Senior Cyber Security Engineer @ Public Company Accounting Oversight Board (PCAOB) | Jobright.ai
JOBSarrow
RecommendedLiked
0
Applied
0
Senior Cyber Security Engineer jobs in Ashburn, VA
Be an early applicantLess than 25 applicants
job-post-linkOriginal Job Post
company-logo

Public Company Accounting Oversight Board (PCAOB) · 4 days ago

Senior Cyber Security Engineer

positionAshburn, VA
timeFull-time
remoteOnsite
senioritySenior Level
money$118K/yr - $172K/yr
date5+ years exp

Wonder how qualified you are to the job?

ftfMaximize your interview chances
AssociationFinancial Services
check
Comp. & Benefits

Insider Connection @Public Company Accounting Oversight Board (PCAOB)

Discover valuable connections within the company who might provide insights and potential referrals, giving your job application an inside edge.

Responsibilities

Maintain next generation firewalls, web application firewalls, threat, and malware detection systems.
Perform advanced event and incident analysis, including baseline establishment and trend analysis.
Remain current on cyber security trends and intelligence to guide the security analysis & identification capabilities of the SOC team.
Responsible for the engineering, design, implementation, maintenance, analysis, and administration of PCAOB security technologies.
Participate in and lead projects for security requirements, network design reviews, and security testing for PCAOB network, systems, and other IT teams.
Coordinate with PCAOB systems, network, and development team to ensure network security standards are being followed and implemented correctly.
Evaluate new security technology & emerging threats and provide recommendations to strengthen PCAOB information security environment.
Coordinate the handling and resolution of incidents of security breach.
Identify requirements based upon need or as the result of a security issue that puts organizations systems at risk.
Perform internal and external penetration tests with multiple technologies.
Proactively conduct security threat analysis and recommend solutions to manage network, systems and application vulnerabilities.
Install, configure, and maintain PCAOB information security technologies.
Recommend effective security configurations and architecture.
Liaise with the ODST Teams to effectively communicate and architect security solutions.
Develop documentation to support ongoing security systems operations, maintenance, and specific problem resolution.
Develop effective policies to monitor, detect, and block Web Application threats based on OWASP top 10.
Implement and maintain native Microsoft security tools such as Defender for Cloud, Defender for Endpoints, O365, and Sentinel.
Collaborate with cross-functional teams to ensure and develop a secure architecture in hybrid environment.
Implement effective DLP policy to detect potential data breaches/data exfiltration.
Manage, configure, and audit security services leveraging NIST SP 800-30, NIST 800-37, NIST 800-53a, NIST SP 800-61, NIST 800-171 standards.
Proactively hunt for threats by searching through log, network, and system data to find and identify undetected threats.
Provide support off hours in addition to regular work days to troubleshoot escalated issues and apply production changes where needed.
Work in a multi-office environment and willingness to travel to other offices as required.

Qualification

Find out how your skills align with this job's requirements. If anything seems off, you can easily click on the tags to select or unselect skills to reflect your actual expertise.

Information SecurityNetwork SecuritySecurity Operations CenterIncident ResponseEncryptionIDS/IPSFirewallsSEIMsLog ManagementSyslog AnalysisHTTPTCP/IPVulnerability AssessmentEmail Security GatewayCloud TechnologiesVirtual TechnologiesMapping Business RequirementsSecurity Gaps IdentificationSecurity VulnerabilitiesHTTP ProtocolPalo Alto FirewallsWeb Application FirewallsEndpoint Security TechnologiesDocumentationRisk ManagementOperating SystemsLinuxWindowsSecurity Industry StandardsOWASP

Required

Bachelor’s degree in computer science, information technology, or similar field, or equivalent experience.
Minimum of 5+ years of information security experience with a focus on network, application, and architecture.
Minimum of 5+ years of security operations center experience with security monitoring and incident response.
Specific Information Security related experience including encryption, IDS/IPS, Firewalls, SEIMs and Log Management, syslog analysis, HTTP and TCP/IP analysis, and vulnerability assessment.
Knowledge of email security gateway, cloud, and virtual technologies.
In-depth knowledge of mapping business requirements to technology and ability to identify security gaps at the architecture level.
Knowledge of common security vulnerabilities such as: XSS/CSRF, SQL Injection, Buffer Overflow, and DoS attacks.
Knowledge of the HTTP protocol, including analyzing the request/response.
Demonstrated experience with Palo Alto Firewalls, Web Application Firewalls, and endpoint security technologies.
Proven ability to clearly document and communicate security findings, risk description, risk level, and recommended solutions to stakeholders.
Understanding of networking and operating systems such as Linux and Windows.
Demonstrated knowledge of security industry standards and best practices such as OWASP, NIST, and ISO.
Excellent interpersonal, analytical, and problem-solving skills.
Proven ability to manage multiple tasks/projects.
In-depth knowledge of information security, endpoint security architecture, and software and hardware protection schemes.
Technical expertise in security-related hardware and software solutions and services, particularly in technologies related to anti-virus/anti-malware, IDS/IPS systems, firewalls, CASB and VPN solutions and services.
Knowledge of Microsoft Azure cloud services and infrastructure, with hands-on experience in architecting a secure cloud solution.
Experience in cloud best security practices, including encryption, data protection, network security, and vulnerability management.
Proficiency in popular scripting and automation tools like Python and Azure PowerShell.

Preferred

CISSP, CEH, CCSP, PCCSA, PCCSA, or other relevant certification preferred.

Benefits

Hybrid work option
Generous paid time off
Highly competitive 401(k) match
Comprehensive and competitive health benefit offerings
Supportive paid family leave benefits
Life insurance benefits
Education benefits
Well-being and family resources
Commuter benefits

Company

Public Company Accounting Oversight Board (PCAOB)

twittertwittertwitter
Glassdoor
3.5
company-logo
The PCAOB is a nonprofit corporation established by Congress to oversee the audits of public companies in order to protect investors and further the public interest in the preparation of informative, accurate, and independent audit reports.
dateFounded in 2002
location
Washington, District of Columbia, USA
people-size501-1,000 employees
web-link
https://pcaobus.org

Funding

Current Stage
Late Stage

Leadership Team

leader-logo
ARNOLD RAMOS
Assistant Associate Director at PCAOB's Division of Investigation and Enforcement
linkedin
leader-logo
David Tuminello, MS
Senior Sourcer to PCAOB
linkedin

Recent News

The Business Journals
How PCOAB's planned 2024 changes could impact audits for publicly traded companies - Columbus Business First
2024-04-07
Wall Street Journal
PCAOB Proposes Expanded Liability for Individual Auditors Involved in Firm Violations
2024-02-10
Accounting Today
PCAOB plans more, wider audit firm inspections in 2024
2024-02-10
Company data provided by crunchbase
logo

Orion

Your AI Copilot