Gunderson Dettmer · 2 days ago

IT Security Engineer

San Diego, CA

Full-time

Hybrid

Entry, Mid Level

$120K/yr - $180K/yr

Wonder how qualified you are to the job?

Maximize your interview chances

Business DevelopmentLegal

Insider Connection @Gunderson Dettmer

Discover valuable connections within the company who might provide insights and potential referrals, giving your job application an inside edge.

Responsibilities

Plan, develop, implement, and update company’s information security strategy, including thorough documentation of the cybersecurity architecture.

Design, develop, execute, and track the performance of security measures (hardware, software, systems) to protect information and network infrastructure and computer systems.

Identify, define, and document emerging system security weaknesses and threats and recommend solutions to management.

Configure, troubleshoot, and maintain security infrastructure software and hardware.

Research, assess, and recommend security products that monitor systems and networks for security breaches and intrusions.

Monitor systems daily for security events and alerts through both organic and SIEM-generated log analysis, and provide operational support to the greater information security team.

Perform enterprise-wide operations to identify any undetected threats. Develop alerting and detection strategies to look into any unusual behavior and develop new defensive techniques.

Assist in the creation and maintenance of SOC or ISO security certifications.

Educate and train staff on information system security best practices.

Be responsible for evidence collection, documentation, communications, and reporting for all forensic activities including incident response and investigations.

Maintain current knowledge and understanding of the threat landscape and emerging security threats.

Qualification

Find out how your skills align with this job's requirements. If anything seems off, you can easily click on the tags to select or unselect skills to reflect your actual expertise.

Network SecurityEncryption TechnologiesApplication SecurityVirtualization TechnologiesWeb ProtocolsIdentity Access ManagementRouting TechniquesSocial EngineeringAPTAnti-MalwareProfessional Service ComputingPolicy WritingComplianceComputer ScienceInformation SystemsISO 27001ISO 27002CIS Benchmark ControlsNISTProblem-SolvingInterpersonal SkillsCommunicationTeamworkEthicsCCNP SecurityCISSPCISACEH

Required

Proficiency in secure network architectures, encryption technologies and standards, application security, virtualization technologies and web-based protocols.

Working knowledge in identity and access management principles, networking routing techniques, social engineering, Advanced Persistent Threat (APT) and gateway anti-malware. Security Engineers must be able to work long hours and collaborate within a team.

A fundamental knowledge of all aspects of a professional service firm’s computing and communications systems with an eye for how they can be breached and ways we can protect them.

Strong interpersonal skills that establish and sustain close working relationships with functional teams and subject matter experts as well as IT technical, development, and support personnel.

Understanding and respect for confidentiality and privacy, with strong ethics and compliance aptitude.

Exceptional oral and written communication skills and expertise with policy writing, crafting educational and impactful emails and other materials. Ability to translate complex technical jargon into understandable and actionable messages.

Candidate must have a degree in Computer Science, Information Systems or related field or equivalent relevant experience.

Familiarity with information security standards, including ISO 27001, 27002, CIS Benchmark Controls, NIST and others.

Demonstrated ability to gain skills, knowledge and certifications as needed.