Goldbelt, Incorporated · 2 days ago
Information Security Engineer
Wonder how qualified you are to the job?
Maximize your interview chances
Information Technology
Insider Connection @Goldbelt, Incorporated
Responsibilities
Design, implement, and maintain security systems, including firewalls, intrusion detection/prevention systems, and endpoint protection
Develop and deploy network security measures such as VPNs, encryption, and secure access solutions
Conduct regular vulnerability assessments and penetration testing to identify security risks
Develop and implement strategies to mitigate identified vulnerabilities and ensure timely patch management
Assist in investigations and response to security incidents, including forensic analysis, reporting, and remediation efforts
Assist in developing and maintaining incident response plans and procedures
Assist in ensuring compliance with relevant laws, regulations, and standards (NIST, GDPR, HIPAA, PCI-DSS)
Conduct regular risk assessments and audits to evaluate the effectiveness of security measures
Develop and maintain comprehensive System Security Plans (SSPs) and Plan of Action & Milestones (POA&M) to track and address security vulnerabilities and compliance issues
Develop, implement, and enforce applicable security frameworks and standards, including NIST 800-171, ISO/IEC 20000/27001, and CMMC security controls
Participate in the development and review of information system security policy and standards
Support the development and maintenance of system asset lists, hardware, and software baselines
Provide detailed security-related reports including data, analyses, and conclusions upon completion of tests, scans, and assessments
Verify and document the implementation of security controls necessary to achieve compliance
Keep management apprised of impending areas of concern, verbally and in writing
Assist in developing various policy documents (SOPs/CONOPs) as required, including policies regarding Configuration Management, IS Sanitization, Media Security, Password Policy, Business Continuity, Incident Response, Disaster Recovery, and Security Assessments
Assist in maintaining and maturing existing information security and risk policies
Initiate and lead ongoing information security maturity assessment processes and training
Identify and report on key performance indicators for implemented security measures
Maintain knowledge of the threat landscape by monitoring threat intelligence sources
Develop, implement, and enforce security policies, procedures, and protocols
Provide training and awareness programs to educate staff on security best practices and protocols
Review logs of network traffic and system activity for signs of potential security breaches
Analyze security logs and reports to identify trends, anomalies, and areas for improvement
Work closely with IT operations to integrate security into system and software development processes
Communicate security issues and recommendations to stakeholders, including Executives, IT staff, and end-users
Qualification
Find out how your skills align with this job's requirements. If anything seems off, you can easily click on the tags to select or unselect skills to reflect your actual expertise.
Required
Bachelor's degree in computer science, cyber security, or a related discipline, or equivalent experience
Certified Information Systems Security Professional (CISSP)
Certified CMMC Registered Practitioner (RP)
Minimum 4 – 5 years of experience in information security engineering or a related role
Experience with security frameworks and standards
Ability to travel up to 25%
Ability to successfully pass a background check
Preferred
Certified CMMC Professional (CCP)
Certified CMMC Assessor (CCA)
Certified Information Security Manager (CISM)
Certified Information Systems Auditor (CISA)
Certified Ethical Hacker (CEH)
Previous experience working with Alaska Native Corporations (ANCs) and/or previous exposure to Alaska Native cultures
Previous government contracting experience
Benefits
Medical insurance
Dental insurance
Vision insurance
401(k) plan with company matching
Tax-deferred savings options
Supplementary benefits
Paid time off
Professional development opportunities
Company
Goldbelt, Incorporated
Goldbe ltd is a facilities services company specializing in facility operations and maintenance services.
Funding
Current Stage
Late StageCompany data provided by crunchbase