Role Overview:

The Sr. Security Engineer is responsible for leading efforts to prevent, monitor and respond to information/data breaches and cyber-attacks. The overall objective of this role is to ensure the implementation of Information Security directives and activities in accordance with Smith and Nephew perimeter, network, cloud security and data protection policies.

Responsibilities:

• Make changes to perimeter security devices such as Firewalls, Web Security Gateways, routers etc.
• Support Enterprise Threat Mgmt. team with incident investigations and help with technical risk assessments
• Provide high-level specialized technical support and consultation to business and IT management.
• Drive and complete technical deliverables and documentation on assigned projects.
• Collaborate with appropriate teams to create and gain approval on global technology standards and reference architectures on an ongoing basis.
• Develop and maintain documentation for configuration runbooks and templates.
• Provide technical knowledge as input into Standards creation and update on an ongoing basis as products and technologies evolve.
• Assume informal/formal mentorship role within teams and assist with the coaching and training of new team members

Location:

Any US based Smith+Nephew office locations. Will also consider remote candidates based in US within reach to a S&N office (hybrid-role).

Education:

Bachelor's degree in computer science, information systems and/or equivalent formal training or work experience. Five (5) years of experience in IT information security.

Licenses/ Certifications:

Current CISSP, CRISC, CISA, GIAC or equivalent certification preferred.

SANS-related certifications Education

PCNSE (Palo Alto Networks Certified Network Security Engineer)

Experience:

• 5+ years of experience as an Information Security Administrator or Engineer
• 2+ years in hands-on scripting/application development
• 2+ years of Application Security
• Extensive experience in designing and implementing perimeter security solutions including Palo Alto FWs, WAFs in different environments (On-prem, Cloud)
• Strong understanding of mitigating security controls (i.e anti-virus, IPS/IDS, email filtering, web site blocking, patching) and how they work in an overall defence in-depth risk assessment methodology
• Strong understanding of remote access and VPN technologies
• Strong understanding of LAN/WAN networking technologies and how they interact with technical security infrastructure
• Strong understanding of network troubleshooting tools such as Wireshark, tcpdump etc. and the ability to interpret their output
• Working experience with Agile, SAFe, CI/CD, DevSecOps
• Experience with vulnerability management and risk assessment
• Knowledge of cyber security standard frameworks such as ISO and NIST
• Understanding of network infrastructure, including firewalls/access-lists, web proxy and/or email architecture- particularly as they apply in a mitigating control functionality
• Experience with different cloud computing platforms and the cloud security framework
• Ability to design, recommend, plan, develop and support implementation of innovative security solutions
• Ability to work well with diverse, global teams as well as independently

Competences:

• Excellent written and oral communication skills
• Excellent customer service skills and problem resolution
• Experience in being able to manage and prioritize multiple tasks in an effective manner
• Ability to work independently without daily direction
• Understanding of back-channels typically used by actors for malicious activity
• Understanding of obfuscation techniques and best practices for ensuring device non-attribution
• Understanding of one or more Technology Platforms (Windows, Linux, Middleware Applications, Database Applications) - specifically as they apply to successful security control mitigation and particularly to vulnerability management
• Understanding of distributed denial of service attack intelligence gathering, concepts, mitigation tools, and techniques
• Understanding of mobility security device and application risk and threat assessment
• Understanding of nation and non-nation state actors, hacktivist groups, advanced threats, and the "kill chain" methodology
• Familiarity with secure coding best practices
• Strong communication & organizational skills, ability to multi-task, strong attention to details, excellent problem solving and follow-up skills required

Key Skills and Responsibilities (SFIA Based):

• ASUP - Level 4 Maintains application support processes, and checks that all requests for support are dealt with according to agreed procedures. Uses application management software and tools to investigate issues, collect performance statistics and create reports.
• SCAD - Level 4 Maintains security administration processes and checks that all requests for support are dealt with according to agreed procedures. Provides guidance in defining access rights and privileges. Investigates security breaches in accordance with established procedures and recommends required actions and supports / follows up to ensure these are implemented.
• HSIN - Level 5 Takes responsibility for installation projects, providing effective team leadership, including information flow to and from the customer during project work. Develops and implements quality plans and method statements. Monitors the effectiveness of installations and ensures that appropriate recommendations for change are made.
• INAN - Level 4 Applies a range of mathematical, statistical, predictive modelling or machine-learning techniques in consultation with experts if appropriate, and with sensitivity to the limitations of the techniques. Selects, acquires and integrates data for analysis. Develops data hypotheses and methods, trains and evaluates analytics models, shares insights and findings and continues to iterate with additional data.
• SCTY - Level 5 Provides advice and guidance on security strategies to manage identified risks and ensure adoption and adherence to standards. Obtains and acts on vulnerability information and conducts security risk assessments, business impact analysis and accreditation on complex information systems. Investigates major breaches of security, and recommends appropriate control improvements. Contributes to development of information security policy, standards and guidelines.
• DATM - Level 5 Devises and implements master data management processes, including classification, security, quality, ethical principles, retrieval and retention processes. Derives data management structures and metadata to support consistency of information retrieval, combination, analysis, pattern recognition and interpretation, throughout the organisation. Plans effective data storage, sharing and publishing within the organisation.
• Independently validates external information from multiple sources. Assesses issues which might prevent the organisation from making maximum use of its information assets.

Travel Requirements:

(all travel is restricted and based on company covid guidelines)

#LI-PS1

Smith+Nephew provides equal employment opportunities to applicants and employees without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, protected veteran status, or disability.