Apply on Employer Site

Educational Media Foundation K-LOVE & Air1 Media Networks · 1 day ago

Cybersecurity Engineer II

Franklin, TN

Full-time

Onsite

Mid Level

3+ years exp

Educational Media Foundation is a nonprofit, multi-platform media company focused on drawing people closer to Christ. The Cybersecurity Engineer II will manage cybersecurity risks, implement security technologies, and drive vulnerability management while collaborating with the Technology Group on high-impact initiatives.

Internet RadioMusicPublishingReligion

Responsibilities

Manage cybersecurity risk identification and mitigation across enterprise systems, networks, cloud, and web environments

Assess digital information risk using cybersecurity tools and methodologies; facilitate remediation and provide actionable recommendations to leadership

Review cloud toolsets to identify protection gaps and propose appropriate solutions, including cost estimates

Identify and implement opportunities for improved reporting, detection, and IR automation

Monitor on-premises and cloud environments using in-place tools, responding promptly to identified threats or anomalies

Identify opportunities to automate incident response to reduce time to remediation

Drive remediation efforts stemming from internal/external audits, assessments, or pen tests

Identify and recommend improvements to cybersecurity-related policies, procedures, playbooks and standards

Stay current on cybersecurity methodologies and technologies through certification or vendor-led training

Monitor and advise on cybersecurity threats and trends, recommending best defenses to reduce enterprise risk

Evaluate asset compliance with cybersecurity policies and make improvement recommendations

Serve as project lead for cybersecurity-specific initiatives

Collaborate with senior Technology Group staff to support strategic and tactical projects by offering security best practice guidance

Provide application support for both on-prem and cloud security technologies (e.g., EDR, DLP, SIEM, FIM, IDS/IPS, NGFW, CASB, IAM)

Manage PCI compliance obligations and implement cybersecurity initiatives that safeguard operational integrity while meeting legal, regulatory, and Ministry standards

Analyze and recommend optimizations for security tools and systems, identifying needs that may lead to new projects

Partner with technology Team Members to enhance documentation and security-related processes

Respond to cybersecurity incidents and propose or implement mitigation strategies

Participate in on-call rotation as assigned

Lead investigations into suspicious or anomalous digital activity

Act as a cybersecurity subject matter expert, providing internal mentorship and risk-related training

Qualification

Cybersecurity risk managementIncident responseCloud securityVulnerability managementCertified Ethical HackerSecurity Event ManagementIdentity Access ManagementTechnical Security ControlsISO 27001Soft skillsProject managementCollaboration skillsWritten communicationVerbal communication

Required

Bachelor's degree in computer sciences, or equivalent experience

IT Administration Support and Cybersecurity experience required

3-5 years Cybersecurity or IT experience (emphasis of maintaining Technical Security Controls) with a proven ability to engage with Senior Management and regulators

Knowledge of relevant common information security management frameworks (e.g., ISO 27001, NIST CSF, PCI-DSS, CIS Benchmarks)

Proven experience in the evaluation, planning, and implementation of enterprise-wide Cybersecurity control programs/technologies

Knowledge of technical infrastructure, networks, databases, and systems in relation to Cybersecurity and risk

Understanding security best practices in cloud environments such as AWS and Azure

Knowledge of cloud security and SIEM administration, Azure Security Center, and Azure Sentinel

Ability to successfully manage projects

Prior experience performing security reviews and risk assessments of applications, devices and vendors including the development of risk mitigations plans

Advise on security change requests through formal change control process

Experience with security operation center work which includes managing the priority and lifecycle of incidents and alerts

Possesses well developed soft skills in business and cybersecurity

Possesses proven and effective collaboration skills, with the ability to work effectively with others through conflicting pressures and priorities while resolving complex issues

Demonstrated ability to work independently; establishing and meeting performance/Ministry goals and perform responsibilities with minimum guidance (self-motivated and self-starter)

Exhibits versatility and flexibility. Regularly adapts to change while maintaining a positive attitude and high productivity

Preferred

Certified Ethical Hacker, Incident Handling Certification, and formal information security education is desired

SANS-GIAC, ISC2, ISACA or other similar credentials preferred

Basic understanding of Kusto Query Language (KQL) a plus

Experience assessing and correcting cloud configuration a plus

Benefits

Industry leading Medical, Dental & Vision coverage

Short/long term disability and life insurance

Robust 401K with company match

Parental leave with Baby Bonding pay

Generous PTO, holiday and sick pay

Unique company culture that includes exclusive access to concerts, movie premieres, media industry events, and more

Leadership and Career Development Programs including free access to LinkedIn Learning platform

Company

Educational Media Foundation K-LOVE & Air1 Media Networks

If you're seeking a career where your contributions make a meaningful impact, consider joining Educational Media Foundation (EMF) – a distinctive fusion of ministry and media.

Founded in 1982

Omaha, Nebraska, USA

501-1000 employees