Senior Security Capabilities Engineer

Job Description

Overview

Paramount is seeking a Security Engineer to join the Security Capabilities team. The Security Engineer will have a meaningful role in the Security Capabilities team, responsible for developing innovative solutions to tackle complex business and security challenges. The position will work in multi-functional teams to develop new security capabilities and rationalize, optimize, and improve existing security capabilities. The ideal candidate is a security expert in multiple security technologies and engineering domains and applies risk management and threat modeling techniques to achieve successful project outcomes.

Responsibilities
• Identify, prioritize, and evaluate opportunities to improve the security maturity of infrastructure.
• Partner with cross-functional technical teams to ensure security maturity work is prioritized and effectively implemented.
• Liaise with vendors to ensure security products are implemented and configured according to vendor standard methodologies, particularly as products evolve.
• Develop architecture reference models using industry standard baselines, benchmarks, and frameworks (i.e., CIS, NIST, MITRE).
• Drive adoption of Paramount security policies, procedures, and guidelines.
• Occasionally support security incident response and resolution efforts.
• Automate security processes using scripting and other automation tools.
• Stay up to date with the latest security threats, vulnerabilities, and technologies.
• Provide on-going engineering support for SIEM (Security Information and Event Management) technologies, such as Cribl (Stream/Edge/Search), Sumo Logic, and Splunk.

Basic Qualifications:
• 5+ years of experience in cybersecurity, with at least 2 years in a security engineering capacity.
• Professional experience with a diverse range of security technologies and engineering domains, including network security, endpoint security, infrastructure security, cloud security, vulnerability and threat management, encryption, security automation and security log management.
• Leverage industry security frameworks and standards (e.g., National Institute of Standards and Technology, Center for Internet Security, Cloud Security Alliance) to rationalize tools and capabilities and ensure decisions are traceable to business objectives and security priorities.

Additional Qualifications:
• Cybersecurity or Computer Science Degree or substantial equivalent experience.
• CISSP (Certified Information Systems Security Professional) or related security certifications.
• Cloud security certifications such as CCSP or AWS (Amazon Web Service) Certified Security Specialty.
• Utilize threat modeling concepts and frameworks such as the MITRE ATTACK framework to drive engineering and architecture decisions.
• Use a rigorous and methodical approach to analyze problems, parse requirements, and relate them to security controls and capabilities.
• Excellent written and verbal communication skills.

LI#-Hybrid

ADDITIONAL INFORMATION

Hiring Salary Range: $145,000.00 - 155,000.00. The hiring salary range for this position applies to New York City, California, Colorado, Washington state, and most other geographies. Starting pay for the successful applicant depends on a variety of job-related factors, including but not limited to geographic location, market demands, experience, training, and education. The benefits available for this position include medical, dental, vision, 401(k) plan, life insurance coverage, disability benefits, tuition assistance program and PTO or, if applicable, as otherwise dictated by the appropriate Collective Bargaining Agreement. This position is bonus eligible.

https://www.paramount.com/careers/benefits

Paramount is an equal opportunity employer (EOE) including disability/vet.

Jobcode: Reference SBJ-gk7oz8-18-219-8-51-42 in your application.