Senior Data & Security Engineer – New York – DSE-10288001

Lyons Hathaway is a company of expert resources in the data management and business analytics software and services domain. We have a comprehensive suite of services targeted to optimize your organizational processes and overall performance in regards to data management, data warehousing, and business intelligence systems.

Through innovative solutions, Lyons Hathaway helps customers to improve performance and deliver value by making better decisions faster while having the confidence that their most important asset is well protected.

The Security Engineering team is responsible for testing, designing and implementing security controls and solutions driven by CISO policies and standards to reduce the risk to Lyons Hathaway and its customers. This includes enterprise-level design work for system security, cloud security, identity and access management, data protection and many more.

Within this team, the Security Engineer is responsible for reviewing technologies and designing security controls and solutions to reduce the risks to Lyons Hathaway and its customers. You will help define the cloud and data security architecture and design for the enterprise and for our customers. This is an expert/lead technical role.

Work closely with enterprise architects, other functional-area architects, engineering, and security specialists to ensure adequate security solutions and controls are in place throughout all IT and cloud systems and platforms to mitigate identified risks sufficiently
Assess and understand current security posture and future architecture, providing a viable solution path to bridge the gap
Assess and understand the current and planned security posture for platforms (e.g. servers, databases, web servers)
Provide security subject matter expertise on cloud control implementation for enterprise-scale projects
Serve as a security expert in cloud-based application development, database design, network and/or platform (operating system) efforts
Design cloud security configuration standards, procedures, and guidelines for platforms
Design and implement mechanisms for assessing bi-modal compliance with the standards, procedures, and guidelines
Design and build controls to address security risks and events as identified
Define clear, concise, and executable standard operating procedures and documentation for any implemented solutions for formal operational handoff
Provide subject matter expertise on, and conduct in-depth security reviews of, new OS, database, middleware, etc. solutions as they are identified for use
Identify and propose process improvements and identify opportunities for new processes and procedures to reduce risk;
Contributes to the development and maintenance of the information security strategy
Evaluates and develops secure solutions, based on approved security architectures
Analyzes business impact and exposure, based on emerging security threats, vulnerabilities and risks

Well-rounded background in network, host, database, and application security
Knowledge and experience using SABSA methodology
Experience implementing security controls in a bi-modal IT environment
Experience driving a culture of security awareness;
Experience administering network devices, databases, and/or web application servers;
Professional IT Accreditations (CISM, CCSA, CCSE, JNCIA, CCNA, CISSP, CCIE Security)
Customer orientated, delivery Focused
Working within an international environment
Keeps all relevant people appropriately informed
Very good communications, presentation and negotiations skills
Technically innovative
Able to express technical and non-technical concepts in clear verbal and written English
Very good written skills to document complex concepts in a comprehensive, yet readable manner
Encourages people to be open and share their views
Considers a range of options that meet the needs of all stakeholders
Ability to use own initiative to solve technical problems
Takes responsibility for targets
Drive efficacy into all solutions delivered, demonstration clear and measurable results through the development of KPIs
Ambitious and competitive, drive innovation and best practice
Strive for standardisation and simplification in all aspects of work
Always cost conscious balancing the needs of the business against the provision of the best solutions possible

7 years in Information Security space
Strong experience with cloud security strategy, with a passion to make security realistic, achievable and interwoven with the business fabric
Strong experience in migrating enterprise companies from traditional data center infrastructure, application and data designs to hybrid or fully-cloud enabled practices
Strong experience with cloud provider ecosystems, including Amazon AWS, Microsoft Azure, and OpenStack
Strong experience with a broad range of security technologies, including NextGen Firewalls, DLP, NAC, IDS/ IPS, IdAM, Certificate Management, SIEM, Endpoint Protection, Anti-malware, vulnerability management;
Strong experience with multiple relational database platforms, including MSSQL, Oracle, MySQL
Strong oral, written, and presentation abilities -able to convey risk to all levels of the business, from C-level executives to operations and development teams;
Some experience with Unix/Linux and Windows system administration
Some experience with Cloud Access Security Brokers (CASB)
Some experience with NoSQL database platforms, including Mongo, Cassandra
Some experience with logging and alerting platforms, including SIEM integration
Some proven ability in security process and organizational design
Current understanding of Industry trends and emerging threats
Knowledge of incident response methodologies and technologies

Senior Data & Security Engineer – New York – DSE-10288001

Role Overview

Hours, Location & Info

Responsabilities

Qualifications

Technical skills

Apply now

Equal opportunities