Information Security Engineer

A COLOURFUL GROUP OF PEOPLE PASSIONATE ABOUT TECHNOLOGY & THE WONDERS OF INFORMATION

This is us. A fast-moving team, senior enough to assure effectiveness, but young enough to be flexible and transparent, we started out in 2000 as a privately-owned-and-managed business.

We’re a company with a soul, driven by our values and dedicated to fulfilling our mission to offer world class services, by continuous learning. Our Paladins (just employees in some companies) are empowered to work hard, move up and stand proud.

With active investment in our people's professional development and with the creative-InCrys-touch, we support our clients throughout the project's life cycle, providing end-to-end technology solutions for mission critical systems, products and services.

• CISSP (Certified Information System Security Professional) or CISA (Certified
Information Security Auditor) Certification
• Excellent organizational & communication skills – English Proficiency
• Strong analytical skills.
• Ability to interact with personnel at all levels and across all business units and
organizations, and to understand business imperatives
• Ability to work individually and in team settings with cross-functional teams
• Excellent technical knowledge of mainstream operating systems (e.g., Microsoft
Windows and Linux) and a wide range of security technologies, such as network
security appliances, Identity and Access Management systems, Security Information
Event Management Tools, anti-malware solutions, automated policy compliance and
desktop security tools
• In-depth knowledge of risk assessment methods and technologies
• Knowledge of Information Security Standards (e.g., ISO 27001/27002, ITIL, etc.)
• Knowledge of Data Privacy and Compliance Regulations (e.g., MA CMR 201, HIPPA, Red Flag, etc.)
• Experience required in deployment and daily management of checkpoint firewall
solutions in an enterprise
• Experience required in security event correlation and required tools and practices
• Experience required in developing, documenting and maintaining security policies,
processes, procedures and standards

Nice to have:
• 4-6s years of network security experience
• Check Point, RSA, Symantec Endpoint Protection, Microsoft System Center 2012
Endpoint Protection and Sourcefire experience

• Support and manage security hardware and software
• Coordinate responses to security-related incidents with IT, Legal, and Internal Audit
departments
• Create, manage, and maintain security awareness program for employees
• Handle low- to complex resolution of security-related Service Desk tickets
• Perform control and vulnerability assessments to identify control weaknesses, assess
the effectiveness of existing controls, and recommend remedial action
• Collaborate on critical IT projects to ensure that security issues are addressed
throughout the projects’ life cycles
• Assist with the development of security architecture and security policies, principles
and standards
• Proactively research and stay up to date with the latest security issues
• Define and deploy security configuration and operations standards for security
systems and applications, including policy assessment and compliance tools, network
security appliances, and host-based security systems
• Maintain Company’s compliance with data security laws and regulations
• Manage and configure the various Firewall and IPS solutions across the enterprise
• Responsible for the daily management and configuration including preparing weekly
reports from various security auditing and monitoring solutions used in the company

Benefits:

• Motivating salary
• Stimulating working environment
• Medical insurance
• Annual team building
• Opportunities to learn and grow your skills
• Gym membership discount