JBA International · 5 months ago
Security Engineer
Napa, California, US
Full-time
Onsite
Mid Level
$120K/yr - $158K/yrJBA International is seeking a Security Engineer to enhance their security infrastructure. The role involves implementing and supporting security tools, conducting security assessments, and managing incident responses while collaborating with various teams to ensure robust security measures across all domains.
ConsultingHealth CareLegalProfessional Services
No H1B
U.S. Citizen Only
Responsibilities
Select, implement, and support security tools and systems for preventative, detective, and analysis purposes
Conduct regular security assessments, red/purple team pen-tests with external vendors and with internal tooling
Provide high-level security engineering across application security, network security, cloud security and infrastructure security domains
Design, implement, and monitor security controls against CIS /NIST
Develop Advanced Threat hunting rules, playbooks, and automations. Build in advanced threat intel into detection rules and analytics
Manage SIEM and alerting, being the last line of escalation for alerts, leading investigations alerting across all security stack products
Review new projects and designs for appropriate security policies, procedures, and controls. Assist with the design of security environments for new and existing systems
Respond to security incidents as a first responder, lead the resolution of security issues, and perform forensic analysis post resolution. Provide analysis and recommendations to prevent or mitigate future incidents, and work with all teams necessary to implement the recommendations
Research new vendor offerings and industry trends and recommend new software, process, and policy solutions
Create and maintain a security framework, security roadmap, security awareness program, security architecture design and documentation, and technical standards, policies, and guidelines related to security
Lead the security portion of regulatory and internal audits
Prepare and present written and verbal security reports, analysis, and summaries to the CEO, executives, and Board
Automate routine work and alerting
Prepare and present recommendations and updates on projects, support and future needs planning both in writing and verbally
Provide mentorship to the IT staff on security related issues
Locate and choose new learning opportunities to enhance and further knowledge of Department practices
Draft and recommend technology plans and requirements for business needs
Maintain technical proficiencies on current and prospective hardware and software
Establish and maintain relationships with key contacts in the community including volunteer centers and non-profit organizations
Participate in community events, community volunteer boards & associations
Qualification
Required
Select, implement, and support security tools and systems for preventative, detective, and analysis purposes
Conduct regular security assessments, red/purple team pen-tests with external vendors and with internal tooling
Provide high-level security engineering across application security, network security, cloud security and infrastructure security domains
Design, implement, and monitor security controls against CIS /NIST
Develop Advanced Threat hunting rules, playbooks, and automations. Build in advanced threat intel into detection rules and analytics
Manage SIEM and alerting, being the last line of escalation for alerts, leading investigations alerting across all security stack products
Review new projects and designs for appropriate security policies, procedures, and controls. Assist with the design of security environments for new and existing systems
Respond to security incidents as a first responder, lead the resolution of security issues, and perform forensic analysis post resolution. Provide analysis and recommendations to prevent or mitigate future incidents, and work with all teams necessary to implement the recommendations
Research new vendor offerings and industry trends and recommend new software, process, and policy solutions
Create and maintain a security framework, security roadmap, security awareness program, security architecture design and documentation, and technical standards, policies, and guidelines related to security
Lead the security portion of regulatory and internal audits
Prepare and present written and verbal security reports, analysis, and summaries to the CEO, executives, and Board
Automate routine work and alerting
Prepare and present recommendations and updates on projects, support and future needs planning both in writing and verbally
Provide mentorship to the IT staff on security related issues
Locate and choose new learning opportunities to enhance and further knowledge of Department practices
Draft and recommend technology plans and requirements for business needs
Maintain technical proficiencies on current and prospective hardware and software
Establish and maintain relationships with key contacts in the community including volunteer centers and non-profit organizations
Participate in community events, community volunteer boards & associations
Company
JBA International
JBA International provides financial, life science, healthcare, legal, and office administration services.
Founded in 1988
201-500 employees
Funding
Current Stage
Growth StageLeadership Team
Jacqueline Buickians
Chief Executive Officer
Company data provided by crunchbase