Deltek Systems Security Engineer II in United States

4401BRCompany Summary:Better software means better projects. Deltek is the leading global provider of enterprise software and information solutions for professional services, management and IT consulting, architecture and engineering, marketing and advertising agencies, government contractors and other project-based businesses. More than 23,000 organizations and millions of users in over 80 countries around the world rely on Deltek for superior levels of project intelligence, management and collaboration to research and identify opportunities, win new business, recruit and develop talent, optimize resources and streamline operations. Our industry-focused expertise powers project success by helping firms achieve performance that maximizes productivity and revenue.

For more information, visit www.deltek.com.Auto req ID:4401BRExternal Job Title:Global Information Security EngineerPosition Responsibilities:Deltek is looking for a high-energy security engineer to join its Security Team. In this role you’ll define, deliver and support the security program across Deltek’s global technology environment. You’ll advance our enterprise security capabilities and administer our security apps and infrastructure, advising IT Teams and other business units on risk management controls and strategies across our growing lines of business.

You’ll mitigate at the tactical and strategic levels to increase the effectiveness of Deltek’s security management program. The position covers a broad technology portfolio, hence the position requires a creative, risk-based approach. The Global Security Engineer is highly visible, leading security and risk input across multiple projects and tasks. The right candidate is technically agile, relentless and passionate about security, has attention to detail, focused and innovative. The role reports to the Senior Director of Deltek IT Security.

DUTIES AND RESPONSIBILITIES:

  • Manage the security of user and server endpoints across multiple environments, including remote users, regional data centers and cloud environments.

  • Monitor and assess network threats, design and implement effective IPS policy and perform network traffic/event analysis

  • Design and implement security and hardening standards for infrastructure and endpoints at scale

  • Able to develop security architectures and threat models as inputs to projects and deliver risk guidance and mitigation techniques and strategies

  • Support and enhance established security processes, policies, standards and procedures to assure alignment with corporate security objectives

  • Identify and develop automated means for security assessment and remediation using scripting or other tools

  • Work across teams on various projects as the lead security and risk advisor. Security evaluation of new vendors and technologies and oversee security for third party products

  • Maintain an up-to-date understanding of emerging threats and information security risks; apply new techniques and security capabilities aligned with overall security objectives and risk tolerance

  • Be ready and able to respond to security threats and incidents providing 24x7 security support

  • Develop security controls based on business requirements and enterprise architecture

Work Location:US HDQ-Remote Qualifications:ESSENTIAL KNOWLEDGE & SKILLS:

  • Bachelor’s Degree or Equivalent Experience Required IT Security: 5 years

  • Experience in implementing and supporting security architectures: 3 years

  • Solid understanding of security concepts, principles and practices

  • Progressive experience with security in a product organization

  • Professional certification such as: CISSP, SANS/GIAC

  • Excellent written and communication skills. Position will work closely with Deltek staff in the Philippines, US and EU

Technical Knowledge & Skills:

  • Strong analytical and creative problem solving skills

  • Experience with host and network IPS, network and application firewalls, network segmentation, DMZs, NAC, endpoint security and development of security controls

  • Hands-on experience with administration and securing Microsoft and Linux operating systems, hardware and virtualized environments such as VMWare and AWS

  • Experience with data protection in transit and at-rest

  • Experience with IAM, authentication: SSO, ADFS, LDAP, 2FA

  • Familiar with vulnerability assessment tools, adversary TTPs and mitigations across various environments, including CIS benchmarks, MITRE ATT@CK, Splunk

  • Ability to develop and implement actionable security mitigation plans and techniques

  • Amazing customer service skills, can-do attitude

  • Ability to perform after hours, flexible shifts and be accessible during designated periods when offsite