CBTS is in search of a Sr. Security Engineer in the Cincinnati area to help implement and execute security policies and procedures.

The candidate will assist with the following:

• Identify vulnerabilities and protect company assets from unauthorized access, modification, or destruction.
• Assist in or lead security awareness training exercises.
• Assist in the implementation and design of comprehensive information security architecture to protect the organization.
• Monitor the internal and external environment for emerging threats, and advise relevant stakeholders on the appropriate courses of action.
• Assist in or lead the coordination and execution of remediation efforts.
• Assists in the preparation, implementation and support of information security policies, standards, procedures and guidelines.
• Assist in data collection efforts in support of annual risk assessments or 3rd party audits.
• Assist in the evaluation of cloud applications on the overall Enterprise Architecture as it relates to information security.
• Partake in incident response planning and execution.
• Work closely with Infrastructure to develop and manage enterprise patch management solutions.
• Provide and assist in the development of requested information security reporting and updates to enterprise security metrics.
• Continually stays abreast of security trends, threats and prevention technologies and practices.
• Partake in projects and initiatives that support information security practices and policies.
• Work with 3rd party contracted service providers in creating robust security solutions and support of triage efforts.

Job Requirements:

• 2+ years of experience in a combination of information security, risk management, security review, incident response, and infrastructure
• Professional security management certification is desirable, such as Certified Information Systems Security Professional (CISSP), Comp TIA Security+, GIAC Security Essentials (GSEC), or other similar certification
• Understanding of social engineering and its impact on creating an ISMS
• Ability to assess, validate and incorporate new tools, practices, strategies and process to gain efficiencies in the areas of cyber security & intellectual property protection
• Foundational knowledge and hands on experience with Windows Server, cloud, network switching, virtualization, DLP, IDP/IPS, AV, TCP/IP, client technologies, programming, and other relevant infrastructure is required
• Ability to communicate effectively with all levels of the organization and cross culturally