Senior Cybersecurity Engineer

The Senior Cybersecurity Engineer will be responsible for maintaining the overall cybersecurity program for Servco. The individual will design, implement, and maintain security controls that are aligned with IT security and risk management policies and standards.

Responsibilities:

Architects, designs, implements, maintains and operates information system security controls and countermeasures that are aligned with Center of Internet Security (CIS) and other designed frameworks.

Analyzes and recommends security controls and procedures in acquisition, development, and change management lifecycle of information systems, and monitors for compliance.

Analyzes and recommends security controls and procedures in business processes related to use of information systems and assets, and monitors for compliance.

Analyzes and recommends security controls and procedures for overall security program and process improvements to senior management and executives.

Monitors information systems for security incidents and vulnerabilities; develops monitoring and visibility capabilities; reports on incidents, vulnerabilities, and trends.

Responds to information system security incidents, including investigation of, countermeasures to, and recovery from computer-based attacks, unauthorized access, and policy breaches; interacts and coordinates with third-party incident responders, including law enforcement.

Administers authentication and access controls, including provisioning, changes, and deprovisioning of user and system accounts, security/access roles, and access permissions to information assets.

Analyzes trends, news and changes in threat and compliance environment with respect to organizational risk; advises organization management and develops and executes plans for compliance and mitigation of risk; performs risk and compliance self-assessments, and engages and coordinates third-party risk and compliance assessments.

Analyzes and develops information security governance, including organizational policies, procedures, standards, baselines and guidelines with respect to information security and use and operation of information systems.

Develops and administers, or provides advice, evaluation, and oversight for, information security training and awareness programs to stakeholders and employees.

Requirements:

• Minimum of 5 years of security engineer experience or other relevant experience
• Experience in system administration, network security, incident detection and response, threat hunting, vulnerability management, writing IT security policies, and vendor management.
• Subject Matter Expert in security standards and frameworks.
• Working knowledge of IaaS, PaaS, and SaaS architectures.
• Strong planning and organizational skills.
• Excellent oral and written communication skills.
• Preferred CISSP, Azure, Security+ certifications.

About Servco:

At Servco, we’re committed to providing valuable mobility solutions to empower people through the freedom of movement and opportunity. From Australia to California, and of course, Hawaii, Team Servco is a collective of over 2,000 like-minded individuals guided by our four Core Values of Respect, Service, Teamwork, and Innovation. For over 100 years, we have been dedicated to superior service, to both our customers and team members. We look forward to helping you create Life:Moments that matter to you.

Interested?

Visit www.servco.com/careers to apply online or email us at careers@servco.com.

Equal Opportunity Employer and Drug-Free Workplace