Log In
Sign Up
EJR Search Partners Looking for Security Server Engineer at New York, NY Full Time
| Role overview: Server Security Engineer is an IT professional with responsibility for implementation and support of security solutions for the Bank. In collaboration with members of both the UK & US teams covering Enterprise Architecture and Design, IT Security Administration, IT Development and IT Application/Database Support teams, Server Security Engineer will implement practical solutions to secure the Bank’s server infrastructure across North America’s estate. The day to day role requires the Engineer to install and test Infrastructure related patches beginning with our test environments, then deploying to our Production environment, before finally deploying in to the disaster recovery site. A wide breadth of knowledge Server and Network technologies is crucial for the role which will include the on-going maintenance and management of hardware and software that secures the organization’s infrastructure, analysing and troubleshooting problems, and monitoring for potential server infrastructure security problems or incidents.
|
Responsibilities
|
· Patch Management: Windows and non-Windows patches o Be a point of contact for all vulnerabilities o Document statuses and work with team members to assure patches get applied o Understand applicability to environment (research) o Work with security team to document all changes and assure deadlines are met. o Generate reports and document progress · Apply monthly Windows security patches using a combination of tools. Must be available to implement PROD/DR patches over the weekend (2 days a month). · Work to constantly improve and streamline the patching process. · Review configurations and changes for compliance with security policies and standards. · Security event analysis and monitoring · Integrate new security products into the infrastructure · Develop scripts to automate tasks and streamline processes to minimize errors and increase efficiency. · Must have experience with McAfee EPO or similar endpoint security solution. o Understand how to deploy products/updates o Monitor reports and dashboards for out of date endpoints and remediate quickly. o Work with security team to tweak alerting and streamline overall process. · Participate in security meetings and provide IT management with status updates and issues. |
Qualifications
|
Education and Experience Required: · 10+ years of experience working in an IT environment in a technical capacity role · Bachelor’s degree in IT/Engineering related field, or equivalent experience · CISSP, CEH, CISA, VMWare, Microsoft, Cisco certification is a plus · Patch Management: WSUS, Automation, Reporting · Extensive hands-on experience deploying and administering the following technologies: o McAfee ePolicy Orchestrator o Windows Server 2012/2016/2019: Active Directory, Group Policy, DNS/DHCP, PowerShell o VMWare ESXi and vCenter Suite · Server Build, configuration hardening (both physical and virtual servers) Server monitoring: availability, capacity, health · Security Risk Review/Remediation, Compliance Review/Remediation, Audit Review/Remediation, Two Factor Authentication, SSO, Certificates · Strong Scripting experience (PowerShell, VBScript) · Understanding of change control process Key skills and knowledge required: · Excellent written and verbal communication skills required · Ability to work independently researching and resolving issues · Strategic and holistic approach to problem solving · Ability to quickly learn new technologies and concepts and apply that knowledge effectively · Understand PKI and SSL implementations · Understanding of or familiarity with the following technologies is a plus: o Storage Management (NetApp, EMC) o Disaster Recovery including SAN based and host based replication methodologies and understanding of RTO/RPO capabilities for various technologies. o Red Hat Linux – file systems, recovery, networking o Networking (Routing, switching) |
