This job has expired, please see additional jobs below
Sr IT Security Engineer
AEG
Los Angeles, CA, United States
Job Details - this job has expired, please see similar jobs below
AEG is the world’s leading sports and live entertainment company with operations in the following business segments:
•AEG Facilities, which with its affiliates owns, manages or consults with more than 120 venues
•AEG Presents, which is one of the largest live music companies in the world dedicated to live contemporary music performances, including producing and promoting global and regional concert tours, music events and world-renowned festivals
•AEG Sports, which is the world’s largest operator of sports franchises and high-profile sporting events
•AEG Global Partnerships, which supports each of AEG’s divisions through worldwide sales and servicing of sponsorships including naming rights, premium seating and other strategic partnerships
•AEG Real Estate, which develops major sports and entertainment districts worldwide
With offices on five continents, the company uses its global network of venues, portfolio of powerful sports and music brands, ticketing and content distribution platforms and its integrated entertainment districts to deliver the most creative and innovative live sports and entertainment experiences that inspire athletes, teams, artists and fans.
The Sr IT Security Engineer is responsible for executing all phases of the security technology lifecycle including technical requirements, architecture, design, and implementation. The Sr IT Security Engineer possesses an in depth understanding of current and emerging threats and technology to drive improvement in all technical areas of security including network, data, application, cloud, IAM, mobile and endpoint. Integral to the success of this role is building partnerships across IT, strong communication skills, and maintaining an internal and external peer network. The Sr IT Security Engineer leverages a strong external peer network to collaborate on security techniques and validate technical solutions and ideas.
Job Responsibilities:
•Architect, design, deploy, and manage the implementation of multiple information security technologies including end point, application, database, network, cloud, infrastructure, and identity management solutions.
•Architect, design and deploy technology to support security operations center including log management, SIEM, vulnerability management, patch management, and forensics tools.
•Conduct research to identify threats and attack vectors and develop mitigating solutions to manage the risk.
•Develop and maintain the S-SDLC through collaboration with business sponsors and development teams to ensure systems are architected with security from the beginning.
•Support the execution and coordination of application and infrastructure penetration testing.
•Review and document security related change requests and advise management on approval decisions.
•Maintain technical currency and continuously leverage opportunities to strengthen skills and broaden expertise.
•Collaborate with peers across affiliate companies to share incident information, solutions, and best practices
Required Qualifications:
•A minimum education level of: BA/BS Degree (4-year) in Information Technology, CS/Engineering, Economics, Business
•A minimum of 4-6 years of related work experience
•Experience network, infrastructure and web application security.
•Experience in managing and operating vulnerability/patch management processes and tools
•Excellent written and verbal communication skills with the ability to explain technical concepts to a non-technical audience
•In-depth technical knowledge of web development, security engineering, network security, security protocols and cryptography
•Conceptual understanding with deep knowledge in a few security subject areas and broad knowledge over multiple security subject areas and applied experience
•Experience with security industry standards (ISO 27001, NIST Cybersecurity Framework) and best practices
•Experience in coordinating and performing application and infrastructure penetration testing.
•A thorough understanding of tools, policies and standards related to security systems and experience in executing incident response process and procedures
•Demonstrated commitment to continuing education to strengthen skills, broaden expertise and maintain currency with emerging technology.
•Proficient in Microsoft Office (Word, Excel, PowerPoint) and ability to learn applicable business systems.
•Ability to manage multiple projects while maintaining technical currency with emerging security technologies.
•Proven ability to identify vulnerabilities, anticipate threats, and leverage a practical approach to reduce the likelihood or impact of a breach.
Preferred Qualifications:
•Scripting skills (e.g. Python, PowerShell, shell scripting)
•Experience in risk analysis and risk management process and techniques.
•IT security certifications (CISSP, CISM, CISA, GIAC, CEH or similar)
AEG reserves the right to change or modify the employee’s job description whether orally or in writing, at any time during the employment relationship. AEG may require an employee to perform duties outside his/her normal description.