In the Information Security Operations Engineer III role, you will ensure that ACA's IT systems and underlying infrastructure are implemented to “security in depth” standards and best practices.
This is an on-site role based out of our Corporate office in Spartanburg, SC.
Essential Functions
Reasonable accommodations may be made to enable individuals with disabilities to perform the essential functions
- Develop, document and implement a layered security platform and associated processes enabling core operational requirements for:
- Network and Host-based security
- Applications and data security
- Security monitoring & alerting
- Access management
- Ensure all firewalls, security devices, systems, databases, and applications are logging and that monitoring tools are alerting appropriately
- Research new and emerging security attacks and develop techniques to identify these threats
- Demonstrate extensive experience and knowledge of IT security principles, techniques, and technologies and be able to build, install, and configure security solutions
- Effectively write, modify, and update security solution documentation
- Develop threat models and methodologies using the MITRE ATT&CK Framework and identify solutions to mitigate these threats
- Train and mentor other team members
- Partner with ACA Quality Systems & Infrastructure Management ensuring proper quality management
- Partner with Development and Business Intelligence teams to ensure layered security for new ACA products and services
- Ensure ACA systems and process adhere to ACA security requirements for network, host, applications and access security methodologies
- Lead, document and implement/instrument a cloud security profile, including:
- Service infrastructure and platform security planning requirements
- Security monitoring integration with ACA Infrastructure Support System
- Monitoring and advising and security patching requirements
- Overall ownership and sign-off on security profile readiness for all SaaS, Business Systems, Operational Support Systems and Client Services Systems
Other Duties and Responsibilities:
Effectively collaborate and communicate with Development, Infrastructure, DevOps and LoBs in cross-functional teams and relevant management to report out security operations status
Qualifications
- BS/BA degree in Computer Science, Information Systems or related field
- Possess one or more advanced professional security certifications related to chosen discipline (CISSP, CCSP, CEH)
- Demonstrated understanding of Information Security best practices
- At least 2+ years’ experience implementing layered security practices for network, host, applications, data and access to IaaS, PaaS and SaaS services in a hybrid deployment environment
- Deep experience in developing and deploying security specific solutions including the automation of repeatable security tasks and controls
- Strong practical knowledge of web authentication / authorization standards
- Solid oral and written communication skills
- Solid collaboration skills
- Experience implementing and operating security technologies and processes in a hybrid cloud environment, such as AWS or Azure, and customer premise
- Have 2+ years of cloud-based security run-time management experience
- Experience with software-defined network, compute and storage platforms
- Strong networking fundamentals, including TCP/IP, VLAN’s, DNS, load balancing and software-defined layer 2/3 rule configurations
- Deep experience with security vulnerability and penetration tools such as Tenable, Qualys, ProofPoint, and Pentera
- Implementation and management experience with hardware and software firewalls, AV, and IDS/IPS platforms
Supervisory Responsibility
No Supervisory Experience Required.
Work Environment and Physical Demands
This job operates in a professional office environment. This role routinely uses standard office equipment such as computers, phones, photocopiers, filing cabinets and fax machines.
Position Type/Expected Hours of Work
This is a full-time position with a work schedule of Monday-Friday with some schedule variations as needed. This position will also participate in an on-call rotation as necessary.
Travel
This position will not require travel.
EEO Statement
ACA provides equal employment opportunities (EEO) to all applicants for employment without regard to race, color, religion, gender, sexual orientation, gender identity or expression, national origin, age, disability, genetic information, marital status, amnesty, or status as a covered veteran in accordance with applicable federal, state and local laws. ACA complies with applicable state and local laws governing non-discrimination in employment in every location in which the company has facilities.
California Privacy Notice
"As an employer of California residents, we are dedicated to protecting your privacy rights. Any personal information you provide during the application process will be used solely for permitted internal purposes and will be handled in accordance with applicable privacy laws. By applying to this position, you consent to the collection, use, and disclosure of your personal information as described in our Employee Privacy Notice."
Please note this job description is not designed to cover or contain a comprehensive listing of activities, duties or responsibilities that are required of the employee for this job. Duties, responsibilities and activities may change at any time with or without notice.