DISCO is looking for a talented IT Security Engineer to help us grow our security program. We are looking for an experienced individual with a passion for security and who isn’t afraid of a challenge. The ideal candidate will have exceptional communication skills, attention to detail and the ability to work independently.

Your Impact

As a member of the IT Security team, you will help drive the direction of our security practice and have an impact from day one. You will ensure the secure operation of our computer systems, servers, services and network connections. This includes checking logs, scrutinizing network traffic, establishing and updating virus scans, and troubleshooting. This person will also analyze and resolve security breaches and vulnerability issues in a timely and accurate fashion, and conduct user activity audits where required. 

What You’ll Be Doing

Strategy & Planning

• Develop, implement, maintain, and oversee enforcement of policies, procedures, and associated plans for system security administration and user system access based on industry-standard best practices.
• Assess the need for any security reconfigurations (minor or significant) and execute them if required.
• Keep current with emerging security alerts and issues.
• Conduct research on emerging products, services, protocols, and standards in support of security enhancement and development efforts.
• Coordinate with the Product Security team to ensure alignment across the organization.

Acquisition & Deployment

• Interact and negotiate with vendors, outsourcers, and contractors to obtain services and products.
• Recommend, schedule, and perform security improvements, upgrades, and/or purchases.

Operational Management

• Deploy, manage, and maintain all security systems and their corresponding or associated software, including firewalls, IDS/IPS, cryptography systems, EDR, DLP and SEIM software etc.
• Splunk management: Onboard data sources, ensure CIM compliance, create dashboards and alerts.
• Monitor server logs, firewall logs, intrusion detection logs, and network traffic for unusual or suspicious activity. Interpret activity and make recommendations for resolution.
• Perform vulnerability scans on endpoints, networks and cloud applications and prioritize and remediate findings.
• Design, perform, and/or oversee penetration testing of all IT systems to identify system vulnerabilities.
• Respond to security incidents, provide post mortem analysis and develop incident run books.
• Proactively Identify threats and design systems and processes to remediate.
• Collect evidence and assist in responding to internal and external audits.
• Provide on-call security support to end-users and incident response.
• Manage and/or provide guidance to junior members of the team.
• Assist the sales team in responding to RFPs; maintain a library of security and compliance RFP responses.

Who You Are

• A Bachelor’s degree in Computer Science, Information Systems, or related field. 
• 4+ years of Information Security experience.
• 2+ years of experience managing and maintaining Splunk.
• In-depth technical knowledge of network, PC, and platform operating systems, including Linux, macOS and Windows.
• Strong TCP/IP networking, DNS, and HTTP knowledge.
• Knowledge of endpoint, cloud and SaaS security issues and threat landscape.
• Experience with Enterprise EDR solutions.
• Experience with compliance frameworks such as HITRUST, ISO27001, SOC2 or FedRAMP.
• The ability to work in a fast-paced environment and the skills to deal with ambiguity.
• Ability to multitask and prioritize competing demands
• Experience securing the public cloud environments (AWS, GCP, Azure).

Even Better If You Have…

• Information security certifications such as CISSP, CEH, ECIH.
• Experience with Tenable.io and Tenable.sc
• Scripting ability in languages such as Python, Powershell, Bash.