Lead Security Engineer Job Description
Lead Security Engineer Duties & Responsibilities
To write an effective lead security engineer job description, begin by listing detailed duties, responsibilities and expectations. We have included lead security engineer job description templates that you can modify and use.
Sample responsibilities for this position include:
Lead Security Engineer Qualifications
Qualifications for a job description may include education, certification, and experience.
Licensing or Certifications for Lead Security Engineer
List any licenses or certifications required by the position: CISSP, CISM, CISA, IAT, III, IAM, GSLC, CASP, ITIL, CEH
Education for Lead Security Engineer
Typically a job would require a certain level of education.
Employers hiring for the lead security engineer job most commonly would prefer for their future employee to have a relevant degree such as Bachelor's and University Degree in Computer Science, Engineering, Education, Information Security, Information Systems, Information Technology, Computer Engineering, Technical, Technology, Business
Skills for Lead Security Engineer
Desired skills for lead security engineer include:
Desired experience for lead security engineer includes:
Lead Security Engineer Examples
Lead Security Engineer Job Description
- Identified opportunities to improve FSOC by conducting analysis
- Responsible for securing enterprise information by determining security requirements
- Conduct network and application security penetration testing, source code reviews & threat analysis
- Support the Pre-construction Team Leader in the implementation of Integrated Security System designs and Manufacturing to meet the requirement of the project specification and in accordance with the contract
- Be the main technical support to the Pre-construction Team Leader through the project lifecycle
- Be the technical interface from the manufacture stage through to project completion
- Liaise and support with design submissions to ensure full compliance with the contract specification and requirements
- Ensure compliance with the client’s specification, operational and business objectives of the project
- Ensure the manufacturing is completed to the approved design and relevant standards
- Provide technical input to ensure all builds connect and interface correctly
- In depth experience with firewalls, intrusion detection/protection systems, strong authentication, and vulnerability assessment tools, and various other automated information security technologies for protecting or mitigating risks to applications, databases, networks, and systems
- Familiarity with virtualization platforms a plus
- Ability to build and sustain key relationships with multiple cross BU teams
- Basic knowledge of either Guardium and/or Imperva as distinct advantage
- Experience with infrastructure components utilized within the security industry (firewalls, intrusion detection/prevention, DDoS defense)
- Review back office data and network access policies for security vulnerabilities
Lead Security Engineer Job Description
- Actively monitor, analyze and correlate activity, evaluate security incidents, perform research and provide in-depth incident analysis
- Instrument and monitor clients, servers and networks to detect malicious behavior
- Improve and automate internal capabilities for investigating and responding to security events
- Respond to system security weak points
- Work independently to develop prototypes and work on engineering deliverables based on customer approved prototypes - must ensure that the team uses approved prototypes
- Prepare a project specific quality check-list
- Ensures that the final deliverable meets the functional specifications of the end user by verifying first level quality check is performed by the designer and doing thorough second level quality checks using quality checklist/software testing/lab testing where applicable
- Consistently meet the KPIs that govern customer satisfaction
- Raise and Review RFI and email communications to customers prepared by engineers/Sr
- Preparing engineering estimates and reviewing with DL's
- Ability to lead a small team of 2 – 3 people, providing work direction and serving as primary customer contact
- Knowledge of internal structures for file formats commonly associated with malware (e.g., OLE, RTF, PDF, EXE)
- Desirable to have some experience in mobile computing security for mobile computing to include knowledge of devices and underlying operating systems
- Bachelors degree in Computer Science / Security / Other
- Familiarity with Tactics, Techniques, and Procedures (~TTPs) commonly associated with APT adversaries, such as malware delivery via spear phishing and watering hole sites, use of Remote Administration Tools (~RATs)
- Experience with test and analysis tools
Lead Security Engineer Job Description
- Orchestrate configuration changes across OpenStack instances
- Create security project plans to support new systems and/or modifications to existing systems
