COMPANY OVERVIEW:
Pratum is a cybersecurity consulting and managed security services firm. We help solve information security challenges based on risk, not fear. We are growing and are looking for talented individuals to join our team.
 
Help us get to know you by submitting your resume and cover letter with your application.

GENERAL DESCRIPTION:
 
Role:
Pratum is searching for an Information Security Engineer who can provide security engineering and administration services to clients in a variety of industries. Our diverse client base provides the opportunity to engage with a broad cross section of technologies. The responsibilities of this position enable regular interactions with applications, infrastructure, cloud, SaaS, and other environments. Primary duties include configuring security settings within MS Windows Server and Office365, AWS environments and various on premise firewalls and other networking equipment.
 
The Information Security Engineer will be accountable for providing clients expert knowledge and assistance in securing the technology stack within their organization. If you enjoy doing something different every day, embracing the challenges of ever-changing technology, and interacting with clients, this may be the job for you. 
 
Tasks:

  • Apply security policies to meet security objectives of the system.
  • Apply service-oriented security architecture principles to meet organization’s confidentiality., integrity, and availability requirements.
  • Ensure all systems security operations and maintenance activities are properly documented and updated as necessary.
  • Ensure that cybersecurity-enabled products or other compensating security control technologies reduce identified risk to an acceptable level.
  • Implement specific cybersecurity countermeasures for systems and/or applications.
  • Perform security reviews, identify gaps in security architecture, and develop a security risk management plan.
  • Properly document all systems security implementation, operations, and maintenance activities and update as necessary.
  • Assess the effectiveness of security controls.
  • Assess all the configuration management (change configuration/release management) processes.
  • Develop procedures and test fail-over for system operations transfer to an alternate site based on system availability requirements.
  • Analyze and report system security posture trends.
  • Assess adequate access controls based on principles of least privilege and need-to-know.
  • Implement security measures to resolve vulnerabilities, mitigate risks, and recommend security changes to system or system components as needed.
  • Implement system security measures in accordance with established procedures to ensure confidentiality, integrity, availability, authentication, and non-repudiation.
  • Mitigate/correct security deficiencies identified during security/certification testing and/or recommend risk acceptance for the appropriate senior leader or authorized representative.
  • Verify minimum security requirements are in place for all applications.
  • Provides cybersecurity recommendations to leadership based on significant threats and vulnerabilities.
  • Work with stakeholders to resolve computer security incidents and vulnerability compliance.
  • Provide advice and input for Disaster Recovery, Contingency, and Continuity of Operations Plans.

Education/Certification Preferences:
Bachelor’s Degree or equivalent work experience.
Professional Certifications (e.g., GIAC, AWS Cloud Architect/Security, or Microsoft 365/Azure Security) desired.

Equal Opportunity Employer, including disabled and veterans.
View Company Information

To see other positions, click here.