**Network Security Engineer**
**Job Description**:
**Title**:
Network Security Engineer
**Location**:
Remote, based in Costa Rica
**Job Overview**:
Faced with an ever-increasing cyber-security threat, organizations need to maintain a vigilant approach to protect their systems and data, and Security Engineers play a key role in this process. You will be responsible for several functions associated with IT security - from ensuring the security of software to selecting and/or constructing and deploying broader network security systems. Responsible for completing a thorough risk assessment, identifying vulnerabilities within a network, creating firewalls, or configuring systems to enhance existing security features. You are expected to respond to, and document, any security threats, resolve technical faults, and allocate resources to deliver real solutions in a cost-effective way.
**Key responsibilities include**:
- Understanding complex technical issues and managing them within a fast-paced business environment
- Maintaining all the software and hardware in relation to security
- Documenting security certification
- Identifying current and emerging technology issues including security trends, vulnerabilities, and threats
- Threat intelligence
- Sourcing and implementing new security solutions to better protect the organization.
- Conducting proactive research to analyze security weaknesses and recommend appropriate strategies.
- Liaising with vendors to implement security solutions.
- Qualifications and requirements
- University degree in Security related field or equivalent experience
- CISSP, GISP, and CISM
- Expertise across a variety of security products including firewalls, URL filtering, information security, and virus protection.
- The commercial acumen to provide cost-effective security solutions.
- An enthusiasm for staying up to date with the very latest updates about security threats and solutions.
- Outstanding communication skills that go beyond "tech talk" - the ability to translate complex IT matters to those without an IT background.
- Strong time management and organizational skills
- Previous exposure to Linux and/or Windows Operating Systems, coding languages, and/or Networks
- Ability to support and maintain security controls for On-Prem and Cloud Security Environments including NextGen Firewalls, WAF, VPN, Load Balancers, and SSL Decryption technologies (Palo Alto/Aviatrix, Imperva, AWS, ZScaler, Okta).
- Respond to security incidents by identifying, containing, analyzing, and mitigating the incident's impact.
- Develop and maintain incident response procedures and playbooks, ensuring they are up-to-date and effective.
- Conduct post-incident reviews and provide recommendations for improvement, with an understanding of industry standards and applicable regulations.
- Work with the vSOC to ensure that incidents are detected and reported promptly and appropriately.
- Provide technical expertise in threat analysis, vulnerability assessments, and penetration testing, using industry-leading tools and techniques.
- Collaborate with the IT team to implement security measures and controls to prevent future incidents and ensure compliance with regulatory requirements.
- Develop and maintain relationships with external stakeholders and stay informed about the latest security trends and best practices.
**Preferred Qualifications and Experience**:
- Bachelor's degree in computer science, Information Technology, or a related field.
- 3-5 years of experience in cybersecurity, with at least 2 years of incident response experience.
- In-depth knowledge of cyber threats, attack methodologies, and incident response techniques, including industry standards such as NIST and ISO 27001.
- Experience with incident response tools and technologies, such as SIEM, XDR, and threat intelligence platforms.
- Strong analytical and problem-solving skills, with the ability to analyze large volumes of data to identify security incidents.
- Excellent communication and collaboration skills, with the ability to work effectively with technical and non-technical stakeholders.
- Expert Splunk administration experience, with the ability to create complex dashboards and reports to support incident response.
- Crowdstrike Falcon Complete, to provide advanced endpoint protection and threat intelligence.
- SOAR D3 Integration, to automate and orchestrate incident response activities.
- Active Directory, to manage user identities and access controls.
- MS Defender, to provide advanced threat protection for Windows endpoints.
- Solid English/communication skills, with the ability to clearly articulate technical information to non-technical stakeholders.
**Additional Qualifications**:
- Qualys vulnerability management, to identify and prioritize security vulnerabilities in the environment.
- KnowBe4 PhishER, to identify and remediate phishing attacks.
- PCI compliance experience, to ensure compliance with the Payment Card Indus
