Summary:
this is technical, specialized work in the research, development, implementation and administration of all the security components of the information technology department over a complex network. This position can be based out of any laredo office in mexico, travel visa to the us is preferred.
essential duties and responsibilities
* continuously monitor security alerts and notifications from various tools and platforms to identify potential threats and vulnerabilities.
* assist in investigating and responding to security incidents, including performing initial triage and documenting findings. Manage annual incident response testing.
* conduct basic threat analysis and research to understand emerging threats and vulnerabilities relevant to our environment.
* support the configuration and maintenance of security tools and systems to ensure they are properly tuned and up to date.
* help identify, assess, and prioritize vulnerabilities in systems and applications, and assist with remediation efforts.
* maintain and update security documentation, including policies, procedures, and incident reports.
* assist in developing and delivering cybersecurity awareness training to staff members.
* support compliance efforts related to cybersecurity frameworks and standards (e.g., pci, nist).
* maintaining a disaster recovery strategy and procedures backup plan.
* software and hardware lifecycle and patch management.
* monitor and manage the organization's firewall infrastructure to safeguard network traffic.
* intrusion detection/prevention systems (ids/ips): oversee ids/ips systems to detect and respond to malicious activities and policy violations.
* antivirus and endpoint protection: maintain and update antivirus solutions and endpoint protection tools to prevent and respond to malware threats.
* security information and event management (siem): utilize siem tools to collect, analyze, and correlate security event data from various sources.
* virtual private network (vpn): support the management and security of vpns used for remote access.
* email security solutions: monitor and manage email security systems to prevent phishing and other email-based threats.
* to enhance the cybersecurity awareness and skills of the it department and all employees across the organization.
* backup and recovery systems: assist in ensuring the integrity and security of data backup and recovery systems.
* identity and access management (iam): audit iam systems to control and monitor user access and authentication.
* monitor centralized log management system.
minimum qualifications (education, training & experience):
bachelor's degree from an accredited college or university in computer science or related field and 2 years experience in a progressively responsible position within information technology with cybersecurity experience.
license and certifications: (if license(s) or certification(s) is required to practice a trade or profession, you must attach a copy. Cybersecurity certifications such as giac security essentials (gsec) or pci professional qualification (pcip) or similar.
knowledge, skills and abilities:
* technical skills: familiarity with security tools and technologies (e.g., firewalls, intrusion detection systems, antivirus software "palo alto, symantec, kaseya 365, microsoft defender). Knowledge of networking protocols and concepts.
* analytical skills: strong analytical and problem-solving skills with the ability to think critically and act decisively in high-pressure situations.
* communication: excellent written and verbal communication skills, with the ability to clearly articulate security issues and recommendations.
* attention to detail: meticulous attention to detail and a strong commitment to maintaining data integrity and confidentiality.
* team player: ability to work collaboratively in a team environment and contribute to a positive and productive work culture.
* ability to maintain a good and positive working relationship with all co-workers and other contacts.
* required to comply with all jamco's policies and procedures.
* ability to follow all rules of telephone courtesy in all telephone communications.
physical requirements and work environment: work in a non-climate controlled environment working closely with others and alone with light traveling required. Work involves rotating shifts and working extended workdays outside the regular working hours and on-call status; work requires simple grasping, standing, sitting, climbing stairs and ladders, walking, carrying up to 15 pounds, and light lifting under 24 pounds. Ability to see, write, count, read, identify shade of colors, and hearing is needed to perform essential functions.
this job description reflects the current assignment of essential functions and is not meant to be all-inclusive. Duties and responsibilities may be assigned or reassigned to this job at any time and may be modified to reasonably accommodate an individual with a disability or for other reasons.