Our information security team is currently seeking an Information Security Engineer to join our growing team in our Worcester, MA office in a hybrid work arrangement

POSITION OVERVIEW:

This engineer will join a team responsible for building, maintaining, and improving the organization’s threat detection and response capabilities. This Engineer will collaborate within the InfoSec team and across partner business units to improve our cybersecurity posture.

A successful cybersecurity engineer is technically strong, communicates well, and is committed to building relationships to drive performance. Engineers are expected to work closely with engineers, analysts, and technicians, while consistently demonstrating behaviors aligned with our core values.

This is a full-time, exempt position.

IN THIS ROLE, YOU WILL HAVE:

• Builds, integrates, and supports information security solutions supporting executive strategies and ensuring the security of the information The Hanover is entrusted to protect.
• Contributes to organizational initiatives within assigned area(s) of responsibility.
• Assesses operational business processes to ensure security is appropriately integrated.
• Assesses potential risks with applications and products and provides recommendations for risk mitigation to help the business succeed with their projects.
• Collaborates with networking team, architects, developers, and others to ensure security.
• Directly engages in troubleshooting and delivery with stakeholders, including end-users.
• Provides information security engineering support across the organization –including off-hours support and on-call rotations as appropriate.
• Ensures reports and findings are delivered in a timely and appropriate manner to management / leadership.
• Contributes to recommendations for new security policy, standards, best practices, and system configuration standards. Consults on security topics and policy interpretation.
• Identifies higher risk areas of the infrastructure and environmental landscape for assessment.
• Engages in coordination activities across multiple departments and business units.
• Maintains knowledge on current and emerging developments/trends for assigned area(s) of responsibility, assesses the impact, and collaborates with technical leadership and management to incorporate new trends and developments in current and future solutions.
• Implements process improvements to improve quality across the team, department and/or business unit for his/her assigned area(s) of responsibility.
• Executes independently and collaborates with team members and applicable internal/external stakeholders on assignments/projects for assigned area(s) of responsibility.
• Executes independently and collaborates with team members for assignments, projects, and/or initiatives to build and enhance the capability of assigned area(s) of responsibility.
• Creates, scripts, and maintains correlation searches and alerts leveraging diverse log sources and types
• Applies best practices for security logging and alerting to prevent and detect security incidents.
• Optimizes alerting and response techniques utilizing complex and/or machine learning, automation, and orchestration techniques.
• Analyzes security events within the Security Operations Center to research and address security incidents.
• Monitors and provides assurance of the overall health and effectiveness of prevention, detection, and response capabilities.
• Contributes to building and improving cybersecurity procedures and documentation
• Collaborates with cybersecurity engineering and cyber threat intelligence teams to implement and tune security tools used by InfoSec operations.
• Engages in knowledge sharing, training, and mentoring activities with information security team members.
• Executes certificate management.

WHAT YOU NEED TO APPLY:

• 4-year/Bachelor's degree or equivalent work experience (4 years of experience in lieu of Bachelor's) (Minimum Required)
• 3+ years of IT Security experience, in areas such as security operations, incident analysis, incident handling, and vulnerability management or testing, log analysis, intrusion detection that directly relates to the responsibilities of this position. (required)
• Must be eligible to work in the US without requiring sponsorship now or in the future (i.e Lawful Permanent Residence or US Citizen
• Hands-on experience with a variety of cybersecurity tools
• Hands-on experience in a Windows / Linux environment
• Hands-on experience with endpoint encryption, endpoint protection, anti-virus, security monitoring agents, vulnerability scanning, content analysis and filtering, data loss prevention.
• Demonstrated experience with scripting languages such as PowerShell, Perl, and Python
• Must have excellent trouble-shooting and problem-solving skills
• Demonstrated understanding of Security Fundamentals, General IT knowledge, Network Systems, Firewalls, IDS/IPS Systems, Windows & Linux Systems Administration, Windows/Linux and MAC operating systems, Desktop Engineering, Cloud Technologies, Databases, and Software Development
• Security certifications such as CISSP, CISM, CompTIA's Security+, CEH required or to be obtained within 18 months.

• Ability and commitment to communicate effectively, consistently chooses appropriate communication methods to ensure critical information reaches and persuades intended audience
• Strong team player. Uses strong interpersonal skills to build partnerships with stakeholders and peers
• Possesses leadership qualities
• Demonstrates a strong sense of accountability (ownership and commitment) toward achieving goals and tasks; making, meeting and communicating progress.