Deltek Systems Security Engineer II in United States
4401BRCompany Summary:Better software means better projects. Deltek is the leading global provider of enterprise software and information solutions for professional services, management and IT consulting, architecture and engineering, marketing and advertising agencies, government contractors and other project-based businesses. More than 23,000 organizations and millions of users in over 80 countries around the world rely on Deltek for superior levels of project intelligence, management and collaboration to research and identify opportunities, win new business, recruit and develop talent, optimize resources and streamline operations. Our industry-focused expertise powers project success by helping firms achieve performance that maximizes productivity and revenue.
For more information, visit www.deltek.com.Auto req ID:4401BRExternal Job Title:Global Information Security EngineerPosition Responsibilities:Deltek is looking for a high-energy security engineer to join its Security Team. In this role you’ll define, deliver and support the security program across Deltek’s global technology environment. You’ll advance our enterprise security capabilities and administer our security apps and infrastructure, advising IT Teams and other business units on risk management controls and strategies across our growing lines of business.
You’ll mitigate at the tactical and strategic levels to increase the effectiveness of Deltek’s security management program. The position covers a broad technology portfolio, hence the position requires a creative, risk-based approach. The Global Security Engineer is highly visible, leading security and risk input across multiple projects and tasks. The right candidate is technically agile, relentless and passionate about security, has attention to detail, focused and innovative. The role reports to the Senior Director of Deltek IT Security.
DUTIES AND RESPONSIBILITIES:
Manage the security of user and server endpoints across multiple environments, including remote users, regional data centers and cloud environments.
Monitor and assess network threats, design and implement effective IPS policy and perform network traffic/event analysis
Design and implement security and hardening standards for infrastructure and endpoints at scale
Able to develop security architectures and threat models as inputs to projects and deliver risk guidance and mitigation techniques and strategies
Support and enhance established security processes, policies, standards and procedures to assure alignment with corporate security objectives
Identify and develop automated means for security assessment and remediation using scripting or other tools
Work across teams on various projects as the lead security and risk advisor. Security evaluation of new vendors and technologies and oversee security for third party products
Maintain an up-to-date understanding of emerging threats and information security risks; apply new techniques and security capabilities aligned with overall security objectives and risk tolerance
Be ready and able to respond to security threats and incidents providing 24x7 security support
Develop security controls based on business requirements and enterprise architecture
Work Location:US HDQ-Remote Qualifications:ESSENTIAL KNOWLEDGE & SKILLS:
Bachelor’s Degree or Equivalent Experience Required IT Security: 5 years
Experience in implementing and supporting security architectures: 3 years
Solid understanding of security concepts, principles and practices
Progressive experience with security in a product organization
Professional certification such as: CISSP, SANS/GIAC
Excellent written and communication skills. Position will work closely with Deltek staff in the Philippines, US and EU
Technical Knowledge & Skills:
Strong analytical and creative problem solving skills
Experience with host and network IPS, network and application firewalls, network segmentation, DMZs, NAC, endpoint security and development of security controls
Hands-on experience with administration and securing Microsoft and Linux operating systems, hardware and virtualized environments such as VMWare and AWS
Experience with data protection in transit and at-rest
Experience with IAM, authentication: SSO, ADFS, LDAP, 2FA
Familiar with vulnerability assessment tools, adversary TTPs and mitigations across various environments, including CIS benchmarks, MITRE ATT@CK, Splunk
Ability to develop and implement actionable security mitigation plans and techniques
Amazing customer service skills, can-do attitude
Ability to perform after hours, flexible shifts and be accessible during designated periods when offsite