Senior Enterprise Infrastructure Security Expert And Engineer

Company: Morton Salt
Location: Janesville
Posted on: January 16, 2023

Job Description:

*Join our Iconic Brand and make your mark as we take Morton Salt to the next level!*We offer an updated, modern and beautiful environment.Our compensation packages are incredibly competitive and include base salary + annual incentive bonus opportunities, as well as medical/dental/vision insurance, paid time off, 401(k) with company match, tuition reimbursement, Life Insurance, Health Savings Account and an employee assistance program.Most importantly, Morton Salt provides an opportunity to work with amazing people and make a visible impact on a brand everyone knows and loves!*Overview*Morton Salt is looking for a Senior Infrastructure Security Engineer to join the Corporate Information Security team. This is a highly technical role, and as a senior position, requires extensive knowledge of many domains in the information security and IT management realm, as well as deep and wide knowledge of the Fortinet fabric, applications, and products. This knowledge extends to all network switch LAN/WAN technology.*Responsibilities: ** Maintain and improve infosec systems to provide maximum uptime, scalability, continuity, functionality, and integration with the Fortinet Security Fabric and third party/fabric-partner tools.* Identify gaps in infosec infrastructure security and privacy capabilities, working with internal teams and developers to remedy and improve our systems and products.* Understand and improve the completeness and visibility of global log/event data while delivering useful dashboards, alerts and automation integration to the Incident Response (IR), Computer Security Incident Response Team (CSIRT) and Security Operations Center (SOC) teams.* Perform Blue/Red exercises against our infrastructure to validate event parsing, alerting fidelity, incident veracity and SOC response.* Serve as an internal subject matter expert to assess cyber threats and to secure the organization by leading in IR, TH, re-architecture, and remediation efforts.* Work with SOC team to identify visibility gaps, system usability issues, and to deliver infosec tooling improvements via configuration, parser improvement, or by raising bugs to development teams.* Develop, implement, and communicate vulnerability mitigation strategies to IT and development teams.* Identify, document, and monitor tactics, techniques, and procedures used by threat actors targeting Fortinet and the broader industry. Proactively research new attack vectors that may affect Fortinet infrastructure and applications.* Develop strategies, evaluate solutions, design, and implement tools, processes, and controls to validate and ensure that security and privacy are designed into Fortinet infrastructure and applications while adhering to policy, compliance, and governance requirements.*Knowledge, Skills, Abilities and Experience** 10+ years of work experience as an Information Security Researcher or Engineer working with multiple Fortinet products such as the core products plus FortiSIEM, FortiClient, FortiEDR - NSE7+ or equivalent knowledge.* 5 7 years experience in LAN/WAN/Internet services administration* 5+ years of experience with penetration testing, vulnerability testing, blue/red teaming.* Proficiency with administrative operation, configuration, and debugging/ troubleshooting of Linux, Windows, MacOS, Active Directory, Exchange etc. and SSO/MFA technologies.* Practical understanding of tactical application of various compliance frameworks including monitoring and validating compliance.* Knowledge of the following technologies: Routing, Switching, VPN, LAN, WAN, Network Security, Stateful Firewalling, NGFW, Firewall policies, Identity based policies, NAT, IPS, AntiMalware, Botnet, Application Control, DDoS, Web Filtering* Strong understanding in the following technologies and protocols: TCP/IP, IPv4, IPv6, supernetting and subnetting, DNS, HTTP, SMTP, RADIUS, LDAP, Active Directory, PKI, IKE, Certificates, L2TP, SSL Decryption, SSL VPN, IPSEC, NAT, Stateful Firewall, Firewall Policies, 802.1Q, VLANs, LACP, MD5, SSH, SSL, SHA1, SHA512, 3DES, AES* Experience with encryption and authentication technologies required* Bachelor's degree in Computer Science, Software Engineering or related field, or an equivalent combination of training and experience is desirable with minimum of CCNP level of education.Job Type: Full-timePay: $100,000.00 $150,000.00 per yearBenefits:* 401(k)* 401(k) matching* Dental insurance* Employee assistance program* Flexible schedule* Flexible spending account* Health insurance* Health savings account* Life insurance* Paid time off* Parental leave* Tuition reimbursement* Vision insuranceSchedule:* Monday to FridaySupplemental pay types:* Bonus payExperience:* Information Security Research/Engineering: 10 years (Required)Work Location: One location

Keywords: Morton Salt, Janesville , Senior Enterprise Infrastructure Security Expert And Engineer, Other , Janesville, Wisconsin