Security Engineer Data Protection Associate

Job description

About the role

We are seeking a motivated and technically proficient Associate Systems Engineer with a strong focus on security technologies to support and enhance our enterprise security posture. This role will work closely with senior engineers and security analysts to implement, maintain, and troubleshoot key security infrastructure components including Data Loss Prevention (DLP), email security platforms, firewalls, VPN solutions, and Cloud Access Security Broker (CASB) tools

Responsabilities

• Assist in the deployment, configuration, and maintenance of DLP solutions to prevent unauthorized data exfiltration across endpoints, email, and cloud platforms.
• Support email security tools (e.g., Proofpoint, Mimecast, Microsoft Defender) to ensure protection against phishing, spam, and malware.
• Monitor and manage firewall policies and rule sets across perimeter and internal firewalls (e.g., Palo Alto, Fortinet, Cisco ASA).
• Maintain and troubleshoot VPN infrastructure (e.g., Cisco AnyConnect, GlobalProtect, OpenVPN) to ensure secure remote access for users.
• Collaborate on the integration and tuning of CASB solutions (e.g., Netskope, McAfee MVISION, Palo Alto, Microsoft Defender for Cloud Apps) to enforce cloud security policies.
• Participate in incident response and troubleshooting efforts related to security infrastructure.
• Document configurations, procedures, and troubleshooting steps for knowledge sharing and compliance.
• Stay current with emerging security threats and technologies relevant to the role.

Qualifications

• Bachelor’s degree in Computer Science, Information Technology, Cybersecurity, or related field (or equivalent experience).
• 1–3 years of experience in systems engineering or IT security support.
• Familiarity with DLP platforms (e.g., Symantec, Forcepoint, Microsoft Purview).
• Working knowledge of email security tools and protocols (SMTP, SPF, DKIM, DMARC).
• Basic understanding of firewall technologies, NAT, ACLs, and packet inspection.
• Experience supporting VPN solutions and remote access technologies.
• Exposure to CASB platforms and cloud security concepts.
• Strong troubleshooting and analytical skills.
• Ability to work independently and collaboratively in a fast-paced environment.
• Security certifications such as CompTIA Security+, Cisco CCNA Security, or Fortinet NSE.
• Experience with SIEM tools and log analysis.
• Experience with Information Classisification tools like Microsoft IRM, Purview etc.
• Familiarity with scripting (PowerShell, Python) for automation and reporting.
• Hands-on experience with enterprise-grade security tools and technologies. Support for professional development and certifications.

Employees in this role will work fully remote. Every department has different needs, and some positions will be designated in-office jobs, based on their function.

Benefits

iCapital offers a comprehensive benefits package that includes a total compensation program consisting of competitive salary, annual performance bonus, and equity for all full-time employees; healthcare with 100% employer-paid health and dental insurance; and generous paid time off (PTO).

For additional information on iCapital Network, please visit https://www.icapitalnetwork.com/about-us  Twitter: @icapitalnetwork | LinkedIn: https://www.linkedin.com/company/icapital-network-inc