Senior IT Security Engineer

<strong>Personal, compassionate service is what we&rsquo;re known for at NJM. We seek the best and brightest to help our customers when they need us most. As part of the NJM team, you'll not only enjoy some of the best benefits in the industry, you'll also be joining a company that's committed to professional development, diversity and innovative thinking.</strong><br /><br /><strong>What is it like to work at NJM?&nbsp; Click <a href=";feature=emb_logo" target="_blank" title="Video" rel="noopener noreferrer">here</a> to see!<br /><br />If you don't see the position you are looking for, apply <a href="" target="_blank" title="Introduce Yourself" rel="noopener noreferrer">here</a>.<br /></strong>


NJM Insurance

<p><strong>This isn&rsquo;t just insurance.&nbsp; It&rsquo;s NJM.</strong></p> <p>When you join the NJM family, you&rsquo;ll work with talented people who care about doing the right thing by our policyholders as well as each other. You&rsquo;ll be part of a financially strong and stable company that has flourished on relationships, integrity and service for more than a century. NJM is a special place where you can propel your career, help others and make friends &ndash; all at the same time.&nbsp;</p> <p>NJM is proud to offer our employees continuous learning options, outstanding benefits, access to wellness programs, and a wide range of opportunities to give back to the communities we are privileged to serve.&nbsp;</p> <p>Leading, independent consumer publications repeatedly recognize our commitment to customer and claims satisfaction. In addition, NJM has been named to the Forbes list of the Best Employers in New Jersey three years in a row, based on feedback directly from our employees.</p>

keywords: position summary,operations,security,solutions,technical,experience,proficiency,support,initiative,skills

Full time

Overview: NJM Insurance Company has a full-time position available for a Senior IT Security Engineer within the IT department. The Senior IT Security Engineer will serve as a member of a team that is responsible for the design, implementation, optimization, and support of enterprise network security infrastructure, cloud and endpoint security solutions. A hybrid work schedule is available depending upon level of experience and time within the position.
Responsibilities: <ul> <li>Research, architect, implement and monitor security solutions including networks, servers, endpoints and storage across a wide variety of systems and data types.</li> <li>Daily operations to ensure endpoint security solutions are deployed appropriately and configured as desired. Interfacing with third party managed services team to triage events and take action upon endpoint security alerts.</li> <li>Identify, define and document security controls. Transform information security recommendations into actionable IT security programs and solutions.</li> <li>Prepare, document and maintain operating procedures, incident response procedures, security standards and troubleshooting guides. Create detailed documentation of existing security solutions.</li> <li>Perform self-assessments of existing security systems to identify vulnerabilities, design weaknesses and recommend technologies and/or solutions to address the gaps.</li> <li>Determine and implement industry and security best practices by performing independent research and attending training when required. Develop and maintain infrastructure security roadmap.</li> <li>Triage and troubleshoot security related events to determine appropriate incident response and/or root cause.</li> <li>Work with audit department to provide requested information and evidence. Understand, address and close findings in a complete and timely fashion.</li> <li>Act as the subject matter expert for multiple security product suites including firewalls, proxy servers, endpoint protection, IPS, email security, log management, content filtering, etc.</li> <li>Design and implement various encryption technologies including SSL/TLS, S/MIME, IPsec, Site to Site VPNs and data at rest encryption.</li> <li>Architect, implement and support internal and external PKI environments.</li> <li>Determine appropriate security controls for various cloud computing environments, with the ability to implement and operationalize them.&nbsp;</li> </ul>
Requirements: <ul> <li>Excellent verbal, written and technical skills. Able to take highly technical information and present it to varied audiences in a manner easily understood.</li> <li>Hands-on experience designing, implementing, operating and troubleshooting complex IT security solutions in a dynamic work environment.</li> <li>Able to work independently, as well as with a team, and is able to transform high level requirements into well thought out, well documented, secure solutions.</li> <li>8-10 years of progressive work experience as an IT/cyber systems/security engineer. Experience with managing a team of direct reports is desired.</li> <li>Experience managing enterprise endpoint protection technologies such as Symantec, McAfee and/or Crowdstrike.</li> <li>Experience designing, implementing, and supporting security gateway solutions including Firewalls, IDS/IPS and VPNs from Checkpoint, Cisco and/or Palo Alto.</li> <li>Experience architecting, implementing and supporting Internet proxy server and web filtering solutions such as Zscaler, Forcepoint and McAfee.</li> <li>Experience with email hygiene and anti-spam solutions including Mimecast, Proofpoint and Symantec Mail Security.</li> <li>Experience creating and maintaining site to site and client VPN solutions utilizing Checkpoint, AWS and Cisco technologies.</li> <li>Experience with data encryption technologies and digital certificate management.</li> <li>Experience with back-office products such as Windows, Linux, DHCP, DNS, Active Directory, RADIUS, IIS, Exchange, SQL Server, VMware ESX and Windows networking.</li> <li>Experience with load balancing technologies such as F5, Netscaler and AWS ELB.</li> <li>Experience with Web Application Firewalls (WAF) such as F5, Silverline, Imperva and AWS WAF.</li> <li>Experience with provisioning and managing networking and security controls within public cloud providers such as AWS or Azure.</li> <li>Experience partnering with third-party Managed Security Service Providers and Information Security providers.</li> </ul> <p>&nbsp;</p> <p>Legal Disclaimer: NJM is proud to be an equal opportunity employer. We are committed to attracting, retaining and promoting a diverse and inclusive workforce that is fully representative of the diversity that exists in the communities in which we do business.</p>