Cyber Security Engineer / Specialist

Overview Join the leader in providing smarter solutions for a safer world. Kastle is the premier provider of property technology (PropTech) solutions that protect commercial real estate, multi-family residential, global enterprises, educational institutions and critical government facilities. We are looking for a Cyber Security Engineer that will work as part of our IT infrastructure team. This position is fully remote, but we ask that this person reside in either the Eastern or Central time zones (1 hour time difference). As a Security Engineer, you will lead the activities to plan, design, configure, deploy, and manage leading security solutions, tools, and operational process to prevent, detect, and reduce the impact of attacks against the firm digital assets.

This is a proactive and hands-on role working with Cloud Services, Infrastructure, Application and Mobile Security, Firewalls, IDS/IPS, IAM, SSO/MFA, End-Point MSS, Security Scans, Reports and Awareness Activities, Incident Response, Vendor Tools and Services Management, Security Questionnaires, Testing, Risks Remediation and Compliance Reports. In addition to a great work environment, we provide excellent benefits (Medical/Dental/Vision, 401K, Tuition/Training Assistance, Wellness Program, etc.) and we are proud to have been named a Top Workplace for 2022 by Energage! Please visit our website for more information about our products & services and working with us. Responsibilities * Develop and maintain deep technical knowledge of daily security threats, industry and advisory services, and protections related to the company's infrastructure, networks, data services, business systems, websites, applications, cloud and mobile services * Perform and manage security awareness activities, threat and vulnerability assessments, regular internal security scans, and vendor pen testing on networks, systems, websites, external facing and mobile applications, and work with key stakeholders to eliminate vulnerabilities found or otherwise mitigate associated risks as priority * Lead/participate in company's security activities and incident response, escalations, and coordination with service providers, and internal technology, business and corporate teams * Develop, implement and monitor security standards and processes. Coordinate with other departments to promote awareness and training on security protocols and capabilities * Perform the deployment, integration and configuration of security solutions and enhancements to existing environments, including firewalls, IDS/IPS, VPN, RDS, IAM, MFA, SSO, endpoints, Azure AD, servers, PC, networks, database, applications and cloud services, in accordance with industry best operating procedures and the enterprise's security and standards documents * Work with internal & external partners to develop and share SOC 2 and 3, FISMA, SEC, and IT general controls information.

This includes knowledge of enterprise processes/controls, access management, data center/clouds services, change management and application operations * Review and analyze audit evidence for all controls and issues. Work with IT, business and corporate teams to ensure the correct and expected evidence is generated in a timely manner * Participate in planning, design and execution of Disaster Recovery and Business Continuity plans * Provides training to IT and corporate staff on security processes, awareness and compliance * Identity vulnerabilities and risks in the company's hardware and software environments * Proactively monitor and manage any attacks and intrusions. Recognize the potential threat or attempted breach by closing off security vulnerabilities and daily actions and communication * Daily review of Kastle's operational data, internal and vendor security tools, logs, scans and alerts to identify, report, and remedy vulnerabilities.

Configure and analyze security tools and software. Coordinate with IT and end users to minimize service disruptions and protect assets * Foster an innovative, positive, and team-oriented work environment. Play an active role in counseling stakeholders, sharing details, and supporting business and customer needs * Engage with all developments and enhancements activities within the organization and recommend changes to ensure security is maintained and meeting documented standards and compliance controls Qualifications * Bachelor's degree with 3+ years of Security Engineering and Operations Experience.

This includes excellent knowledge of the following: * Key Security Standards, Processes and Compliance (e.g., SOC 2) * Next-Generation Firewall Technologies. We use Fortinet Fortigate, but other NGFW experience is also a plus. * Endpoint Protection Solutions (working with MSS vendors) * Security Vulnerability Scans and Pen Testing, Risks and Mitigation * Security Incident Response, Escalation and Communication * Industry Security Information and Daily Advisory Services * Cloud Technologies and Services Security (Azure Cloud is a plus * Proficiency in Networking Security and Monitoring Solutions * Security certifications are a plus but are not required Equal Opportunity Statement At Kastle, we believe that diversity makes us stronger - at work and in the world. Kastle Systems International, LLC is an Equal Opportunity / Affirmative Action employer.

All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability, age, protected veteran status, marital status, pregnancy or any other basis protected by applicable federal or state laws.