Security Engineer

Job Description

Remote-friendly

Penguin Random House is looking for a Junior Security Engineer who will be a part of a larger IT organization and focus on cybersecurity to join our team. Within the role you will be responsible for security related tasks, including the implementation of security automation and helping IT shift left (DevSecOps). The responsibilities will vary from providing defense in depth, performing assessments of security architecture, making practical recommendations to reduce risks, helping realize change within the organization, and prevention and remediation of security vulnerabilities within cloud and traditional infrastructure using existing or new solutions.

Major Functions:
• Assessing, designing, implementing, automating, and documenting security solutions and processes for Amazon Web Service (AWS), MS Azure, GCP, SaaS applications and other cloud platforms.
• Develop and maintain technology for security infrastructure components, including but not limited to intrusion prevention/detection, data security (DLP/DRM), identity and access management, IT/network security, security information & event management (SIEM), vulnerability management, code review, etc.
• Perform the assessment of information systems to ensure that appropriate security functions have been included in the systems design and architecture
• Ensuring fulfillment of legal and contractual information security and privacy mandates
• Perform vulnerability and threat assessments and directing responses to network or system intrusions
• Work with the incident response team to contain and investigate security events and prevent future information security breaches with detailed root cause analysis
• Assist in providing information security awareness training to organization personnel
• Propose security policies, standards, and procedures related to information systems security, including Incident Response
• Review Risk Management Framework (RMF) based procedures and provide feedback on cybersecurity processes from project inception through implementation, including Risk Assessments
• Develop technical solutions and new security tools to help mitigate security vulnerabilities and automate repeatable tasks
• Available to work off hours during the evenings and weekends as required, sometimes with little advanced notice

Required Knowledge and Skills:
• Knowledge of DevSecOps environments and processes
• Knowledge of container technologies, including Docker and Kubernetes
• An understanding of encryption tools, best practices, and forensics
• Knowledge of network based, system level, and application layer attacks and mitigation methods
• Experience with analyzing pertinent security data from SIEM solutions, including cloud audit logs and reports
• Knowledge of cyber defense and vulnerability assessment tools, including open source tools and their capabilities
• Knowledge of technology and security topics including network and application security, infrastructure hardening, security baselines, web server, and database security
• Continually keep abreast of current and emerging cyber security threats, technologies, and defenses

Education and Experience requirements:
• Bachelor's Degree or equivalent work experience
• Industry recognized certification in security is a plus (e.g. CISSP, CISA, CISM, CRISC, CEH, etc.)
• Requires 3+ years' experience in information technology with a focus on infrastructure, engineering, architecture or development

Full-time employees are eligible for our comprehensive benefits program. Our range of benefits include, but are not limited to, Medical/Prescription drug insurance, Dental, Vision, Health Care/Dependent Care Flexible Spending Account, Health Savings Account, Pre-Tax and Roth 401(k), Short and Long-Term Disability Insurance, Life/AD&D Insurance, Commuter Benefits, Student Loan Repayment Program, Educational Assistance & generous paid time off.

Jobcode: Reference SBJ-rvk4o0-18-188-108-54-42 in your application.