Company Overview Founded by experts with more than 70 years of collective experience in the staffing solutions industry, TASQ understands the unique challenges in the talent acquisition space and is committed to being the trusted partner of companies in their pursuit of hiring the best people to fill their manpower needs. Composed of highly skilled team members who have worked with organizations ranging from small-to-medium entities to large-scale enterprises (including Fortune 500 companies), TASQ is fully capable of meeting staffing demands at all levels and across different industries. Summary The Cyber Security Engineer is responsible for providing leadership and direction for the design and implementation of secure platforms, controls, services, and technologies across the organization. S/he establishes secure architectures by determining security requirements; planning, implementing, and testing security systems, and preparing security standards, policies and procedures. S/he leads and conducts risk assessments on information systems, IT infrastructure, and related policies and processes in accordance with established regulations and organizational standards. Responsibilities Develop processes and procedures for monitoring firewalls reverse proxies, security information and event management systems, intrusion detection systems, vulnerability scanners, multi-factor / strong authentication technologies, RADIUS/TACACS+ servers, and logging serversConduct application risk assessments, business partner vulnerability assessments, and security architecture assessmentsPerform an of enterprise-wide networks, technology infrastructure, middleware, platforms, and/or coordinate penetration testingDevelop processes for monitoring third-party security reports and vulnerability patchingPerform security audits of off-the-shelf and custom applications and infrastructureProvide in-depth support for information security incidents including internal violations, external attacks, viruses, and system outages. Assist with the investigation of security breaches, policy violations, and other security incidentsProvide expert-level advice for design and planning and applications to ensure appropriate levels of riskProvide direction on a variety of design decisions including, solution evaluation and selection, buy vs. build questions, project estimates, platform selection, and high-level technical designContinuously look for ways to enhance existing security services. Research, design, plan, schedule, and implement new security technologies into the current operating environmentDevelop and implement the IT security framework and strategies that provide balance and alignment with business requirementsDefine global security policies, standards, and guidelines to sure ongoing maintenance of securityImplement best practice procedures to ensure a uniform security architecture throughout Application Development, Operations, and InfrastructureDirect project teams for the implementation of security-related initiativesStay abreast of industry best practices in risk management techniques and integrate new methods and tools as appropriateLead ongoing information security education, awareness, and outreach activitiesProvide 7x24 support for critical security issuesOther responsibilities as assigned Required Work Experience Experience with security products from various suppliers (firewalls, intrusion detection systems, vulnerability scanners, multi-factor / robust authentication technologies, RADIUS/TACACS+ servers, logging, penetration testing software, etc.)Experience with a variety of security technologies and concepts (DMZ architectures, cryptography, forensics techniques, PKI, digital certificates, hashing/ciphers, IPsec, wireless, URL filtering, etc.)Expert knowledge of attack and penetration tests, application risk assessments, vulnerability assessments, and security architecture assessmentsSolid understanding of IT processes including security, incident management, configuration management, change management, release management, problem management, business continuity, and disaster recoveryExpert knowledge and experience in a broad range of security controls and risk management frameworks (NIST, ISO 27001, ITIL, PCI DSS, HIPAA) Professional Competencies Excellent verbal and written communications and presentation skills with the ability to communicate with internal/external customers, suppliers, and management. etc. in formal and informal situationsStrong consulting, leading, and mentoring skillsExperience in managing consultants and vendorsResults-oriented, high energy, self-motivatedOrganized, responsible, and meticulousAble to manage and prioritize multiple tasks in a fast-paced environment Education Requirements BS in cyber security, computer science, or equivalent with 5-8 years of hands-on IT and information security experience in a large, global enterprise environmentIndustry-recognized certifications such as CISM, CISSP, CRISC, CEH, and PCIP preferredHybrid and Night Shift