6 days ago

    Cardinal Health Olympia, United States

    Senior Engineer – Purple Team Working together, we can make a difference in healthcare for our customers and communities. Your contributions, along with colleagues around the world, are helping make healthcare safer and more productive every day. · Headquartered in Dublin, Ohio, ...

  • Grammarly

    Software Engineer, Security Foundations

    3 days ago

    Grammarly Olympia, United States

    Grammarly is excited to offer a · remote-first hybrid working model · . Team members work primarily remotely in the United States, Canada, Ukraine, Germany, or Poland. Certain roles have specific location requirements to facilitate collaboration at a particular Grammarly hub. ...

  • H2 Performance Consulting

    Cloud Information System Security Engineer

    2 weeks ago

    H2 Performance Consulting Olympia, United States

    H2 Performance Consulting is subject to the Vietnam Era Veteran's Readjustment Assistance Act as a Federal Contractor and is an Equal Opportunity/Affirmative Action Employer and strives to build a diverse workforce. All qualified applicants will receive consideration for employme ...

  • The Pokémon Company International Careers

    Cloud Information Security Engineer

    3 days ago

    The Pokémon Company International Careers Tacoma, United States Full time

    **Get to know The Pokémon Company International** · The Pokémon Company International, a subsidiary of The Pokémon Company in Japan, manages the property outside of Asia and is responsible for brand management, licensing, marketing, the Pokémon Trading Card Game, the animated TV ...

  • The Pokémon Company International

    Cloud Information Security Engineer

    24 minutes ago

    The Pokémon Company International Tacoma, United States

    Get to know The Pokémon Company International · The Pokémon Company International, a subsidiary of The Pokémon Company in Japan, manages the property outside of Asia and is responsible for brand management, licensing, marketing, the Pokémon Trading Card Game, the animated TV seri ...

  • The Pokmon Company International Careers

    Cloud Information Security Engineer

    3 weeks ago

    The Pokmon Company International Careers Tacoma, United States

    **Get to know The Pokmon Company International** · The Pokmon Company International, a subsidiary of The Pokmon Company in Japan, manages the property outside of Asia and is responsible for brand management, licensing, marketing, the Pokmon Trading Card Game, the animated TV ser ...

  • Infoblox Careers

    Senior Cyber Security Engineer

    6 days ago

    Infoblox Careers Tacoma, United States

    Description of the Role: · Cyber Security is an incredibly important field for all successful Internet companies; Infoblox is no exception. Our growing Cyber Intelligence Unit (CIU) needs talented and experienced engineers to ensure the design of business solutions meets the secu ...

  • Actalent

    Laboratory Technician

    2 days ago

    Actalent Elma, United States Full time

    Great Opportunity for Recent Life Science Graduates · Description: · Navigate plant environment in order to properly obtain liquid samples from silos using FDA and plant standards, maintained awareness around machines/forklifts · Test samples using lab equipment/instruments, test ...

  • Cogent Infotech Corp.

    Enterprise Cloud Network Engineer

    1 week ago

    Cogent Infotech Corp. Olympia, United States

    The Senior Network Engineer position is the subject matter expert for IT Network Infrastructure at the Client, leading efforts for network and system designs, engineering, and planning. These efforts support end user technologies, which includes System Engineering and Administra ...

  • Catapult Federal Services

    AWS Senior Systems Engineer

    1 week ago

    Catapult Federal Services Olympia, United States

    AWS Senior Systems Engineer · Technical Skills: · AWS Networking · Linux Architecture · AWS DevOps & Development · Deployment Management · Role Description: · Individual will work with developers, analysts, and testers to manage code releases, apply Infrastructure as Code (Ia ...

  • Infojini Inc

    Azure Cloud Network Engineer

    4 days ago

    Infojini Inc Olympia, United States

    Below is the job description for the position: · Position Title - Sr. Azure Cloud Network Engineer · Location - Olympia, WA (Hybrid work) · Duration- 6 Months (with possible extension) · PROJECT DESCRIPTION AND REQUIREMENTS · The Senior Network Engineer position is the subject ma ...

  • State of Washington

    DSHS TIA IT Electronic Health Records Technology Manager

    2 days ago

    State of Washington Olympia, United States

    We are seeking an experienced strategic, collaborator, and resilient Senior Technology Manager who will provide leadership and expertise in the planning, development, and implementation of the Statewide Enterprise Electronic Health Record (EHR) Program at the Technology Innovatio ...