- Partner with system owners to ensure the integrity, availability and confidentiality of information residing in corporate databases, workstations, servers or being transmitted over the network
- Assist in the design and implementation of disaster recovery plans
- Maintain knowledge of all aspects of information security and compliance, including PCI, SOX, and HIPAA requirements for information systems and industry best practices
- Responsibilities include leading a team to develop and manage security for multiple very complex IT functional areas (e.g., data, systems, network and/or Web) across the enterprise
- Provides direct support to the business and IT staff for very complex security related issues
- The Network Engineer will plan and design the Implementation of the LAN incl Nexxus Switches, WAN incl
- The Network Engineer will develop low-level LAN, WAN, WLAN, VPN and Monitoring Tools design and configuration documentation
- The Network Engineer will create and maintain network documentation as it relates to the standardize network topology, equipment, operational support and configuration
- CISM, CISSP, CISA, or other information security related certifications a plus
- Lead the work of employees assigned to the IA functional area from the program from technical, support, and administrative areas
- Establishes strict program control processes and support continuous assessment of IA Control compliance to ensure mitigation of risks and supports obtaining certification and accreditation of systems
- Understanding of network management and network defense tools used for providing network situational awareness
- Expertise with an interpreted programming language (PHP, Python, Ruby)
- Experience of smartphone platforms (iOS, Android) and mobilized services
Lead Security Engineer Job Description
- Oversee day to day operations flow for a team of 12 people, working hands on alongside them
- Manage Firewalls
- Traffic Visibility Management and Network Traffic Full Packet Capture
- Lead DevSecOps objectives to ensure applications are secure, while ensuring the needs of the CI/CD are met
- Advocate secure coding practices throughout our environment
- Develop and maintain plans for legacy product assessment and remediation, creating risk categories and prioritizations and closely working with the business units to develop a clear plan of action
- Refine and support the standard work associated with product cyber security incident response management
- Communicate the legal and regulatory requirements for cyber-security, risk assessments on new product introductions and new technological adoption
- Establish and maintain Network Security Strategy to secure data being transported within and outside of trusted network boundaries
- Drive global deployment of existing network security technologies
- A four-year degree in Computer Science, Computer Engineering, Information Systems, or demonstrated work experience
- Must be proficient in using computer software packages such as PowerPoint, Excel, Access, , to organize and assemble data into reports and/or presentation formats
- At least 5 years of technical experience in the cybersecurity field
- At least 2 years of technical experience in application security
- 2 years’ experience working with agile software development practices
- 2 years’ experience professional software development
Lead Security Engineer Job Description
- Defines and delivers appropriate IT metrics, analytics, and scorecards
- Maintains all versions and version control for all IT program documentation and pipeline with a thorough understanding of the processes and communicates the status
- Coordinates various repository system improvement projects and activities to enhance the system of record and maintain effective process controls
- Organizes and leads IT related meetings and prepares meeting agendas
- Liaisons with Internal and External Audit resources and business personnel to facilitate the review of controls and control performance
- Evaluates identified deficiencies and assists with creation, approval, and documentation of appropriate risk mitigation strategies
- Lead a small team of CyberDefense Engineers supporting the primary goal of Global Information Security – CyberDefense, with a focus on Cryptographic Technologies and emerging crypto patterns
- Create and Execute CyberDefense solutions as directed by CyberDefense management and in accordance with CME’s CyberDefense Roadmap
- Contribute to and Manage a rolling 18-24 month plan/roadmap, gain approval for said plan and execute said plan in accordance with CyberDefense Service Lifecycle (CDSL), a.k.a ITIL v3-2011 Service Principles
- Maintain acute industry awareness of
- Technical security expertise in a variety of systems and platforms
- Complex analytical, modeling and security simulation expertise
- Visionary thinker that can anticipate future computing capabilities
- Proven track record delivering innovative / secure technology solutions
- Exposure to security monitoring technologies, such as Alienvault USM, IPS/IDS (Snort, Suricata, Bro)
- Endpoint security analysis