Cisco Sr Security Engineer

Founded in 1971, Gypsum Management & Supply, Inc. (GMS) is the leading North American specialty distributor of interior building products. Our product offerings of wallboard, ceilings and complementary construction products are designed to provide a comprehensive solution for our core customer- building contractors who install our products in commercial and residential buildings. GMS's operating model enables GMS to continue to grow and expand in scope, while maintaining a high level of customer service, promoting an entrepreneurial culture, and preserving the customer intimacy of a local business.

GMS and its family of companies operate a network of nearly 300 building product distribution yards, and more than 100 tool sales and service centers, for customers across the U.S. and Canada. The Field Support Center in Tucker, Georgia serves each GMS location, providing the support needed to enable local teams to deliver outstanding service to contractors and builders in their local communities.

Qualified applicants with arrest or conviction records will be considered for employment in accordance with state and local law.

Position Summary:

The primary functions of the Cisco Senior Cyber Security Engineer include Network Security; using a working knowledge of Cisco network hardware as well as the Cisco Software Security tools; Security Incident and Event Management; Prioritize remediation of gaps based on internal and external audits.

Duties & Responsibilities:

• Enterprise Network Security.
• Working knowledge of Cisco network hardware.
• Advanced Malware Appliance.
• Security Incident and Event Management.
• Cisco Cyber Security tools.
• Writes security reports and make recommendations.
• Ensures compliance with organizational security rules and standards.
• Coordinate and execute IT security projects
• Coordinate response to information security incidents
• Conduct company-wide audits and manage remediation plans.
• Conduct research to keep abreast of latest security issues.
• Prioritize remediation of gaps based on internal and external audits.
• Prepares compliance reports by collecting, analyzing, and summarizing data.

Basic Qualifications:

Must have

• Bachelor's degree (or equivalent work experience and Certifications) in) in Computer Science, Engineering and Minimum of 10 years of information systems security or related auditing experience.
• Preferred certifications: CEH, Security+.
• Ability to clearly communicate Information Security matters to executives, auditors, end users, and engineers, using appropriate language, examples, and tone.
• Strong analytical, technical, and problem-solving skills.
• Ability to work effectively, independent of assistance or supervision.
• Innovative, creative, and extremely responsive, with a strong sense of urgency.
• Willing to share knowledge and assist others in understanding technical and business topics.
• Experience with firewalls, routers, switches, load balancers and DMZ silos.
• Working knowledge of information systems security standards and practices (e.g., access control and system hardening, system audit and log file monitoring, security policies, and incident handling).

• Demonstrated experience of "hands on" security knowledge of one or more of the following platforms: Windows/Linux.

• Working knowledge with Cisco Cyber Security tools and SIEM/SOAR platforms.
• Experience with DNS, NTP, TACACS+, IPS and Cisco ISE.
• Working knowledge of protocols and technologies such as TCP, UDP, SSL, TLS, SSH, SFTP, SMTP, NetBIOS and DHCP.
• At least one technical certification related to a major platform (Microsoft or Cisco).
• Ability to interpret information security data and processes to identify potential compliance issues.
• Ability to quickly understand security systems to identify and validate security requirements.

Recommended skills and capabilities

• Experience with performing vulnerability scans and assessments.
• Familiarity with NIST governance and policy management best practices.

• Information Security best practices and common processes.
• A solid understanding of various firewalls, with actual experience in design, installation, configuration, and operation.
• Knowledge of network protocols, data flows, and vulnerabilities within a TCP/IP environment.
• Ability to perform network protocol analysis and raw data capture.
• A solid understanding and knowledge of LDAP.
• Knowledge of OWASP, ISO 27001/2, PCI-DSS.
• Self-motivated, self-directed and shows attention to detail while working.
• Works ethically and with integrity supporting organizational goals and values.
• Displays commitment to excellence.
• Completes work in a timely manner and meet deadlines.
• Contributes to building a positive team spirit and treats others with respect.
• Maintains confidentiality of information and uses information appropriately.
• Exhibits sound judgment when making decisions and recommendations.
• Fosters collaboration toward a common vision and shared goals.

Core Competencies:

• Strive to do the right thing by displaying trust and integrity.
• Embody the principles of servant leadership, even in a non-people management role, by putting the needs of others first, valuing diverse perspectives by sincerely appreciating and considering others' opinions and ideas and demonstrating a positive and humble attitude.
• Demonstrated ability to work independently and on a team; ability to lead, execute and/or delegate as needed, while also collaborating with others to get the job done.
• Establish and maintain effective working relationships at every level of the organization; invest in building relationships with the Field Operations and Field Support Center team members.
• Help champion an inclusive working environment; empower others to bring their full selves to the workplace; celebrate, welcome, and value the different backgrounds and experiences that make up our workforce; recognize that all team members are valued, regardless of race, background, tenure, or title.
• Ability to self-manage, show initiative, be proactive, and drive results.
• Communicate professionally, both verbally and in writing to coworkers and customers.

Physical Requirements:

• Must be able to remain in a stationary position in an office environment 80% of the time.
• Will frequently move about inside the office to access files, office machinery, etc.
• Must be able to operate basic office machinery.

• Must be able to clearly communicate Information Security matters to executives, auditors, end users, and engineers, using appropriate and accurate language, examples, and tone.
• Must be able to work outside of regular business hours as required which can include evenings, weekends, and holidays.

Required Cognitive Skills:

• Must be able to problem solve and prioritize tasks.
• Must be able to manage stress depending on deadlines and ongoing projects.
• Must be able to multitask.
• Must be able to receive and analyze information.
• Must be able to quickly communicate solutions if problems occur.
• Must be able to demonstrate a high degree of sound judgement and initiative.

Benefits & Perks:

• Medical, Dental, Vision, Disability & Life Insurance
• Wellness Benefits
• 401(k) Retirement Plan
• Employee Stock Purchase Program
• Paid Holidays & Vacation Days
• Professional Growth Opportunities
• Development & Training Programs

This job description is subject to change at any time.

EQUAL OPPORTUNITY EMPLOYER

Launch your career with a national building materials distributor and discover opportunities for growth and advancement. We value our team members and believe them to be our greatest assets. As such, we invest in training and strive to provide a work-life balance.

We are a smoke-free workplace committed to providing a safe and healthy environment for all. Smoking, including the use of e-cigarettes, is only permitted in designated areas and is prohibited in and around all company buildings, vehicles, and workspaces. Violations of this policy may result in disciplinary action.