Information Security Engineer

MEMIC | Portland, ME

Posted Date 2/02/2018

Working under minimal supervision, the Information Security Engineer is responsible for working with the Enterprise Infrastructure Architect and members of IT Infrastructure to install, configure and tune Information Security controls, appliances, software and applications; and oversee the operation, availability and performance of security controls across all supported architectures and platforms.

The Information Security Engineer will be the primary administrator of these security controls, creating and testing rules for firewalls, IPS/IDS and network access control, managing antivirus, endpoint protection, web proxy and email spam server security controls, in addition to other security controls.

  • Maintains existing security controls to ensure each is at the supported version and releases, that all patches, updates are installed. Adheres to Change Management procedure to document changes needed.
  • Researches manufacturer recommended configuration settings and tests to evaluate whether each control is optimized for best performance.
  • Documents procedures to maintain and manage each control, and keeps documentation up-to-date.
  • Collaborates with Senior Information Security Analyst and Enterprise Infrastructure Architect in designing new systems, applications and networks which require security controls to ensure inclusion from the onset.
  • Manages the security of the subnet where Information Security tools are run. Ensures they are isolated from the greater network, that devices are hardened, and that encryption is in use for both data at rest and in motion.
  • Performs as back-up for Level 2+ response for daily security event reports indicating suspicious activity, and elevates as necessary.
  • Acts as First Responder to all Cyber Incident incidents. Serves as a member of the Computer Security Incident Response Team and carries our tasks as assigned to protect the IT Infrastructure and data.
  • Attends Change Management meetings as needed; reviews changes for security impacts.
  • Performs as backup for Level 2+ duties for Service Now incidents assigned to Information Security.


  • Requires an Associate’s Degree with 2-3 years of demonstrated Information Security experience with 3-5 years of hands on experience in ever increasing roles and responsibilities.
  • Prefer CISSP certification, in good standing and/or industry certifications (GIAC).
  • Requires working level of knowledge of Cisco firewalls, IPS/IDS, ESA, WSA, AMP and ISE. Cisco FirePOWER experience preferred.
  • Cisco Certified Network Associate (CCNA) certification preferred.
  • Proficiency with Windows command scripting preferred.
  • Require working knowledge of VMware virtual server infrastructure.
Geographic Region
Greater Portland/Casco Bay
Engineering Services

Share this job

AddressPortland, ME