Sr. Information Security Engineer

Sr. Information Security Engineer

North- Remote, Eastern Time Zone

What you'll be doing:

• Develop and maintain necessary procedure and policy documentation

• Facilitate internal and external penetration tests.

• Identify security gaps, develop recommended solutions, and work with the business units and other IT teams to facilitate implementation

• Review of new IT systems and updates to existing systems to ensure controls are maintained and tested

• Perform security log reviews, analysis of security events, and develop reports using log correlation engine.

• Manage and operate vulnerability and compliance scanning systems; plan and facilitate remediation efforts for any findings.  Write signatures and run scans to ensure systems maintain compliance with benchmark configurations

• Develop and implement security hardening and configuration standards and procedures for information systems

• Manage and monitor intrusion detection/prevent systems, analyze and respond to alerts, perform network traffic analysis and system reviews to identify compromised systems.

• Facilitate incident response and forensic efforts

• Work with systems engineers and administrators to ensure secure systems are built and maintained

• Plan business unit security initiatives and events.

• Supports the Cloud Infrastructure team in securing the cloud-based virtual environment.

• Oversees North's security evaluations, implementations of products, software integration, configuration development, operational procedures, and security policies.

• Evaluate and recommend security best practices.

• Creates and modifies policies, standards and procedures.

What we need from you:

• Bachelor’s Degree in a technical related field

• Must have 5+ years of information security experience

• Hands on experience with the implementation and management of general IT systems as well as intrusion detection/prevention systems, firewalls, file integrity monitoring, web application firewalls, log and event correlation systems, network and vulnerability scanners, and security information and event management tools.

• Solid technical understanding of networking, Microsoft Windows desktop systems, Microsoft Windows Servers, Linux, Active Directory, web servers, Microsoft Exchange, web application firewalls and storage technologies.

• Excellent written and verbal communication skills, including the ability to communicate complex technical information in non-technical terms

• Strong technical background in information systems, systems administration, network design

Additional Beneficial Skills:

• Digital forensics

• Penetration testing

• Documenting and publicizing security policies, procedures and standards.

• Patch Management experience

• Anti-malware platform experience

• Intrusion detection (tcpdump, Snort, ISS Real Secure, event correlation, time synchronization)

• Security Scanning tools (Nessus, Nmap, ISS Real Secure, Qualys Scan)

• Firewall technologies (Cisco PIX, CheckPoint, Netfiler/iptables)

• Virtual environment experience.  Amazon AWS, MS Azure, VMWare

• Incident response

• Log Management and event correlation.

• Computer forensics (Backtrack)

• PKI and encryption (symmetric, asymmetric, hash, message digest)

• Authentication (LDAP, passwords, PINs, tokens, smart cards, digital certificates, biometrics, etc.)

• Risk assessment

• Data classification

• Security auditing

• VPN technologies (PPTP, IPsec, Cisco GRE, PKI, IKE)

• OSI and TCP/IP model

• Network server/client communication protocols (SSL, SSH2)

• LAN/WAN design

• Routers, switches and hubs

• Network addressing

• Subnetting

• Access Control Lists

• Protocol and network analysis tools

• Wireless networking

Salary Range: $90,000- $157,000

Pay within this range varies by work location and on job-related knowledge, skills, and experience. We look forward to discussing your salary expectations and our full total rewards offerings throughout the interview process.

What we offer: 

We offer a comprehensive benefits package that enables our teams to live a life well lived, both personally and professionally. Some of our perks include:

• Medical, Dental, & Vision Coverage

• Flexible Paid Time Off

• 401(k) + Match

• Mental Health Support & Well-Being Program

• Paid Maternity & Paternity Leave

• Education Assistance

• Company-funded Lifestyle Spending Account

Please note: North is a US based company and this role is not eligible for current or future sponsorship.

Let’s go North, together. 

Join our mission to build the largest suite of credit card processing and merchant services. It’s one simple payment platform backed by the most diverse payment companies. From credit card processing to back-office management, North points the way to smarter, faster, and just plain better payment solutions.

Who we are: 

North, and our family of companies, are committed to helping entrepreneurs grow their businesses. As an end-to-end payment solutions company, we provide everything business owners need to get paid, whether they serve customers in a physical storefront, online, or both. We pride ourselves on being large enough to offer customized solutions to our enterprise-level clients while remaining agile enough to take an award-winning, hands-on approach to personal service that our merchants won’t find anywhere else.

Let’s go North, together! Our most important resource is our people. Join our diverse team of innovators and do-ers and make your mark on the future of payments technology. We're proud to offer benefits that help our team members further their overall well-being through unique initiatives that are both personally and professionally fulfilling. 

At North, we celebrate diversity and create an inclusive environment for everyone. We are an equal opportunity employer.

To learn more about North, and our family of companies, visit our website: north.com

#LI