Banfield Pet Hospital Engineer Security in Portland, Oregon
Job Purpose/Overview The primary purpose and function of the Security Engineer is to develop, maintain, and troubleshoot network and host based security solutions and systems. The Security Engineer will work closely with the business to help develop and integrate security related policies and procedures.
Key Responsibilities * Live and exemplify the Five Principles of Mars, Inc. within self and team. * Demonstrate and apply solid grasp of security best-practice process concepts by teaching, designing, implementing, and owning the processes. * Lead and support risk assessments, support PCI and other compliance related audits as needed. * Analyze security requirements for various business initiatives and make specific security recommendations for implementation. * Develop specifications for security equipment, software and procedures necessary for data security. Monitor networks and systems for security breaches, using software that detects intrusions and anomalous system behavior. * Participate in or lead incident response, including steps to minimize the impact and then conducting a technical and forensic investigation into how the breach happened and the extent of the damage. * Utilize the change control process for notifications and outages. * Provide awareness training of the workforce on information security standards, policies and best practices. * Other job duties as assigned.
* Education & Professional Qualification
o Preferred Type of Degree: Bachelor's
+ Field of Study: Computer Science
+ Preferred CISSP, ISSAP, ISSEP, or CCSP certification
o Years of Experience Required: 3
+ In what area: relevant professional experience is required with strong knowledge of security practices & concepts o Required Experience with various security related tools, protocols and applications including: 802.1x, Syslog, Cisco IOS & Cat OS, Firewalls, NAC, IDS/IPS, Wireless security, VoIP, VPN, Multi-factor authentication, End Point Security, Security Incident Management tools, Encryption Key Management, Encryption, Vulnerability Assessment and Remediation Tools, File Integrity Monitoring, Security Information and Event Management, Data Loss Prevention, and Endpoint Detection and Response o Required Working knowledge of cloud security best practices o Required Extensive knowledge with OSI model and internetworking protocols preferred.
o Preferred Specific knowledge of the following solutions is preferred: Digital Guardian DLP, Splunk SIEM, Qualys Vulnerability Management, Cybereason EDR, Veracode, RSA two-factor authentication, Kali, Nessus, Wireshark, and similar tools. o Preferred Health care background (veterinary or human healthcare, pharmaceutical, etc.).
Special Working Conditions
* Ability to work at a computer for long periods of time.
* Project timelines and work volume / deadlines may often require more than 40 hours per week to complete essential duties of this job. * Must have mental processes for reasoning, remembering, mathematics and language ability (reading, writing, and speaking the English language) to perform the duties proficiently. * Ability to carry out instructions furnished in written, oral, or diagram form and to solve problems involving several variables. * Ability to stand, walk, stoop, kneel, crouch, and climb as well as manipulate (lift, carry, move) up to 50 pounds. * Requires good hand-eye coordination, arm-hand-finger dexterity with the ability to grasp, and visual acuity to use a keyboard and operate necessary equipment. * The noise level in the work environment is normally moderate. * Environment where pets are present.
WE ARE A DRUG-FREE, SMOKE-FREE, EQUAL OPPORTUNITY EMPLOYER. Company Policy, Federal and State Laws Forbid Discrimination Because of Age, Color, Race, Religion, Sex, Disability, Sexual Orientation or National Origin.
Job: *Support: Applications or Infrastructure
Title: Engineer Security
Location: Oregon-Portland-Central Team Support Location
Requisition ID: CEN000Y5