Information Security Engineer III

Overview

IDEMIA is the global leader in identity and security. Our mission is to create a safe and simple future where identity verification is indisputable, and only you can assert your identity. We are a distributed company leveraging the latest technologies to deliver world-class products in the private and public sectors of finance, telecom, identity, security, retail, sports entertainment, commercial, government, and IoT. We use a variety of technologies and approaches to deliver quality product and services to government agencies and technology companies. IDEMIA is a made up of a group of 14,000 diverse people from different nationalities, speaking over 20 different languages. Together, our solutions impact the everyday lives of citizens and nations. In this ever-changing world, protecting your identity is paramount. Join the team that is ensuring one person- one identity.

Responsibilities

• Serve as a technical expert throughout the implementation and maintenance of assigned information security solutions.
• Develop and create technical procedures to standardize operational functions for assigned security technologies.
• As the Subject Matter Expert, lead the development of technical requirements, conduct proof of concept evaluations, and provide implementation guidelines for newly acquired technologies.
• Conduct security assessments, as required, to identify gaps in controls, processes, and systems and propose security enhancement to mitigate risks.
• Develop and maintain standard procedures and protocols to ensure Security Incident Response meets operational requirements.
• Support incident response activities through investigation and reporting in coordination with users, key stakeholders, incident response teams, and leadership
• Design secure systems and network architectures, maintain Splunk (SIEM) Infrastructure which includes tuning, event collection, reports and dashboards.
• Monitor AWS based systems for security events, anomalies, and threats.
• Assist in cloud security activities such as configuration assessments, posture management and other intrusive/simulation led tasks.
• Collaborate with other members of the security team, Cloud Platform Engineering, SRE, Development and other teams.
• Build and upgrade security posture for compliance with SOC 2, NIST 800-53 and PCI-DSS
• Demonstrate organization and planning skills, including time management, project coordination, and project management.
• Other duties as assigned.

Qualifications

• 5+ years of experience in securing network and cloud infrastructure.
• Bachelor's degree in computer science or a related technical field
• Hands-on working knowledge of Splunk, AWS Cloud Security Services, CrowdStrike, and Tenable.
• Proven skills in various elements of incident response to include hands-on experience conducting Cybersecurity investigations into network infrastructure, systems, and application activities in enterprise environments.
• One or more of the following certifications (CISSP, CCSP, AWS Security, GCIH, GCFA)
• Knowledge and experience in deploying and managing security controls, capabilities, and tools in large, complex environments.
• Ability to prioritize, communicate, and adapt knowledge to a fast-paced environment.