JOB TITLE: Sr. Security Engineer, Security Engineering and Response Team (PLXsert) This individual will be responsible for implementing and monitoring information and network security. This individual will be focused on application security, intrusion detection, vulnerability assessment, proactive network monitoring and protection, and will participate in systems development and deployment decisions from the perspective of security best practices. From a security research perspective, this individual will be responsible for forensic cases as assigned, will participate in all research papers that are published by PLXsert to include Threat Advisories, white papers, and post mortem incident reports. ESSENTIAL DUTIES & RESPONSIBILITIES: Implementation and maintenance of the security infrastructure. Firewall, IDS, IPS systems, etc. Install and configure network security components in addition to log reviews and analysis. Provides troubleshooting and resolutions security related network issues, as well as responding to network outages and emergencies on an on-call basis. Performs regularly scheduled security and vulnerability audits and determines corrective actions needed. Conducts industry research and provides recommendations for emerging trends and network security practices. Analyze the organizations security risks and requirements. Detect, analyze and prevent attacks, both external and internal, on the network as laid out in the security policies and procedure documentation. Operate in a team environment including interaction with other Engineering departments. Report any actions, triggered externally or internally, that violate security policies to the Information Security Manager. Offer recommendations when feasible and practical on how to prevent these from re-occurring. Ability to work on multiple projects simultaneously and balance conflicting demands Perform ethical hacking, penetration testing, vulnerability assessments and web application security testing using various tools and provide a summary of issues and best practice resolutions. SKILLS REQUIRED: Excellent communication skills; spoken and written Knowledge of IPS firewalls and firewall management platforms. Understanding of network topologies / design: routing, switching, and MPLS Knowledge of working with Security Information and Event Management (SIEM) solutions Solid understanding of common network, system, and web application attack methods Solid understanding of IP networking (TCP/IP and Packet Analysis) Ability to describe technical concepts verbally and on paper Experience assessing and hardening security configurations for operating systems, applications and services In-Depth knowledge of TCP/IP addressing and standards including network design, firewall configuration, load balancing, remote access, strong authentication, vulnerability scanning, VPN and DMZ management Technical knowledge and experience with application security, content filtering, network protocols, access control, encryption, and 2 factor authentication technologies Experience with Web Application Firewalls (WAF) and associated security threats Understanding of common security protocols such as AAA, TLS, SSH, IPSec, S/MIME, PKI and SFTP Understanding of OSINT research and analysis techniques for threats and trends. Ability to reverse engineer malware binaries.