Apply on Employer Site

CoreCivic · 16 hours ago

Cybersecurity Engineer III (NASHVILLE - HYBRID)

Brentwood, TN

Full-time

Hybrid

Senior Level

$132K/yr - $139K/yr

7+ years exp

CoreCivic is a company dedicated to making an impact for the people and communities they serve. The Cyber Security Engineer III provides engineering support for information security tools, develops security policies, and mentors team members on security technologies.

Government

Responsibilities

Determines security requirements by evaluating business strategies and needs

Researches information security standards, conducts in depth system security reviews, vulnerability analyses and risk assessments

Studies security architecture/platform to identify integration issues or opportunities and prepares cost estimates

Mentors and trains cybersecurity team on security tools and security best practices

Responsible for administration, data ingestion, parsing, dashboard design, and custom searches of company SIEM

Conducts periodic independent security audits including NIST, HIPAA and SOX audits and all internal controls compliance programs. Generates reports as needed from the various security systems to support regulatory compliance

Investigates known or suspected security incidents and performs thorough threat hunting and remediation using cybersecurity tools

Responsible for Identity and Access Management

Responsible for Endpoint Detection and Response administration

Responsible for security setup, maintenance, and monitoring in Azure/M365 cloud environment

Evaluates and recommends security products for various platforms to support the company

Conducts training sessions with various audiences, provides support, and educates users on security policies and consults on security initiatives and issues

Researches emerging technologies and maintains awareness of current security risks in support of security enhancement and development efforts. Participates in educational opportunities, professional networks, and professional organizations

Troubleshoots assigned work tickets supporting daily operations and problems as they occur as well as provide 24/7 on-call support rotation

Domestic U.S. travel required

Qualification

Cybersecurity experienceSecurity Incident/Event Management (SIEM)Vulnerability scanningCloud administrationCertified Information Systems Security Professional (CISSP)NIST complianceZero Trust architectureIdentityAccess ManagementEndpoint DetectionResponseMicrosoft Office proficiency

Required

Graduate from an accredited college or university with a Bachelor's degree in Cybersecurity or another related field is required

7+ years of Cybersecurity experience is required. Additional years of related experience may be substituted for the required education on a year-for-year basis

Experience using Security Incident/Event Management (SIEM) systems to search and analyze data providing insights to act on

Experience with vulnerability scanners to detect network/security vulnerabilities and provide corrective actions

Possess thorough knowledge of network protocols, network design, and IP sub-netting

Must demonstrate a deep understanding of security knowledge and the ability to work independently and interact with the network team and other teams in a fast-paced, ever-changing environment

Proficiency in Microsoft Office applications is required