Senior Security Engineer

Job Description

* CWT is one of the worlds leading digital travel management companies and as a Business-to-Business-for-Employees (B2B4E) travel management platform, companies and governments rely on us to keep their people connected anywhere, anytime, anyhow and across six continents, we provide their employees with innovative technology and an efficient, safe and secure travel experience. Our Technology division was formed to lead on our CWT 3.0 digital transformation strategy. With a team of highly skilled and experienced individuals, they deliver and manage efficient quality, and innovative travel technology solutions and technology services for CWT and its customers worldwideThis role will be part of the Cyber Security Engineering & Operations team within CWTs Global Security and Risk department. You will support the global operations by participating in the Security engineering efforts in evaluating, designing, deploying and configuring security solutions. The role offers some exciting opportunities including the potential to develop your talents and skills with many different security technologies. Position Overview
• The Security Engineer is a subject matter expect within managing and supporting security technology platforms. The candidate needs to maintain proficiency within core Cyber Security Defense and Detection functions such as the list below or the ability to expand their skill set and knowledge.
  • Endpoint protection (Antivirus, Application/device controls, EDR, DLP, etc.)
  • Network based protection systems (IDS/IPS, WAF, firewall governance, Web Content Filtering, NDR, email protection, DLP, Deception, etc.)
  • Server based protection (configuration and vulnerability scanning technologies, file integrity monitoring, tokenization, encryption, etc.)
  • Cloud security (SaaS, O365, CASB, public/private cloud providers, etc.)
• Preferred candidates would have hands on experience in one to many of these specific technology products/vendors:
  • Device Security: McAfee ePO, Crowdstrike, Tripwire Enterprise & IP360, Thales Vormetric, Protegrity
  • Network based protection systems: Palo Alto, Fortigate, McAfee Web Content Filtering & DLP, Citrix Netscaler, Tufin, Extrahop, Proofpoint, Attivo
  • Cloud security: Crowdstrike, MSFT O365 suite, AWS, OCI, Azure
  • Identity technologies: Sailpoint, CyberArk, Ping, RSA Auth Manager, HashiCorp Vault
• The ideal candidate would also have analytical and troubleshooting skills, which could include:
  • Investigating a root cause or troubleshooting an issue across multiple platforms from Windows, Linux, Unix, network, PCAPs, Log analysis, etc.
  • Researching vendor documentations and best practices for optimally implementing and maintaining technology
  • Working with vendor support or across internal teams to resolve an issue or implement/upgrade a technology.
Ensures systems and applications are implemented with compensating controls to meet regulatory requirements (GDPR and California Consumer Privacy Act (CCPA) as well as other enterprise compliance such as PCI DSS, SOC, Cyber Essentials, NIST, etc. requirements., * Position Requirements
• Bachelors Degree in Computer Science or related field or equivalent experience and Certified Information Systems Security Professional (CISSP) and/or Certified Cloud Security Certification (CCSP) and/or AWS certifications (or ability to obtain)
• 3-10 years of hands-on experience in all technical security domains
• Strong technical background and great understanding on emerging security trends
• Background and style that elicits respect in the organization through management style, technical depth, customer service and results
• Ability to influence others where there is no direct authority
• Deep technical knowledge IT Network, Infrastructure, Software, Cloud, Mobile -Scripting, coding, or automation skills (Python, Perl, Java, .NET, PowerShell, Bash)
• Knowledge of various emerging technologies and adoption of security compliance initiatives to secure data
• Knowledge of security related government regulatory requirements and emerging trends and issues
Desired Skills Leadership
• Highest personal and professional integrity and strong work ethics
• Ability to articulate vision of transformation efforts and a sense of mission
• Willingness to take change and provide direction
• Results orientation, willingness to commit to a direction and drive operations to completion
• Demonstrated ability to manage adversity and challenging situations
Relationship Management
• Ability to manage senior relationships across all CWT organizations
• Ability to develop cooperative and constructive working relationships
• Ability to handle complaints, settle disputes and resolve conflicts and negotiate with others
• Collaborative team player orientation towards work relationships, strong culture awareness
Project Oversight and Decision Making
• Highly developed skills in priority setting and alignment of project priorities with Departmental strategy
• Ability to break down complex problems and projects into manageable goals
• Ability to get to the heart of the problem and make sound and timely decisions to resolve problems
• Ability to create detail documentation on tool operations and functions
• Ability to follow vendor documentation and best practices
• Ability to think analytically and perform troubleshooting and foresee tool opportunities and challenges

Keyskills :
salescyber securitypoccloud securityfirewalls