Sorry, this job is no longer accepting applications. See below for more jobs that match what you’re looking for!

Security Automation Engineer

Expired Job

Iron Mountain Incorporated Collegeville , PA 19426

Posted 4 months ago

Overview

Iron Mountain enables 94% of the Fortune 1000 to smartly and securely manage their physical and digital information assets. With unmatched innovation and collaboration, our teams create information management solutions for our customers data, no matter what format, location or lifecycle stage its in and no matter where its kept. We are more than 17,000 people strong and growing. Weve been a trusted records management leader since 1951.

Iron Mountain is an equal opportunity employer, and does not unlawfully discriminate on the basis of race, color, religion, sex, national origin, marital status, age, sexual orientation, gender identity characteristics or expression, disability, medical condition, U.S. Military or veteran status or other legally protected classifications in making employment decisions.

Responsibilities

SUMMARY

In this role, the Principal Engineer (Automation) is responsible for the technical oversight of the enterprises information security technology portfolio and program. The Principal Engineer is a technologist and a subject matter expert (SME) for all information security platforms and is responsible for automation, orchestrating security engineering solutions.

The Principal Engineer takes a central role in actively promoting a culture of information security throughout the Technology organization as well as across the enterprise. The scope of this position spans the organizations technology solutions including software applications, infrastructure, data management, data integration and vendor solutions. The Principal Engineer will develop a thorough understanding of all IT systems and how those systems are secured. The Principal Engineer will be responsible for advising the Infrastructure, Product Management teams on emerging vulnerabilities and newly introduced risks toenterprisesystems, and takes a proactive approach in continually assessing the security of those systems throughout their lifecycle, providing recommendations for enhancing security and adapting to new threats and vulnerabilities.

RESPONSIBILITIES

  • Proactively recommend and drive security enhancements to management.

  • Integrate with Peer groups and industry experts to measure our programs and results

  • Staff monitoring, oversight, and administrative tasks

  • Implement and use software to protect organizations sensitive information.

  • Participate in and manage Infrastructure portions of projects in coordination with Project Managers.

  • Work closely with application development teams to ensure secure coding standards/practices

  • Coordinate and monitor vulnerability scans, application and network penetration testing, risk assessments, tabletop exercises

  • Work collaboratively with other technical teams to address system and application vulnerabilities.

  • Work with Internal Audit and other consultants as required

  • Engage and participate in industry peer groups.

  • Develop, implement and monitor a strategic, comprehensive enterprise information security and IT risk management program to ensure the integrity, confidentiality and availability of information owned, controlled or processed by the organization.

  • Cross-department collaboration and communication to ensure appropriate security processes, procedures and tools are installed, monitored, and effectively operating and alerting.

  • Strategy, planning, and operational excellence through continuous improvement and automation.

  • Manages service levels, control effectiveness, control failure remediation, operational automation and oversight of information security team

  • Oversee the administration of all information security technology platforms, ensuring that technologies are optimally configured and maintained to provide maximum uptime and protection to the organizations information systems.

  • Play a primary role in the selection of new information security technologies.

  • Conduct regular technical risk assessments/audits of systems and infrastructure.

  • Oversee and directly participate in the installation, configuration, and monitoring of new information security technologies.

  • Liaise with corporate compliance, audit, legal and HR management teams as required, including overseeing annual audits and reporting as required.

  • Develop, maintain and publish up-to-date security standards and guidelines, and oversee training and dissemination of security policies and practices.

  • Provide technical leadership for all information security platforms.

  • Serve as the escalation point for technical issues related to information security platforms.

  • Take the lead role in responding to and containing information security related incidents.

  • Conduct regular technical risk assessments/audits of systems and infrastructure.

  • Promote a culture of information security across all business units.

Qualifications

REQUIREMENTS

  • Bachelors in Information Technology, Computer Science, Engineering or related field.

  • CISA, CISSP or similar certification required. In-depth knowledge of applications, systems, network and data security, telecommunications, security operations, and associated hardware, software and protocols.

  • 10 + years of full time experience designing, architecting and implementing information security technology solutions.

  • 10+ years of full time experience in dedicated, technical information security roles.

  • Background in information technology in an area such as; networking, programming, database management or systems administration.

  • Strong knowledge of information Security Principals and practices.

  • Strong knowledge in the use of information security and networking tools such as; Wireshark.

  • Experience performing packet analysis.

  • Strong knowledge of security orchestration and automation technologies.

  • Strongknowledge of IDS/IPS, firewalls, proxies and other network security technologies.

  • Strong knowledge of host-based and advanced threat protection information security technologies.

  • Strong knowledge of Incident Analysis and response concepts and techniques.

