Share this Job

Security Engineer

Apply now »

Date: Jul 23, 2021

Location: Remote, NC, US

Company: NTT DATA Services

Req ID: 123366 

NTT DATA Services strives to hire exceptional, innovative and passionate individuals who want to grow with us. If you want to be part of an inclusive, adaptable, and forward-thinking organization, apply now.

We are currently seeking a Security Engineer to join our team in Remote, North Carolina (US-NC), United States (US).

Role purpose

  • The Security Engineering team is responsible for testing, designing and implementing security controls and solutions driven by CISO policies and standards to reduce the risk to Pearson and its customers.  This includes enterprise-level design work for system security, cloud security, identity and access management, data protection and many more.
  • Within this team, the Cyber Security Engineer is responsible for reviewing technologies and designing security controls and solutions to reduce the risks to Pearson and its customers. They will help define the global enterprise and cloud security design and controls. This is an expert/lead technical role.

 

Responsibilities

As a direct report to the Director of Security Engineering, you will have the following accountabilities:

  • Work closely with enterprise architects, other functional-area architects, engineering, and security specialists to ensure adequate security solutions and controls are in place throughout all IT and cloud systems and platforms to mitigate identified risks sufficiently, and to meet business objectives and regulatory requirements;
  • Assess and understand Pearson’s current security posture and future architecture, providing a viable solution path to bridge the gap;
  • Assess and understand the current and planned security posture for platforms (e.g. servers, databases, web servers), providing recommendations for improvement and risk reduction;
  • Provide security subject matter expertise on cloud control implementation for enterprise-scale projects;
  • Serve as a security expert in cloud-based application development, database design, network and/or platform (operating system) efforts, helping project teams comply with enterprise and IT security policies, industry regulations, and best practices;
  • Interface effectively with the systems engineering team to implement control security solutions and controls;
  • Design security configuration standards, procedures, and guidelines for platforms;
  • Design and implement mechanisms for assessing bi-modal compliance with the standards, procedures, and guidelines;
  • Identify and execute on opportunities to automate cloud security controls;
  • Design and build controls to address security risks and events as identified;
  • Define clear, concise, and executable standard operating procedures and documentation for any implemented solutions for formal operational handoff;
  • Recognize, adopt, and instill industry leading practices in cloud security engineering throughout the organization;
  • Provide subject matter expertise on, and conduct in-depth security reviews of, new OS, database, middleware, etc. solutions as they are identified for use;
  • Identify and propose process improvements and identify opportunities for new processes and procedures to reduce risk;
  • Support security incident response as required;
  • Researches, designs, and advocates new technologies and security products that will support security requirements for the enterprise and its customers, business partners, and vendors;
  • Contributes to the development and maintenance of the information security strategy;
  • Evaluates and develops secure solutions, based on approved security architectures;
  • Analyzes business impact and exposure, based on emerging security threats, vulnerabilities and risks;
  • Communicates security risks and solutions to business partners and IT staff;
  • Embrace a culture of continuous service improvement and service excellence; and
  • Stay up to date on security industry trends.
     

 

Skills and Experience

Experience

Must Have

  • 7 years+ in Information Security space;
  • Strong experience with cloud security strategy, with a passion to make security realistic, achievable and interwoven with the business fabric;
  • Strong experience in migrating enterprise companies from traditional data center infrastructure, application and data designs to hybrid or fully-cloud enabled practices.
  • Strong experience with cloud provider ecosystems, including Amazon AWS, Microsoft Azure, and OpenStack.
  • Strong experience with a broad range of security technologies, including NextGen Firewalls, DLP, NAC, IDS/ IPS, IdAM, Certificate Management, SIEM, Endpoint Protection, Anti-malware, vulnerability management;
  • Strong experience with multiple relational database platforms, including MSSQL, Oracle, MySQL;

 

Desirable

 

  • Some experience with Unix/Linux and Windows system administration;
  • Some experience with Cloud Access Security Brokers (CASB)
  • Some experience with NoSQL database platforms, including Mongo, Cassandra;
  • Some experience with logging and alerting platforms, including SIEM integration
  • Some proven ability in security process and organizational design;
  • Current understanding of Industry trends and emerging threats; and
  • Knowledge of incident response methodologies and technologies.
  • Strong oral, written, and presentation abilities - able to convey risk to all levels of the business, from C-level executives to operations and development teams;
  • Well-rounded background in network, host, database, and application security;
  • Knowledge and experience using SABSA methodology;
  • Experience implementing security controls in a bi-modal IT environment;
  • Experience driving a culture of security awareness;
  • Experience administering network devices, databases, and/or web application servers; and
  • Professional IT Accreditations (CISM, CCSA, CCSE, JNCIA, CCNA, CISSP, CCIE Security).

 

Competences and Behaviours

  • Customer oriented
  • Working within an international environment
  • Builds networks with customers, other team members and other relevant teams is essential
  • Keeps all relevant people appropriately informed
  • Very good communications, presentation and negotiations skills
  • Technically innovative
  • Able to express technical and non-technical concepts in clear verbal and written English
  • Very good written skills to document complex concepts in a comprehensive, yet readable manner
  • Encourages people to be open and share their views
  • Considers a range of options that meet the needs of all stakeholders
  • Ability to use own initiative to solve technical problems
  • Delivery Focused
  • Takes responsibility for targets
  • Drive efficacy into all solutions delivered, demonstration clear and measurable results through the development of KPIs
  • Ambitious and competitive
  • Drive innovation and best practice
  • Strive for standardization and simplification in all aspects of work
  • Always cost conscious balancing the needs of the business against the provision of the best solutions possible

About NTT DATA Services

NTT DATA Services is a global business and IT services provider specializing in digital, cloud and automation across a comprehensive portfolio of consulting, applications, infrastructure and business process services. We are part of the NTT family of companies, a partner to 85 % of the Fortune 100.

NTT DATA Services is an equal opportunity employer and will consider all qualified applicants for employment without regard to race, gender, disability, age, veteran-status, sexual orientation, gender identity, or any other class protected by law.


Job Segment: Consulting, Database, Oracle, Cisco, Application Developer, Technology