Job Information
The Estee Lauder Companies Senior Analyst, Cybersecurity Infrastructure - Engineer II in Bucuresti, Romania
Description
Do you want to be part of the team catalyzing digital innovation, harnessing the power of data, and transforming the fabric of security across the world’s most prestigious beauty, skincare, and luxury fragrance brands? Then join the information security and technology team, Enterprise Cybersecurity & Risk (ECR) at Estée Lauder Companies (ELC).
The Cybersecurity Infrastructure - Engineer II will be forward-thinking and self-motivated, responsible for leading and driving best practices oversight for our Network, Endpoint, and Server Cyber Security Tools and Controls across complex on-premises, Cloud, and multi-partner environments.
You will be responsible for:
Support the communication and implementation of a secure design on on-premises and cloud networks and platforms.
Experience with Network Security Controls such as Next Gen Firewalls, IDS, IPS, and Network Sandboxing.
Strong end-to-end troubleshooting experience diagnosing performance and network control issues.
Strong critical thinking, deductive reasoning, prioritization, and problem-solving skills.
Help facilitate deployment orchestration and automation with a focus on security with tools such as Ansible, Terraform, Python, PowerShell, or Shell Scripting.
Proactively introduce security guidelines to development teams and work with the teams to implement security patterns.
Act as a resource for the team at large about security best practices, techniques, and lessons learned.
Provide insights and advice into the maintenance of security policies and standards for all deployment environments.
Support the Security Operations Center for any relevant incidents.
Qualifications
Who You Are
Minimum of 2-3 years of relevant cybersecurity expertise and 2-3 years of relevant network/systems expertise.
Bachelor's degree in a related field or equivalent demonstrated experience and knowledge.
Extensive technical knowledge in at least 3 of the following areas: Network Segmentation Techniques, Secure Web Gateways, Next-Generation Firewalls, Network Admission Control Systems, Hybrid Cloud Environments (AWS, Azure), Wireless Security, or DHCP, DNS and IPAM (DDI), Virtual Private Network (VPN)
Strong understanding of network technologies, including, but not limited to Routing and Switching Protocols, IPsec and GRE tunnels, RADIUS, TACACS+, and VRFs working knowledge of cybersecurity controls and technologies, such as Intrusion Detection/Prevention Systems (IPS/IDS), Security Incident Event Managers (SIEM), Public Key Infrastructure (PKI), Tunnel Layer Security (TLS), Endpoint Detection and Response (EDR), and Threat Intelligence platforms.
Excellent experience and knowledge of multi-tiered network applications, common ports, and protocols used in those communications.
Excellent verbal and written communication skills Ability to prioritize multiple simultaneous projects.
Strong analytical and organizational skills
Regular expression, scripting, and programming experience are preferred.