NJM Insurance Company has a full-time position available for a Senior IT Security Engineer within the IT department. The Senior IT Security Engineer will serve as a member of a team that is responsible for the design, implementation, optimization, and support of enterprise network security infrastructure, cloud and endpoint security solutions. A hybrid work schedule is available depending upon level of experience and time within the position.

　　Job Responsibilities:

　　Research, architect, implement and monitor security solutions including networks, servers, endpoints and storage across a wide variety of systems and data types

　　Daily operations to ensure endpoint security solutions are deployed appropriately and configured as desired. Interfacing with third party managed services team to triage events and take action upon endpoint security alerts.

　　Identify, define and document security controls. Transform information security recommendations into actionable IT security programs and solutions

　　Prepare, document and maintain operating procedures, incident response procedures, security standards and troubleshooting guides. Create detailed documentation of existing security solutions

　　Perform self-assessments of existing security systems to identify vulnerabilities, design weaknesses and recommend technologies and/or solutions to address the gaps

　　Determine and implement industry and security best practices by performing independent research and attending training when required. Develop and maintain infrastructure security roadmap

　　Triage and troubleshoot security related events to determine appropriate incident response and/or root cause

　　Work with audit department to provide requested information and evidence. Understand, address and close findings in a complete and timely fashion.

　　Act as the subject matter expert for multiple security product suites including firewalls, proxy servers, endpoint protection, IPS, email security, log management, content filtering, etc.

　　Design and implement various encryption technologies including SSL/TLS, S/MIME, IPsec, Site to Site VPNs and data at rest encryption.

　　Architect, implement and support internal and external PKI environments.

　　Determine appropriate security controls for various cloud computing environments, with the ability to implement and operationalize them.

　　Required Qualifications & Experience:

　　Excellent verbal, written and technical skills. Able to take highly technical information and present it to varied audiences in a manner easily understood.

　　Hands on experience designing, implementing, operating and troubleshooting complex IT security solutions in a dynamic work environment.

　　Able to work independently, as well as with a team, and is able to transform high level requirements into well thought out, well documented, secure solutions.

　　8-10 years of progressive work experience as an IT/cyber systems/security engineer. Experience with managing a team of direct reports is desired.

　　Experience managing enterprise endpoint protection technologies such as Symantec, McAfee and/or Crowdstrike.

　　Experience designing, implementing, and supporting security gateway solutions including Firewalls, IDS/IPS and VPNs from Checkpoint, Cisco and/or Palo Alto.

　　Experience architecting, implementing and supporting Internet proxy server and web filtering solutions such as Zscaler, Forcepoint and McAfee.

　　Experience with email hygiene and anti-spam solutions including Mimecast, Proofpoint and Symantec Mail Security.

　　Experience creating and maintaining site to site and client VPN solutions utilizing Checkpoint, AWS and Cisco technologies.

　　Experience with data encryption technologies and digital certificate management.

　　Experience with back-office products such as Windows, Linux, DHCP, DNS, Active Directory, RADIUS, IIS, Exchange, SQL Server, VMware ESX and Windows networking.

　　Experience with load balancing technologies such as F5, Netscaler and AWS ELB.

　　Experience with Web Application Firewalls (WAF) such as F5, Silverline, Imperva and AWS WAF.

　　Experience with provisioning and managing networking and security controls within public cloud providers such as AWS or Azure.

　　Experience partnering with third-party Managed Security Service Providers and Information Security providers.

　　Legal Disclaimer: NJM is proud to be an equal opportunity employer. We are committed to attracting, retaining and promoting a diverse and inclusive workforce that is fully representative of the diversity that exists in the communities in which we do business.

　　This isn’t just insurance. It’s NJM. When you join the NJM family, you’ll work with talented people who care about doing the right thing by our policyholders as well as each other. You’ll be part of a financially strong and stable company that has flourished on relationships, integrity, and service for more than a century. NJM is a special place where you can propel your career, help others, and make friends – all at the same time.

　　NJM is proud to offer our employees continuous learning options, outstanding benefits, access to wellness programs, and a wide range of opportunities to give back to the communities we are privileged to serve.

　　We have been named a Forbes America's Best-in-State Employer for four consecutive years.

　　Come join us! It’s time for you to make a difference alongside our remarkable team.