Cyber Security Engineer/Architect

Kaufman Rossin is seeking an experienced Cybersecurity Engineer/Architect to join our team of World-Class professionals. This position resides in the Information Security department, a functional team working alongside Information Technology and Application Development. The Information Security team is responsible for protecting the confidentiality, integrity, and availability of company information and computing networks. As a part of our team, you will work with sophisticated Cyber technologies in the industry to keep Kaufman Rossin systems and data safe from an ever-changing threat landscape. As a Cybersecurity subject matter expert, you will be responsible for providing support and aiding in the enhancing and deployment of new and existing technologies. In addition, you will recommend process and technology related solutions or improvements to protect the company from cyber security vulnerabilities and threats. This is a full-time, flexible position offering health benefits, vacation, and 401(k).

Administers, operates and monitors KRs information security sensors, logging, alerting and other detection mechanisms to identify and respond to threats.
Acts as subject matter expert for one or multiple assigned cybersecurity technology stacks (e.g., identity and access management, network intrusion detection and prevention, host-based security tools)
Collaborates with IT to identify, evaluate and recommend new security technologies for suitability within KR’s environment and security posture.
Communicates ongoing cybersecurity activities, priorities and risk measurements or mitigations at multiple organizational levels.
Provides guidance for security activities and requirements in the system development life cycle (SDLC) and application development efforts.
Creates and updates security documents – policies, processes / procedures, playbooks, etc…

What Skills You’ll Bring

• Experience with endpoint protection technologies such as Anti-Virus, Endpoint Detection and Response, and Insider Threat platforms.
• Experience with network protection technologies such as IDS/IPS and inspection tools, core technologies like Identity Access Management tools, SIEM and SOAR platforms.
• Experience with Linux and Windows operating systems, enterprise SIEM, and packet capture analysis toolsets.
• Familiarity with MSFT SharePoint and other collaborative tools, controls/control measures as it relates to Cybersecurity technologies (CIS, NIST CSF, NIST 800-53, CSA) and compliance and governance (PCI,
• SOX, GLBA, COBIT)
• Scripting and programming language skills (Python, PowerShell, Java, JavaScript)
• Understanding of the tactics, techniques, and procedures (TTPs) used by threat actors against endpoints, such as MITRE ATT&CK techniques.
• Strong written and verbal skills, and highly organized.
• Effective interpersonal skills, work well with business stakeholders to understand the short-term and long-term business needs
• Proven ability to work in a team-oriented, collaborative environment.
• Knowledge of regular expressions and at least one scripting language (PERL, Python, PowerShell)

How You’ll Stand Out

• Bachelor’s or equivalent experience (certificates).
• 7-10 yrs. of cybersecurity experience.
• 3-4 yrs. of recent operational security experience (Security Operations Center (SOC), Security Engineering / Administration, Incident Response, Malware Analysis, IDS/IPS Analysis, etc.)
• One or more security related certifications, such as:
• Certified Information Systems Security Professional (CISSP), GIAC, GCIHCertified Information Security Manager (CISM)
• Certified Information Systems Audit (CISA) certification
• Certified Ethical Hacker (CEH)
• Vendor certifications on products and technologies (ex. MSFT, Crowdstrike, Mimecast,OKTA, DUO, etc.)