Job Information
CoreCivic Cybersecurity Engineer I in Brentwood, Tennessee
This position Pays $84,000 - $106,000 Annually + Bonus
This Position is a Hybrid (3 days per week in office) position at our Brentwood, TN Corporate Office.
The Cyber Security Engineer I provides engineering support for all information security tools. Works with Security Information and Event Management (SIEM) tools to search for anomalies within the environment. Researches information security standards, conducts system security reviews, vulnerability analyses and risk assessments. Conducts periodic independent security audits including NIST, HIPAA and SOX audits and internal controls compliance programs.
The incumbent should be able to perform all of the following functions at a pace and level of performance consistent with the job performance requirements.
Works with senior engineers and leadership to determine security requirements by evaluating business strategies and needs.
Researches information security standards, conducts system security reviews, vulnerability analyses and risk assessments.
Studies security architecture/platform, identifies integration issues or opportunities and prepares cost estimates.
Conducts periodic independent security audits including NIST, HIPAA and SOX audits and all internal controls compliance programs. Generates reports as needed from the various security systems to support regulatory compliance.
Assists with investigating known or suspected security incidents and performs thorough threat hunting and remediation using cybersecurity tools.
Assists in the management of firewalls and URL filtering configuration, maintenance and monitoring.
Assists in the administration of Identity and Access Management (IAM).
Responsible for the administration Endpoint Detection and Response administration.
Responsible for security monitoring in Azure/M365 cloud environment.
Works with the Security Operations Center (SOC) to address and fine tune alerts.
Runs searches and builds dashboards in company SIEM.
Conducts training sessions with various audiences and educates users on security policies and consults on security initiatives and issues.
Researches emerging technologies and maintains awareness of current security risks in support of security enhancement and development efforts. Participates in educational opportunities, professional networks and professional organizations.
Troubleshoots assigned work tickets supporting daily operations and problems as they occur as well as provide 24/7 on-call support rotation.
Domestic U.S. travel required.
QUALIFICATIONS:
Graduate from an accredited college or university with a Bachelor's degree in Cybersecurity or another related field is required.
Two years of Cybersecurity experience is required. Additional years of related experience may be substituted for the required education on a year-for-year basis. A current and valid certificate as a Certified Information Systems Security Professional (CISSP) or CompTIA Security + is preferred.
Experience using Security Incident/Event Management (SIEM) systems. Experience with vulnerability scanners.
An understanding of supporting and securing a cloud infrastructure. Possess knowledge of network protocols, network design, and IP sub-netting.
Experience with NIST is preferred. Ability to work independently and interact with the network team and other teams in a fast-paced, ever-changing environment.
Proficiency in Microsoft Office applications is required.
A valid driver's license is required.
Minimum age requirement: Must be at least 18 years of age.
Corecivic is a Drug-Free Workplace & EOE including Disability/Veteran.