This job has expired, please see additional jobs below
Security Engineer
Gannett
Mc Lean, VA, United States
Job Details - this job has expired, please see similar jobs below
USA TODAY NETWORKis one of the top 20 digital companies in the country, sharing the list with Google, Facebook, and Amazon. And we have over 100 million unique visitors a month, which is more than Buzzfeed, Yahoo News, and Huffington Post. We have a loyal following based on a combination of trusted, fact-checked journalism, paired with a deep commitment to helping our local communities, and constantly pushing our content delivery to be first-of-its-kind in the tech-space.
Position Summary
Gannett is seeking talented engineers to join a rapidly growing cyber-security team. The team is responsible for implementing innovative security solutions on cutting-edge cloud technology.
This role will work with various teams in securing dozens of Gannett's applications already in the cloud, plus creating security solutions to enable the migration of hundreds more. They will be using a myriad of custom internal and open source tools in a hybrid cloud running thousands of servers, and will have the opportunity to evaluate new processes and shape the policies of new environments.
Technologies and Disciplines
• Amazon Web Services, Google Compute Engine, Microsoft Azure, OpenStack
• Continuous integration/delivery pipelines, plus extensive use of Chef and Docker
• Cloud security and vulnerability/risk assessment
System Environments
• Linux (CentOS/RHEL) and Windows Server
• Stateless servers and containers, such as Docker and Kubernetes
• Nginx and Apache Webservers
• MSSQL/MySQL/Postgres databases
• Couchbase, MongoDB and other NoSQL databases
Position Responsibilities
• Architect, design, implement, support, and evaluate security focused tools and services
• Work with application and system owners to follow logging policies and develop methods to feed relevant security data into SIEM systems.
• Expand our security automation processes (enabling to move faster, more securely)
• Assist with developing security policies, standards, and processes
• Participate in security compliance efforts
• Cyber security evangelization and champion of automation
• Responding to security incidents
Desired Skills and Experience
• Strong networking fundamentals including IPS/IDS & WAF tuning
• NIST, PCI DSS, ISO standards
• Cloud architect
• Security tools: Nessus, Saint, Wireshark, Netcat, Metasploit, Burp Suite, OWASP ZAP
• Security standards: OWASP Top 10, SANS Top 25, CIS, NIST, CVE
• Best practices across cloud platforms
• Cloud+, CCSK, AWS CSA, Security+, CISSP, CISM
Minimum Qualifications
• Work history applying security to cloud automation or implementation
• 5+ years experience in Linux systems administration and cybersecurity
• Experience deploying to AWS or other clouds
• Experience with Chef and Docker or other configuration management tools
• Familiarity with the OWASP Top 10, and common attack vectors
We are a drug free, EEO employer committed to a diverse workforce. We will consider all qualified candidates regardless of race, color, national origin, sex, age, marital status, personal appearance, sexual orientation, family responsibilities, disability, education, political affiliation or veteran status.