Now Hiring - ProArch - Information Technology Security Consulting Engineer in Rochester, NY

ProArch is an IT consulting and services organization that specializes in cybersecurity, compliance, cloud, data, and application development. We work with businesses all over the world to reach their goals. Basically, we use technology to help businesses grow. Cool, right?

We're a global company with offices in 3 countries and 350 employees (or, as we like to call ourselves, ProArchians) around the globe, we strive to stay true to our roots: trust, accountability, creativity, community, and collaboration.

Our culture underpins everything we do. In fact, we're a Certified Great Place to Work. We're looking for people who share our values, have a passion for technology, and will make an impact on our clients' lives and our communities.

So, here's a bit about what it's like to work at ProArch:

• Focus on learning. Our team has an exceptionally wide breadth of expertise across the IT and the Information Security spectrums. You will learn about other areas of the industry by being immersed with our experts.
• We embrace change. We believe that when creativity is fused with technology and security in just the right way, amazing things can happen. World-changing things. We foster a creative and collaborative environment for employees and their teams.

If you’re excited by the thought of working for a company like that, we want to hear from you!

Job Description

ProArch is an IT service and consulting company looking to hire highly qualified, motivated, hard-working professionals to serve our customers best.

A Security Consulting Engineer is a client-focused position that works with ProArch customers to maintain a comprehensive security program. Security Consulting Engineers will leverage ProArch’s security tools to aid in the detection and prevention of cyber threats to ProArch’s customers. Additionally, responsibilities include designing, analyzing, and integrating firewalls, networks, and operating systems into ProArch’s Security Managed Services platform. The Security Consulting Engineer will be part of a select group of industry recognized experts who work on unique security solutions associated with next-generation technologies and emerging security threats.

Skill Sets Required

• Experience using Microsoft 365 security tools and technology.
• Research, design, and implement cyber security solutions for organization systems and products that comply with all applicable security policies and standards.
• Works with internal and external stakeholders to ensure security is factored in the evaluation, selection, installation, and configuration process of hardware and software.
• Analyzes and makes recommendations to improve the network, system, and application architectures.
• Examines network, server, and application logs to determine trends and identify security incidents.
• Assists in reviewing and updating cyber security policies, architectures, and standards.
• Assists in responding to audits, penetration tests, and vulnerability reports and assessments.
• Ability to analyze and create remediation strategies for vulnerability management programs, security architecture reviews, and security assessments.
• Knowledge of Authentication and Authorization mechanisms, Identity Access Management, and user provisioning best practices.
• Technical engineering capabilities that include installation, configuration, and updating of Windows Servers and other common server platforms such as VMware, Active Directory, File, IIS, SQL, Intune, SCCM, WSUS, and others.
• Implement and maintain security solutions, tools, and IT Policies and standards.
• Proficiency in using various security tools, but not limited to, Qualys, Intune, KnowBe4, Microsoft Defender for Endpoint, Microsoft Defender for Cloud, Azure Active Directory, Defender for Identity, and Microsoft Sentinel.
• Familiarity with industry standards such as PCI DSS, NY DFS, HIPAA\HiTech\HiTrust, DFARS and CMMC, NIST SP-800 series, CIS Critical Security Controls, OWASP, and how to configure the technical security controls to meet those control requirements.
• Knowledge of the Eight Information Security domains in ISC2 CBK.
• Takes ownership of the project, tasks, and client deliverables.

Requirements

• Proven collaborator.
• Ability to prioritize effectively and handle shifting priorities professionally.
• Exemplary written and verbal communication skills.
• Produce and review reports to support project deliverables.
• Analyze technical results from security assessments, vulnerability scanning, and monitoring systems.
• Ongoing training and professional certifications are part of the job requirements.
• Create clearly stated remediation recommendations based on industry best practices.
• Successfully interface with clients, both internally and externally.
• Document and explain technical details concisely and clearly.
• Manage personal work schedule and project tasks.
• Provide weekly time accounting and monthly expense reports.
• Be a member of the ProArch Incident Response Team, as needed.
• Travel within upstate NY and occasionally out of state, as required.

Education and Certification

3-7 years of experience within an Information Security department or organization. BS in Computer Science/Engineering or significant demonstratable experience in network security. Certifications such as CEH, CISSP, CISM, and CISA are desirable but not required.

Benefits

Pro Arch offers a competitive salary plus the following benefits:

• Health insurance coverage with Vision and Dental options
• 401k plan
• Paid holidays and vacation