Description: The Security Product Engineer works with security product managers to develop solutions based on product requirements and is responsible for designing, developing, and documenting new and innovative security service capabilities as part of Ensono’s hybrid IT solutions. This security role will be a critical part of a hybrid engineering team within the CTO organization. A successful candidate is able to work closely with key business partners, vendors, and internal Ensono teams to design and test solutions that meet our client’s needs. An emphasis is placed on delivering secure, highly scalable, cost effective, reliable, and high performing designs that enable distributed and cloud architectures. Essential duties: Security Product Engineers work closely with security product managers and responsible for understanding the strategic direction, priorities, and needs of our company. With this understanding, they are expected to design and refine solutions that meet the needs of our clients while aligning with the technology strategy of the company. Major activities include the design, build, test, automation and documentation of security infrastructure, tooling, and application solutions using agile methodologies. Deliverables include technical product documentation, training to Operations and other technical teams, as well as occasional assistance to Operations teams during the implementation or support of a customer solution.
 

Desired experience:

• 10+ years of relevant work experience with security controls in a large-scale IT environment
• Hands-on experience with installation and configuration of security products
• 6-8+ years’ experience in design & implementation of security solutions
• Previous experience designing integrated security solutions, including technical documentation, testing, validation, and problem resolution
• Ability to create vendor technical evaluation criteria and test plans for security technologies
• Self-motivated and driven to define and complete deliverables
• Excellent analytic, problem-solving, and decision-making skills
• Strong verbal and written communications skills
• Ability to adapt to rapidly changing technology
• Experience in corporate or business unit-level strategic planning

Desired technology expertise and experience:

• Security best practices and software-defined capabilities
• Experience deploying and supporting network security, endpoint security and vulnerability management controls
• Experience with private, and public cloud environments
• Candidate will have a good foundation of the following security use cases and technologies:
  • Scripting languages
  • API integrations
  • Hybrid and cloud-native security strategies
  • Foundation in VMware, AWS, and Azure
  • Windows and *nix server OS management
  • OS Host hardening
  • Patching
  • Identity and access controls

Candidate will have technical proficiency with one or more of the following security controls:

• Identity & Access Management
• Malware Prevention
• Vulnerability Management
• Security Information & Event Management
• Managed Detection & Response (MDR)
• Endpoint Detection & Response (EDR)
• Cloud and Container Security
• Network-based Intrusion Prevention
• Host-based Intrusion Prevention
• Web Application Firewall
• DDoS Mitigation
• Cloud-native security mechanisms
• Security Databases
• Containers
• Data security
  • Encryption and key management
• Penetration Testing
• Risk Assessment

Education or Equivalent Experience:

• Bachelor’s degree in information systems, computer science or work-related experience

Certifications

• Industry certifications such as the CompTIA Security+, SANS GIAC, CISSP, or similar are desirable but not required