Job Description

Job Description (Role Profile)

Information Security Engineer

ABOUT AVID

Avid makes technology and collaborative tools so creators can entertain, inform, educate and enlighten the world. Our customers are the visionaries behind the most inspiring feature films, television programs, news broadcasts, televised sporting events, music recording and live concerts. To learn how Avid powers greater creators or for more information, visit .

JOB SUMMARY

Avid is looking for an experienced, proactive, results-oriented individual, to serve as an Information Security Engineer in our information security team. This position will require a driven engineer who works well in a team environment but can also work independently to drive continuous improvement.

RESPONSIBILITIES AND DUTIES

• Acquire an understanding of the Company’s technology and information systems (holistically and understanding interdependencies).
• Assess security risks, recommend solutions which meant business needs and security requirements.
• Educate internal teams on information security best practices.
• Serve as an escalation point for security analysts for incident response and alert triage.
• Respond to investigations into security-related events and provide a thorough post-event analysis for senior management.
• Identify, recommend, design and maintain security policies, procedures and best practices for the organization.
• Assist in the evaluation, testing, implementation, and maintenance of endpoint, network and cloud security tools.
• Enforce security policies and procedures by administering and monitoring security profiles, review security violation reports and investigates possible security exceptions.
• Daily administration and operation of security technologies, including rule creation, reporting, correlation and performance monitoring.
• Assist in development of strategies to respond to and recover from a security incident.
• Respond to service issues, problems, and critical situations to support resolution and minimize downtime.
• Communicate effectively with customer facing teams, internal infrastructure teams, and senior management staff.

QUALIFICATIONS & SKILLS

• Overall Career Experience

• 5+ years of experience in Information Technology and 2+ years in Information Security role

OR

• 3+ year of experience in technical Information Security role.

• Education & Certifications

• Two or more of the following:

• Any two CompTIA certification (Security+, Network+, etc.)
• Any two vendor certifications (Microsoft, AWS, Google, Cisco, Juniper, Checkpoint, Palo Alto, CyberArk, etc.)
• Any one of the GIAC certifications (GCIH, GSEC, GCED, GISP, etc.)
• Any one of the ISC2 certifications (CISSP, etc.)
• College degree (BS, BA, field is irrelevant)
• Qualifications & Skills

• Cognitive

• Ability to think like an attacker
• Ability and desire to advance technically
• Ability and desire to educate others
• Administrative

• Strong work ethics, attention to detail, and organizational skills.
• Demonstrated ability to assume sole and independent responsibilities, and ability to keep track of numerous detail-intensive, interdependent tasks and ensure their accurate completion
• Able to articulate and translate cyber security risks, both verbally and in writing, to business objectives for different audiences at varying levels of complexity
• Technical

• Preferred Experience (at least 4 of the following):

• Azure, Azure AD and Office 365, administration and security configuration
• SIEM platforms (Slunk, LogRhythm, ELK, etc.)
• Windows Server and Windows domain environments (AD, GPOs, Trusts)
• Identity Platforms – OKTA, OneLogin, Ping, or other
• Strong fundamental networking knowledge (LAN, WAN, Firewalls, ACLs, Wireless security, etc.)
• Privileged Access Management Platforms (CyberArk, BeyondTrust, Thycotic, etc.)
• Intrusion Detection/ Prevention platforms (FireEye, Security Onion, SORT, etc.)
• Mobile Device Management platforms (Intune, JAMF, ect.)
• Network traffic analyses and network capture solutions (Wireshark, Zeek, Netflow, NetScout)
• Industry or subject specific analysis or assessment frameworks (SOC2, ISO, NIST, HITRUST, etc.)
• Encryption algorithms and related technologies (secure communications, SSL, PKI)
• Solid understanding of DevOps and Secure Development Life Cycle practices to shift security left.
• Solid knowledge of common vulnerabilities and exploitation techniques (e.g.: SQL injection, buffer overflows).

Avid is an equal opportunity employer. We celebrate diversity and are committed to creating an inclusive environment for all employees.

#LI-MR1

#LI- Remote

Job Category

Digital Transformation

Full or Part Time

Full Time

Avid Technology

Job Categories: Devops engineer. Job Types: Part-Time. Salaries: 60,000 - 80,000 and 80,000 - 100,000.

429 total views, 1 today

Apply for this Job

Name *

Email *

Message *

Upload resumé (pdf, doc, docx, zip, txt, rtf)

Upload cover letter (pdf, doc, docx, zip, txt, rtf)

Is fire “hot” or “cold”? *