MINIMUM SKILLS AND QUALIFICATIONS

  • Demonstrated experience using a scripting language to access API

  • Production experience in Python, Perl or Bash

  • RHEL Certification or 5 yrs managing a Linux Environment

  • SANS Certification such as SEC573 Automating Security with Python

  • Linux CLI experience, Windows Powershell

  • Demonstrated experience with REST or SOAP

  • Experience with MySQL, Maria, or Postgres

  • Production Experience with Phantom, Siemplify, Resilient or other SOAR.

  • Ansible/Puppet/Chef automation orchestration experience

Compliance Obligations:

It is the responsibility of every Iron Mountain employee:

  • to comply with all applicable laws, rules, regulations, and company policies

  • to exhibit ethical behavior in accordance with our Code of Ethics and Business Conduct

  • to complete required training within the allotted time frame

Iron Mountain is an equal opportunity employer, and does not unlawfully discriminate on the basis of race, color, religion, sex, national origin, marital status, age, sexual orientation, gender identity characteristics or expression, disability, medical condition, U.S. Military or veteran status or other legally protected classifications in making employment decisions.

Requisition # 2018-18510

Category Information Technology

Type Full-Time


See if you are a match!

See how well your resume matches up to this job - upload your resume now.

Find your dream job anywhere
with the LiveCareer app.
Download the
LiveCareer app and find
your dream job anywhere
lc_ad

Boost your job search productivity with our
free Chrome Extension!

lc_apply_tool GET EXTENSION

Similar Jobs

Want to see jobs matched to your resume? Upload One Now! Remove
Information Management Automation Lead

Pfizer

Posted 7 days ago

VIEW JOBS 12/8/2018 12:00:00 AM 2019-03-08T00:00 ROLE SUMMARY The Information Management Automation Lead is accountable for identifying and deploying automation opportunities across the Information Management organization. The purpose of this position will be to implement automation technologies across IM operational tasks beginning with Robotic Process Automation (RPA) and expanding those capabilities over time into the areas of Intelligent Process Automation and beyond. ROLE RESPONSIBILITIES * Champion automation across the IM organization, identify new opportunities, oversee active projects and day-to-day operations, and lead the organization to incorporate new cutting-edge technologies as they emerge. * Develop a vision for how automation can be deployed to further strengthen IM's global operations. * Engage IM leaders in recognizing and prioritizing opportunities for automation. * Manage the opportunity hopper and oversee execution of individual projects through to successful deployment. * Establish and lead appropriate process governance and SDLC procedures to maximize value from each automation. * Manage ongoing operations in collaboration with internal and external partners. * Quantify the benefits of deployed applications. * Identify and incorporate new technologies that enhance automation capabilities. BASIC QUALIFICATIONS * BS/MS in Computer Science, Life Sciences, Business, engineering, statistics or a related discipline with a comprehensive understanding of data and systems used in the R&D processes. * Minimum 5+ years pharmaceutical industry experience in (or supporting) any of the following disciplines: clinical drug development, clinical trial management, safety surveillance and reporting, clinical project management, R&D or WSR reporting and analytics, or regulatory affairs. Related experience in other industries will be considered. * Excellent analytical skills with demonstrated ability to investigate and solve problems. * Minimum of 5+ years of project and/or program management experience. * Knowledge of application system management and change control processes, application validation and implementation in a GxP environment. * Knowledge of Pharmaceutical metadata and standards. * Experience with query tools/data extraction techniques (e.g., SQL, PL/SQL, Brio, MS_Access) is a plus. * Demonstrated customer relationship skills and capabilities to collaborate with teams. * Experience working with international colleagues, with skills to understand and present the "big picture" in terms of potential implications. * Ability to communicate complex information and analyses to a variety of audiences in both verbal and written format. Sunshine Act Pfizer reports payments and other transfers of value to health care providers as required by federal and state transparency laws and implementing regulations. These laws and regulations require Pfizer to provide government agencies with information such as a health care provider's name, address and the type of payments or other value received, generally for public disclosure. Subject to further legal review and statutory or regulatory clarification, which Pfizer intends to pursue, reimbursement of recruiting expenses for licensed physicians may constitute a reportable transfer of value under the federal transparency law commonly known as the Sunshine Act. Therefore, if you are a licensed physician who incurs recruiting expenses as a result of interviewing with Pfizer that we pay or reimburse, your name, address and the amount of payments made currently will be reported to the government. If you have questions regarding this matter, please do not hesitate to contact your Talent Acquisition representative. EEO & Employment Eligibility Pfizer is committed to equal opportunity in the terms and conditions of employment for all employees and job applicants without regard to race, color, religion, sex, sexual orientation, age, gender identity or gender expression, national origin, disability or veteran status. Pfizer also complies with all applicable national, state and local laws governing nondiscrimination in employment as well as work authorization and employment eligibility verification requirements of the Immigration and Nationality Act and IRCA. Pfizer is an E-Verify employer. Pfizer is an equal opportunity employer and complies with all applicable equal employment opportunity legislation in each jurisdiction in which it operates. Pfizer Collegeville PA

Security Automation Engineer

Expired Job

Iron Mountain Incorporated