Job description
Join EVOTEK: North Americaβs Premier Digital Business Enabler
As North America’s premier enabler of secure digital business, we integrate cutting-edge technical expertise across data center, network, security, cloud, and communications domains. By delivering cohesive digital solutions, we help businesses drive measurable impact and accelerate their transformation.
Our award-winning culture is the cornerstone of everything we do. Recognized multiple times byΒ _Inc. Magazine_Β as a “Best Place to Work”, weβre proud to create an environment where innovation and collaboration thrive. Locally, weβve been honored byΒ _The San Diego Business Journal_Β as a “Best Place to Work” more than seven times, and our excellence is reflected in accolades like CRN’s “Solution Provider 500”, “Tech Elite 250”, and “Top 150 Growth Companiesβ. Weβve also earned a spot among CRNβs “Triple Crownβ award winners.
If youβre ready to be part of a team that values innovation, culture, and business impact, EVOTEK is the place for you.
Role Summary
The Security Engineer is responsible for testing, installing, configuring, and maintaining security solutions/tools as well as monitoring infrastructure (networks and systems) for unusual activity, security breaches, and/or intrusions. This individual will work closely with client teams on the implementation, maintenance, and administration of security tools. Additionally, Security Engineers communicate findings, incidents, and concerns to relevant team members and leadership in a timely manner and work with teams to address and remediate those findings and concerns.
The Security Engineer may also be engaged in Resident Engineer positions with specific clients. These Resident engagements are longer-term contracts where the Security Engineer is effectively dedicated to a specific client full-time for a defined period (typically 3-, 6-, or 12-month engagements).
Working with client and team members to develop and document security standards and policies.
Assisting with installation, configuration, and operation of new security products and procedures.
Deploying, troubleshooting, maintaining, and administering security solutions (such as Endpoint Protection, SIEMs, Vulnerability Management solutions, email security gateways, event logging solutions, etc.).
Discovering and recommending security enhancements to client teams.
Participating in, or conducting, vulnerability scans of client environments.
Working with client teams prioritize and remediate discovered vulnerabilities.
Undertaking system and infrastructure hardening efforts per standardized benchmarks (E.g.: CIS benchmarks, CIS-CAT assessments, NIST standards, etc.).
Installation and configuration of solutions that monitor for and notify when unusual behavior is detected.
Monitoring infrastructure for security breaches or intrusions (via security tools and solutions).
Monitoring for irregular system behavior.
Ensuring that client organizations have detailed, timely, and accurate information regarding security concerns, security findings, and incidents.
Participating in, and sometimes leading, incident response activities.
Participating in, and sometimes leading, investigations into how incidents and/or breaches occur.
Participation in security tabletop exercises.
Assisting with the education of client staff members on information security through training and awareness.
Developing automation solutions (scripts, etc.) to handle and track incidents.
Testing security solutions using industry standard analysis criteria.
Helping plan and implement an organizationβs information security strategy.
Recommending modifications with regards to legal, technical, and regulatory areas.
5-10 years’ experience in Information Security and Engineering.
A strong background in both data / information security and system engineering.
Possession of both deep and wide expertise in the security space.
Having a breadth of experience with security solutions and concepts overall, while also having deep knowledge of several specific security solutions/tools.
Experience deploying, troubleshooting, integrating with, managing, and maintaining security solutions (think email security gateways, network security tools, SIEMs, Antivirus/EPP technologies, etc.).
Experience monitoring infrastructure and systems for security breaches or intrusions.
Familiarity with regulatory requirements (GDPR, CCPA, HIPAA, PCI DSS, etc.).
Deep understanding of server operating systems (Windows Server and Linux [multiple variants] are most common).
Experience with AWS and/or Azure environments is a plus.
Experience with MS 365 is a plus.
Experience in some specific industry verticals (healthcare, biotechnology, government, department of defense) is helpful.
Excellent communication skills, both written and verbal.
Documentation of security tools, deployment configuration, incident reports, etc.
Communication with client teams on the above as well as clear explanation of concerns, findings, and incidents.
Salary commensurate with yearsβ of experience, technical expertise and geographic location.
Salary range: $100,000 to $150,000.
Performance bonuses.
Benefits package that includes 100% paid medical, dental and vision for the employee.
401(k) with employer match.
Strong company culture.
Flexible PTO policy.
Flexible working arrangements.
Annual company overnight retreat.
Equal Opportunity Employer
EVOTEK believes that everyone has the ability to make an impact, and we are proud to be an equal opportunity employer committed to providing employment opportunity regardless of sex, race, creed, color, gender, religion, marital status, domestic partner status, age, national origin or ancestry, physical or mental disability, medical condition, sexual orientation, pregnancy, military or veteran status, citizenship status, and genetic information.
