Security Engineer

New Today

About the Opportunity JOB SUMMARY Northeastern University is looking for a highly motivated and experienced candidate for the role of Security Engineer. Reporting to the Information Security Manager, this individual performs critical work to strengthen the university's overall security posture, operational procedures, and control environment across the global campus network. The Security Engineer interacts directly with various departments across the university to propose, implement, and maintain security policies, technologies, and controls. This role is hybrid and in the office a minimum of three days a week to facilitate collaboration and teamwork. In-office presence is an essential part of our on-campus culture and allows for engaging directly with staff and students, sharing ideas, and contributing to a dynamic work environment. Being on-site allows for stronger connections, more effective problem-solving, and enhanced team synergy, all of which are key to achieving our collective goals and driving success. *Applicants must be authorized to work in the United States. The University is unable to work sponsor for this role, now or in the future QUALIFICATIONS Bachelor’s degree in Information Systems or Computer Science and/or equivalent combination of education and work experience.
Experience working in a Microsoft environment, ideally Azure/M365 + M365 security suite.
In-depth understanding of cybersecurity controls including malware protection, firewalls, intrusion detection systems, content filtering, Internet proxies, encryption controls, and log management solutions
Hands-on experience with architecture and implementation of key information security tools such as an enterprise SIEM and SOAR solutions, IDS/IPS, endpoint security solutions, email/web security gateways, and other security detection/mitigation devices (experience with security technology solutions particularly Sentinel, Defender, Intune, Nessus Tenable, Palo Alto Panorama)
Experience with scripting, programming, and automation tools such as PowerShell and Python.
Self-motivated and detail-oriented, thrives working independently while managing multiple priorities in a fast-paced environment.
Strong written and verbal communication skills, capable of producing policies, procedures, risk assessments, and audit responses aligned with internal and regulatory standards.
PREFERRED QUALIFICATIONS Professional certifications such as CISSP/CISM, CySA+/CASP+, Security+ or GIAC are highly preferred.
Experience participating in digital forensics investigations.
Familiarity with the NIST framework, specifically NIST 800-171.
Prior experience working in higher education environments.
KEY RESPONSIBILITIES & ACCOUNTABILITIES Collaborate with Information Technology Services (ITS) and other university departments to analyze and strengthen security controls and implement comprehensive security requirements.
Investigate security incidents, perform root cause analysis, implement remediation and containment actions, and maintain appropriate documentation (may require outside of regular hours as needed).
Ensure proper logging and alerting is in place across the environment, reducing false positives, and correcting false negatives.
Ensure internal projects conform to security policy and standards.
Conduct information security risk assessments of key processes, technologies, and systems.
Review firewall rules to ensure appropriate standards are enforced.
Work with IAM/Cloud teams to ensure best practices are implemented around least privilege and RBAC in Azure.
Investigate and remediate Purview DLP violations.
Participate in the design/architecture of new security hardware/software.
Position Type Information Technology
Apply
Location:
Boston

We found some similar jobs based on your search