Cyber Security Engineer

H.B. Fuller | Posted 4-12-2021

Porto (Cíber segurança)


H.B. Fuller is a leading global adhesives provider focusing on perfecting adhesives, sealants and other specialty chemicals across all industries throughout the world. While our products are virtually invisible, they play a vital role in ensuring the quality of modern life and we are committed to connecting what matters to solve some of the world's biggest adhesion challenges.

POSITION OVERVIEW

The IT Cyber Security Engineer reports to the Security Manager, and has primary responsibility in the development, monitoring, evaluation, and maintaining of systems and procedures necessary to protect host and network systems from unauthorized access and security threats.

The IT Cyber Security Engineer typically participates in creating, implementing, and evaluating security standards, guidelines and procedures related to firewalls, intrusion detection, vulnerability scanning, host operating systems, and network devices. In addition, the IT Cyber Security Engineer will be responsible for managing and extending the global monitoring and SIEM systems, installing and supporting security technologies, such as DLP, ATP, anti-virus, encryption, wireless, mobile security, multi-factor authentication, PKI, and content filtering and participating in small to medium sized projects.

PRIMARY DUTIES

This individual will be involved in a variety of host, desktop and network security areas within the global Information Technology department. Frequent communication with H.B. Fuller staff in all regions is expected for troubleshooting, performance tuning, and project activity. The IT Security Engineer will also be expected to work through trouble tickets with internal and external partner vendors in the support of our global Infrastructure. There is an on-call expectation for this role.

Systems Support [70%]:

  • Primary responsibility for multiple key areas of host and network security implementation, deployment and support technologies related to host, network and cloud platforms including:

    • Firewalls, Endpoint Security, IDS/IPS, sandboxing, URL filtering, Web Security, Cloud- and email security

    • SIEM monitoring tools and Vulnerability Management

  • Research appropriate technology and product offerings

  • Assist with configuration and implementation deployments for new apps, upgrades, and architectural changes

  • Designs, supports and installs security and monitoring technologies

  • Performs analysis of system logs and user access issues

  • Audit and establish management processes for privileged accounts

  • Participates in emergency response team activities regarding security incidents

  • Performs in-depth support for information security incidents including internal violations, hacker attacks, virus, and other system outages

  • Prepares and updates security policy, processes, and related technical documentation

  • This is a support engineering role also accountable for change control, configuration management and CMDB accuracy, and internal support processes improvement or automation

Project Activity [20%]

  • Consult with senior security and risk management individuals, network lead engineers, business and systems analysts, infrastructure, and desk side in assigned projects to identify user needs and project task requirements

  • Serve as lead security engineer for smaller activities requiring limited resources or technical depth

Documentation & Communication [10%]

  • Prepare documentation for the systems, scripts, procedures in accordance with department and corporate standards

  • Prepare and submit project status and/or other reports to the Project Manager or Security Manager as required

  • Develop and maintain effective working relationships with global users and technical peers

  • Conduct effective, on-going communication, both written and verbal

  • Keep abreast of new developments in security hardware and software technology, and be informed of the latest techniques, technologies, and practices

Minimum Requirements

  • Bachelors in BA, CS MIS, or technical degree/equivalent

  • 4+ years of on-the-job experience including:

    • General infrastructure (server, load balancer,…) and PC fundamentals

    • Key monitoring events and conditions on various network hardware and software

    • VPN configurations and usage

    • Firewalls, and DMZ architecture

    • General security, monitoring tools, IDS/IPS

    • Detailed technical knowledge sufficient to independently identify and diagnose system malfunctions, bots, and other malware issues

    • EndPoint Security incl. advanced EDR (such as Cisco AMP, Crowdstrike, Carbonblack etc.)

    • Knowledge of Microsoft EMS E5 products, like Cloud App Security, Azure Information Protection, Intune, etc.

    • Vulnerability Management (like Tenable Nessus or Rapid7 InsightDR)

    • User Awareness Program

    • Data Loss/Leakage Prevention

    • PKI – Public Key Infrastructure

  • Thorough understanding of OSI model

  • IT Infrastructure Library (ITIL) functions(incident, change, problem, asset management)

Preferred Qualifications:

  • Database security, server and client security and encryption, cloud security

  • Cisco firewalls (ASA/FTD/FMC), Open DNS/Umbrella, Cisco IOS (interfaces, configuration, routing, QOS, …)

  • Email Security (like Cisco, Microsoft)

  • Cisco CCENT, CCNA, CISSP, SANS certifications is a plus

  • Various protocol knowledge (SIP, Telnet, HTTP, SSL, PPP, WLAN, CDP …)

  • Advanced Threat Protection, security information and event Management (SIEM), and security advanced threat protection (ATP) systems use

  • Understanding of security standards like SOC2, ISO 2700x, UCF, NIST

Employees are eligible for full benefits, including medical, dental, insurance, 401k contribution, paid time off and paid holidays. All employees also qualify for an annual cash bonus, based on business performance. Annual raises are rewarded based on company and individual performance.

To all recruitment agencies: H.B. Fuller does not accept agency resumes unless directly engaged by Human Resources. Please do not forward any resumes to Human Resources or any employees. H.B. Fuller is not responsible for any fees related to unsolicited resumes.

At H.B. Fuller, we are proud to be an Equal Opportunity Employer and are committed to providing all applicants and employees with equal employment opportunity. We subscribe to the Office of Federal Contract Compliance Programs (OFCCP) policy of employing and promoting individuals based on their merits, regardless of race, color, religion, sex, national origin, age, disability, veteran status, sexual orientation, gender identity or expression, marital status, citizenship status, or any other protected classification.