AWS Information Security Engineer II, Plano

Job Description

Summary

As an AWS Information Security and Data Privacy Engineer II at O’Neil, you will collaborate with internal teams that deal with PHI belonging to a large number of patients and it is imperative that this data is secured. We are building our security team to help safeguard this information, and your work will improve our overall security posture.

From helping us implement detection capabilities for anomalous behavior, threat-hunting, spearheading security incident response, help conducting training for our engineering team to keeping up with industry best practices, you will be empowered to do the work that is most important for the organization. This is a technical role that will be involved in different aspects of the security incident response life-cycle.

This role requires four-days in-office work for the first 6 months of employment. .

Compensation

$100K to $120K yearly, + 10% Bonus Target

Location and Schedule

3100 E Plano Pkwy, Plano, TX 75074

Monday to Friday; 8am to 5pm. *Four days in-office, one remote day allowed, no exceptions

Duties and Responsibilities

Configuring, debugging and implementing Firewalls

Managing and maintaining cloud infrastructure including Virtual Machines (VMs) and Networking components

Implementing and managing cloud security policies and best practices

Documenting cloud and infrastructure processes for training purposes

Assist in implementing Security Information and Event Management (SIEM), which includes but is not limited to; maintaining logs, assisting in developing company best practices for security alert correlations, may perform root case analysis after incidents Assist with Endpoint Detection and Response (EDR) vendor analysis and deployment, which includes, but is not limited to; partnering with IT to develop a decision matrix for EDR vendor selection, assist with deployment, assist with developing patterns for automatic response to identified threats

Perform regular privacy assessments and impact analysis on databases and operational processes by developing effective tools, training, and guidance to help identify and mitigate risk. This includes data anonymization, pseudonymization and encryption

Assist with detection, analysis, and containment of an incident

Help identify key performance metrics for security IR and implement instrumentation for those metrics

Maintain, manage and prioritize hardware, software, systems and/or product backlog, while actively identifying risks, constraints, and dependencies that would impact roadmap

Demonstrate, integrate, and collaborate on enhancing existing security solutions and services to address any gaps or deficiencies

Assist with security incident response drill scenarios and lead tabletop exercises

Ensure proper training for stakeholders regarding their incident response roles and responsibilities in the event of a breach

Collaborate with internal teams to ensure the data retention or system requirements, user-facing privacy controls, new or existing software, and big data solutions enable the business to be data driven while protecting the data assets

Assist to conducts structured and unstructured data scans, testing, and debugging of applications by using a variety of technical privacy tools to increase compliance and documentation of procedures and information assets

Studies and interprets past privacy events and current privacy threats to improve privacy compliance using advanced technologies and design principles to develop and implement new tools and processes

Assist both internal and external teams on data governance strategy, updates to legal regulations, and direction on future roadmaps Collaborate with vendors on data and privacy standards

Qualifications & Requirements

Bachelor’s Degree in computer science, IT, systems engineering, or equivalent experience

3+ years of experience in the security industry working in any combination of the following areas: Risk management, cloud operations and engineering, network security monitoring, log analysis, static and dynamic malware analysis, NIST Kill Chain, MITRE ATT&CK framework, threat hunting, SIEM, EDR

AWS Cloud Experience: Managing and Maintaining

AWS Cloud infrastructure and threat landscape

AWS Certification Highly Preferred: AWS Certified Solution Architect - Associate (at least)

Experience responding to security events

Excellent written and verbal communication, facilitation, and presentation skills to collaborate effectively with software engineering teams

Implementing security detection capabilities

Proven ability to make decisions and perform complex problem-solving activities under pressureCompany Description

Data Analysis Inc (DAI) is the parent company of a global group of privately held firms in fields ranging from institutional equity markets to digital investment news and information to omnichannel communication solutions. DAI provides leadership, oversight, and strategic direction and shapes the purpose, vision, and mission of these firms. Shared services include administration, finance, and human resources. DAI’s global team embraces an entrepreneurial focused environment fostering collaboration, teamwork, and creativity with a dynamic culture that emphasizes the value of its associates and their dedication to success. We strive to be leaders in our field, innovators with a history of being in the forefront of using technology to deliver our services.

Full-time