End User Computing & Security Engineer
Secaucus (Hudson County) IT development
Job description
SUMMARY
Kering America's IT End-User Computing (EUC) & Security Engineer is a hands-on position responsible for providing EUC and Information Security services to Kering's group of luxury brands in the Americas Region.
This position is accountable for the operations and maintenance of Kering Americas EUC environment and security systems, as well as monitoring and responding to threat detection, potential malicious attacks, access violations, and all required security enforcements. The role is responsible for protecting Kering organization's endpoints - including computers, mobile devices, networks and data in the region against threats, such as security breaches, computer viruses or attacks by cyber criminals. This position is also responsible for patch management by overseeing the regional patching process and the compliance of Microsoft and 3 rd party application patching.
As this position falls within the End User Computing department under IT Operations & Infrastructure, the candidate filling this position should also be knowledgeable across various technical competencies (for example: Windows and Mac OS, Imaging, Active Directory, FIM, Microsoft Exchange, Office 365, etc.).
This position requires close collaboration with the global security teams, infrastructure, and technical specialists in applying and upholding global standards, delivering innovative projects, continuous improvement and exceptional security protections.
The EUC & Security Engineer is expected to interface with peers in the regional Service Desk, Application and Network teams, as well as with the teams of the business units, to both share the corporate information security vision with those individuals and to solicit their involvement in achieving higher levels of organizational information security through information sharing and cooperation. Good team collaboration skills to develop security solutions jointly with other Operations and Infrastructure professionals within the teams are a must.
This role must have a strong background in information technology with a clear understanding of the challenges of engineering and information security. Requires excellent analytical and problem solving abilities to identify and remediate security risks.
The EUC & Security Engineer performs the following regional functions in our organization:
· Implements processes and procedures in accordance to the guidelines provided by Kering CISO, EUC & Security Manager and solutions defined by the Infrastructure team
· Manages and coordinates IT Security activities on a daily basis; analyzes security events and collaborates in the solution definition
· Manages the end-to-end lifecycle of the implementation of projects, including project initiation, testing, UAT/Pilot, production, etc. while working with all necessary parties (global, regional, brands, IT teams, etc.)
· Provide required information and evidence necessary audit remediation steps to close audit findings.
· Manage the regional patching process and patch compliance
· Manages and monitors the security control platform (QRadar)
· Manages and monitors Anti-Virus platform
· Performs and supports forensic activities when needed
DUTIES AND RESPONSIBILITIES
The regional EUC & Security Engineer is involved in MIS activities relating to all aspects of EUC and security operations, policies and audits as a part of the Regional MIS Team servicing all Luxury Group brands.
· Oversee day-to-day EUC and security operations and requirements of the region:
Ø Provide engineering and 3 level support for EUC environment
Ø Provide engineering and 3 nd level support for Office 365
Ø Monitor and manage corporate security: devices and systems in the region
Ø Provide expert security consultancy during requirements and design phases of the project development cycle
Ø Manage coordination of incidents/events related to security matters, following the Security Incident Response Guidelines
Ø Review and evaluate compliance to applicable security standards and policies
Ø Configure and optimize desktop operating systems and enterprise patch management systems
Ø Maintain a good knowledge on common protocols such as SNMP, HTTP, HTTPS, SMTP, NTP, LDAP, KERBEROS, RADIUS and FTP and Secure FTP.
Ø Ensure information security representation in the change management process
· Policy and Audit Responsibilities:
Ø Prioritize information security coverage to ensure that strategically important data, such as commercial information or personal data, receives the highest levels of protection
Ø Conduct internal regional information security assessments and provide recommendations to mitigate risks, assessing the organization's security measures, such as firewalls, anti-virus software and passwords, to identify any weak points that might make information systems vulnerable to attack
Ø Coordinate, respond and follow up on all IT audit related activities in the region until identified risks are remediated
· Leadership and management skills:
Ø Continuously improve information security operations support and processes while effectively controlling costs
Ø Provide proper budgeting and forecasts for the region's security operations as well as the shared service revenue calculations
Ø Provide guidance and counsel to the IT team in the region in security matters, working closely with senior staff of the regional businesses in communicating the objectives of information security, while building relationships and goodwill
Ø Promote collaborative, empowered working environments across the region, removing barriers and realizing possibilities
Desired profile
Qualifications :
QUALIFICATIONS & CRITICAL COMPETENCIES
· Technical:
Ø Experience providing desktop engineering and support
Ø Experience providing Office 365 rollout and support
Ø Experience providing Window 10 engineering support
Ø Experience with Patch Management using Microsoft WSUS environment
Ø Understanding of software distribution using Microsoft Configuration Manager
Ø Experience with McAfee Suite of productions (Agent, EPO, Antivirus, etc.)
Ø Knowledge of Active Directory Administration (AD, LDAP, and Group Policies)
Ø Experience with IT Security management on Windows OS, Mac OS, iOS, and Android devices
Ø Knowledge with custom scripting (PowerShell preferred)
Ø Understanding of information management and data classification
Ø Demonstrated understanding of VPNs and remote access
Ø Intermediate to expert virus protection and content filtering knowledge
Ø Knowledge of encryption techniques and PKI infrastructure
Ø Knowledge of forensic tools such as Encase, FTK, Helix, Wireshark
Ø Knowledge of reverse engineering, binary analysis and assembler
Ø Risk assessments
Ø Audits and accreditation process experience
Ø Security policy knowledge and experience
Ø Understanding of incident investigations processes and reporting
· Personal and Professional Skills:
Ø Strong analytical and issue resolution skills
Ø Strong collaborative and team coordination skills
Ø Strong written and verbal English skills
Ø Effective project management capabilities
Ø Understanding of business requirements, process and practice
Ø Strong leadership, results-oriented, with good organizational skills
Ø Innovative problem solving, design and testing skills
Ø Must be able to work in a fast paced environment
Ø Must be well organized and able to work under pressure
Ø Good interpersonal skills with a service orientated approach
Ø Must be able to work well individually as well as with a team
Ø Flexible approach to working hours
EXPERIENCE
MANDATORY
Ø Bachelor's degree in Computer Science, IT or related field or equivalent in education and experience
Ø 10+ years of total IT experience
Ø 5+ of experience as an End-User Engineer
Ø 3+ years of experience as an IT Security Engineer
Ø Demonstrated knowledge of Service Management frameworks (such as ITIL)
Ø Demonstrated ability to solve complex problems independently and to generate innovative solutions
Ø Ability to conduct cost/benefit analysis
Ø Track record of meeting or exceeding deadlines in uncertain environments
Ø Ability to work effectively in a team environment with aggressive deadlines and multiple priorities
TECHNICAL SKILLS AND KNOWLEDGE
· PREFERRED
Ø ITIL
Ø MCDST
Ø MSCE
Ø MSCA
Ø PMP