|Preferred GIAC Certifications||CISSP, GPEN, GCFA, GCIH, GCIA, C|EH, OSCP, OSCE|
|Contact Name||Emily Massie|
LSQ is the leading invoice finance platform in the U.S. We give entrepreneurs the power to access $5,000 - $50 million in working capital with the click of a button. Through our platform, businesses can upload unpaid invoices and get their money instantly without having to wait 30, 60, 90 or more days to get paid by customers. By freeing their cash trapped in open invoices, businesses can get the financing they need to grow without having to take out a loan.
Founded in 1996, we’ve delivered over $10 billion in funding to thousands of businesses across the nation. We’re profitable, expanding rapidly between our Orlando (HQ), New York, and San Francisco offices and recently raised $110 million in venture capital.
LSQ is seeking an exceptionally talented and motivated Cyber Security Engineer. The Cyber Security Engineer is a key member of an enterprise-level team of security and compliance experts. This person is responsible for protection of the corporate infrastructure from infiltration or exfiltration as a part of the Security Operations Center (SOC).
Perform systems and network analysis of intrusions to the network infrastructure, applications, operating systems, firewalls, proxy devices
Perform correlation of events from network and host sensors
Perform in-depth forensic analysis and incident response
Monitor information security alerts through the use of SEIM to respond, triage, and escalate as needed. Alerts include logs from firewalls, IDS, servers, applications, endpoint protection and DLP sensors.
Perform vulnerability scanning of the environment and analyze the results to assess risk to the organization and prioritize remediation efforts
Lead meetings with the Infrastructure Team to review vulnerability findings
Conduct red team penetration tests and exercises
Implement security device changes (firewalls, VPN, IDS/IPS, HIPS, Endpoint Protection)
Research, architect and deploy new security products and solutions
Collaborate with other teams to provide information security guidance and best practices
Bachelor’s degree in computer science, computer engineering or information systems; or equivalent experience
Five years of experience in managing and maintaining firewalls, including creating and managing firewall rules, reviewing logs and troubleshooting network issues
Five years of experience in managing anti-virus products, endpoint protection, application whitelisting and HIPS
Industry recognized professional certification (e.g., CISSP, GPEN, GCFA, GCIH, GCIA, C|EH, OSCP, OSCE) a plus
Experience in managing Security Event and Incident Management (SEIM) systems
Working knowledge of TCP/IP, OSI model and common networking protocols
Ability to convey security concepts related to network, application, and systems - to both technical and non-technical audiences
Ability to perform forensic and root cause analysis of possible intrusions and to action appropriately
Experience writing scripts to automate processes (Python, Powershell, etc.)
Functional knowledge of and administrative experience on Windows, Linux, VMWare and Amazon Web Services.
The candidate should have a basic understanding of security policies and security best practices and experience working in regulated environments
Knowledge of technology control initiatives such as ISO, SSAE 16/18, PCI, ITIL, and COBIT
Position Type and Expected Hours of Work:
This is a full-time position. Days and hours of work are Monday through Friday, 8:00 a.m. to 5 p.m. Occasional evening and weekend work may be required as job duties demand.
While performing the duties of this job, the employee is regularly required to sit and use hands to finger, handle, or feel. The employee is frequently required to reach with hands and arms and talk or hear. The employee is occasionally required to stand; walk and stoop, kneel, crouch.
There will be minimal traveling required for this position.
LSQ is an Equal Opportunity Employer that does not discriminate on the basis of actual or perceived, race, religion, color, sex (including pregnancy and gender identity), sexual orientation, parental status, national origin, age, disability, family medical history or genetic information, political affiliation, military service, any other non-merit based factor or any other characteristic protected by applicable federal, state or local laws. Our leadership team is dedicated to this policy with respect to recruitment, hiring, placement, promotion, transfer, training, compensation, benefits, employee activities and general treatment during employment. If you’d like more information about your EEO rights as an applicant under the law, please click here http://www1.eeoc.gov/employers/poster.cfm