Information Security Engineer II

IDEMIA is the global leader in identity and security. Our mission is to create a safe and simple future where identity verification is indisputable, and only you can assert your identity. We are a distributed company leveraging the latest technologies to deliver world-class products in the private and public sectors of finance, telecom, identity, security, retail, sports entertainment, commercial, government, and IoT. We use a variety of technologies and approaches to deliver quality product and services to government agencies and technology companies. IDEMIA is a made up of a group of 14,000 diverse people from different nationalities, speaking over 20 different languages. Together, our solutions impact the everyday lives of citizens and nations. In this ever-changing world, protecting your identity is paramount. Join the team that is ensuring one person - one identity.

• Technical Support: Assist in the implementation and maintenance of assigned information security solutions.
• Procedure Development: Help develop and create technical procedures to standardize operational functions for assigned security technologies.
• Subject Matter Expert: Participate in the development of technical requirements, conduct proof of concept evaluations, and provide implementation guidelines for newly acquired technologies.
• Security Assessments: Conduct security assessments to identify gaps in controls, processes, and systems, and propose security enhancements to mitigate risks.
• Incident Response: Support incident response activities through investigation and reporting in coordination with users, key stakeholders, incident response teams, and leadership.
• System Design: Assist in designing secure systems and network architectures, maintain Splunk (SIEM) Infrastructure including tuning, event collection, reports, and dashboards.
• Monitoring: Monitor AWS-based systems for security events, anomalies, and threats.
• Cloud Security: Assist in cloud security activities such as configuration assessments, posture management, and other intrusive/simulation-led tasks.
• Collaboration: Work closely with other members of the security team, Cloud Platform Engineering, SRE, Development, and other teams.
• Compliance: Help build and upgrade security posture for compliance with SOC 2, NIST 800-53, and PCI-DSS.
• Organization and Planning: Demonstrate organization and planning skills, including time management, project coordination, and project management.
• Other Duties: Perform other duties as assigned.

• Experience: Minimum of 3 years of experience in information security.
• Education: Bachelor's degree in Computer Science, Information Technology, or a related field.
• Certifications: Relevant certifications such as CISSP, CISM, or CEH are preferred.
• Technical Skills: Hands-on working knowledge of at least 2: Splunk, AWS Cloud Security Services, CrowdStrike, Palo, Proofpoint, or Tenable.
• Incident Response: Proven skills in various elements of incident response, including hands-on experience conducting cybersecurity investigations into network infrastructure, systems, and application activities in enterprise environments.
• Certifications: One or more of the following certifications (Security+, CISSP, CCSP, AWS Security, GCIH, GCFA, etc).
• Security Controls: Knowledge and experience in deploying and managing security controls, capabilities, and tools in large, complex environments.
• Communication: Ability to communicate verbally and in writing