Sr. Cyber Security Engineer

Overview:

OSI Systems and its subsidiaries is a vertically integrated provider of specialized electronic systems and for components that meet the critical needs in the homeland security, healthcare, defense, and aerospace industries. As a global company, we are dedicated to developing solutions for our customers and the people they serve to lead the way to a safer and healthier world.

OSI Systems is seeking a Sr. Cybersecurity Engineer. This individual will be involved with cyber security engineering projects along with day-to-day security operation tasks to achieve Information Security long-term goals.

Responsibilities:

• Designing enterprise scale Cyber Security Solutions in alignment with Information Security Strategy.
• Engineering, implementation, and monitoring of security controls for the protection of network, systems, data and endpoints in a multi-cloud environment, to help mitigate security risks.
• Work with the IT Infrastructure, IT Applications, IT Compliance and Governance teams to implement these controls.
• Risk assessment of M365 platform, AWS, Azure and third-party SaaS services, make recommendations to mitigate risk.
• Identify and define security requirements for Business and IT Projects. Analyze, report, and assist in management of security-related risks, including reporting on outcomes and proposing further security improvements.
• Key member in responding to and triaging security incidents, including guiding security operations and security engineers.
• Perform service management for security platforms, including problem, change, configuration, and asset management.
• Work with third-party security service providers to ensure service delivery objectives are met.
• Prepare and publish standards, processes and operating procedures.
• Uphold the company’s core values of Integrity, Innovation, Accountability, and Teamwork.
• Demonstrate behavior consistent with the company’s Code of Ethics and Conduct.
• It is the responsibility of every employee to report to their manager or a member of senior management any quality problems or defects in order for corrective action to be implemented and to avoid recurrence of the problem.
• Duties may be modified or assigned at any time to meet the needs of the business.

Qualifications:

• Bachelor’s degree in Computer Science, Information Security, or related field required.
• 8+ years of work experience in information technology combined with information security experience.
• 5+ years of work experience in cyber security, in a hybrid cloud computing environment (on-premise, AWS and Azure).
• Hands-on experience in network security (Firewalls, VPN, Proxys, Web Application Firewall, CASB, etc.), systems security Windows and Linux), cloud security (AWS and Azure), data security, endpoint security and identity and access management is required.
• Hands-on experience in vulnerability management, configuration management, media protection, contingency planning, log management, and data protection methods is desirable.
• Experience in M365 E5 Platform, AWS and Azure Threat Detection and Response techniques.
• Hands-on experience in implementing NIST 800-171 and ISO 27002 security control frameworks.
• Familiarity with web related technologies (Web applications, API, etc.) and of network/web related protocols.
• Thorough understanding of the security principles, techniques, and protocols, including defense-in-depth, network segmentation, privileged access management, common application security flaws, and commonly known ports.
• Professional information security-related certifications such as CISSP, GSEC, CCSP, CISM.
• Proven ability to lead a project from start to finish from the technical side.
• Previous experience working in a global enterprise environment.
• Good verbal and written communication skills in English. Capability to clearly communicate information security concepts and risks.
• Problem solving skills and ability to work under pressure.
• Ability to work independently as well as in a team structure.
• Willingness to accommodate other time-zones.
• Off-hours support may be needed.
• Familiarity with standards and frameworks such as NIST 800-53, PCI-DSS, HIPAA Security and Privacy Rule, ISO/NIST Risk Management is preferred.
• Must be able to travel domestically on an as needed basis. Currently estimated at 10% -15% of the time.

The specific programs and options available to any given employee may vary depending on eligibility factors such as geographic location and date of hire. Please note that the salary information shown above is a general guideline only. Salaries are based upon candidate experience and qualifications, as well as market and business considerations.

NOTICE TO THIRD PARTY AGENCIES

Any unsolicited information or resumes, including those submitted directly to hiring managers, are considered and deemed to be the property of OSI.

Equal Opportunity Employer - Disability and Veterans

EEO is the Law

Poster Link: [...]

OSI Systems, Inc. has three operating divisions: (a) Security, providing security and inspection systems, turnkey security screening solutions and related services; (b) Healthcare, providing patient monitoring, diagnostic cardiology and anesthesia systems; and (c) Optoelectronics and Manufacturing, providing specialized electronic components and electronic manufacturing services for original equipment manufacturers with applications in the defense, aerospace, medical and industrial markets, among others.