Security Engineer

Tuesday August 07, 2012

Why choose American Tower?

It’s where you want to be. Today’s American Tower is a dynamic, performance-driven organization full of new opportunities and the highest standards of excellence. Our culture is based on integrity, accountability, hard work, collaboration and social responsibility. We offer careers in a variety of fields where talented people can develop and grow professionally.

American Tower, an S&P 500 and a Forbes Global 2000 company, is a leading independent owner, operator and developer of wireless communications sites. We provide the infrastructure that allows your cellular phones and other mobile devices to work, anytime and anywhere. Headquartered in Boston, Massachusetts, we have offices throughout the United States and in nine other countries in Latin America, Asia and Africa.

No matter where you join us, you'll find a diverse team of global employees focused on our shared success. You will also receive a generous mix of health, financial and lifestyle benefits as well as learning and development opportunities.

American Tower – where you want to be.

SUMMARY:

The Information Security Engineer is a functional member of the IT Infrastructure team and will work closely with the other members of the team to maintain and enhance the Company’s information security program.  The incumbent is responsible for coordinating response to security related incidents and supporting various security software and hardware.  The Information Security Engineer works closely with various members IT department to deploy technical controls to meet specific security requirements. The incumbent follows processes and standards to ensure that security configurations are maintained.  The incumbent will work closely with the company’s business units advising them on risk management functions and performing security assessment reviews.

ESSENTIAL FUNCTIONS:

Support and manage security hardware and software that the company utilizes to protect the enterprise

Coordinate responses to security related incidents with IT, legal, and internal audit departments

Create, manage, and maintain security awareness program for employees

Handle low to complex resolution of security related Service Desk tickets

Perform control and vulnerability assessments to identify control weaknesses and assess the effectiveness of existing controls, and recommend remedial action

Collaborate on critical IT projects to ensure that security issues are addressed throughout the project life cycle

Assist in the development of security architecture and security policies, principles and standards

Proactively research and stay up to date with the latest security issues

Defines and deploys security configuration and operations standards for security systems and applications, including policy assessment and compliance tools, network security appliances, and host-based security systems

Maintain Company’s compliance with data security laws and regulations Responsible for daily management and configuration of the various Firewall and IPS solutions across the enterprise

Responsible for the daily management and configuration including preparing weekly reports from various security auditing and monitoring solutions used in the enterprise

OTHER:

Other duties as assigned

SUPERVISORY RESPONSIBILITIES:

None

QUALIFICATIONS:

Excellent organizational skills

Excellent written and communication skills

Strong analytical skills

Ability to interact with personnel at all levels and across all business units and organizations, and to understand business imperatives

Ability to work individually and in team settings with cross-functional teams

Excellent technical knowledge of mainstream operating systems (i.e. Microsoft Windows and Linux) and a wide range of security technologies, such as network security appliances, Identity and Access Management (IAM) systems, Security Information Event Management Tools (SIEM), anti-malware solutions, automated policy compliance and desktop security tools

In-depth knowledge of risk assessment methods and technologies

The incumbent must be flexible as there may be workweeks that require more than 40 hours to ensure the position expectations and responsibilities are met.

Knowledge of Information Security Standards (ISO 27001/27002, ITIL, etc.)

Knowledge of Data Privacy and Compliance Regulations (MA CMR 201, HIPPA, Red Flag, etc.)

EDUCATION AND EXPERIENCE:

Bachelor's degree in Information Systems or Computer Science, or equivalent work experience

Minimum five years IT or network security experience

CISSP (Certified Information System Security Professional) or CISA (Certified Information Security Auditor) Certification strongly preferred

Cisco Certification preferred

Check Point, Symantec AV & Webgate, RSA DLP, Tipping Point, and Websense experience preferred

Experience in deployment and daily management of checkpoint firewall solutions in an enterprise

Experience in security event correlation and required tools and practices

Experience in developing, documenting and maintaining security policies, processes, procedures and standards

ENVIRONMENT:

Approximately 85% performed in climate-controlled internal office environment working under normal office conditions.  Approximately 5% travel (possibly some International) will be required in support of the position’s responsibilities.

While performing the duties of this job, the employee is regularly required to sit; while performing the duties of this job, the employee frequently is required to lift weight or exert a force up to a maximum of 125 pounds.

ADDITIONAL:

We are a dynamic organization in a rapidly changing industry.  Accordingly, the responsibilities associated with this job will change from time to time in accordance with the Company’s business needs.  More specifically, the incumbent may be required to perform additional and/or different responsibilities from those set forth above.

The above declarations are not intended to be an all-inclusive list of the duties and responsibilities of the job described, nor are they intended to be such a listing of the skills and abilities required to do the job. Rather, they are intended only to describe the general nature of the job.

American Tower (the “Company”) is an equal opportunity employer and is committed to a diverse workforce. The Company is committed to a policy of equal employment and will not discriminate against an applicant or associate based on his or her age, sex, sexual orientation, gender identity, race, color, creed, religion, national origin or ancestry, citizenship, marital status, familial status, physical or mental disability, handicap, military or veteran status, genetic information, pregnancy or any other category protected under federal, state or local law, regulation or ordinance.

In order to ensure reasonable accommodation for individuals protected by Section 503 of the Rehabilitation Act of 1973, the Vietnam Veterans’ Readjustment Act of 1974, and Title I of the Americans with Disabilities Act of 1990, applicants that require accommodation in the job application process can contact us at (617) 587-7911 for assistance.