Reference #: d79c00a5-4ce8-4930-b6f8-e9a00a2e4119
DescriptionELLWOOD Group, Inc. is a family-owned and managed company established over 110 years ago in Ellwood City, PA, and our ten divisions are widely regarded as the best in their field. We are the leading vertically integrated supplier of quality metals and custom-engineered components for critical applications worldwide. Our footprint spans 25 facilities across North America, and our expertise extends to steelmaking, aluminum casting, forging, ring rolling, machining, cladding and fabricating, iron casting and more.The Cybersecurity Engineer will be responsible for implementing, maintaining, and enforcing multiple cyber security standards, processes, and initiatives. This position will primarily be based onsite in New Castle, PA providing support to all ELLWOOD facilities. This position will report to the ELLWOOD VP of Information Security.
Self-motivated, able to work in a team, and willing to learn new concepts and processes,
Proven ability to interpret and correlate the data produced by various event sources - network security devices, operating systems, web servers, endpoint security agents, etc.,
Assess and analyze current security architectures to identify vulnerabilities and develop enhanced protections,
Contribute to the security planning, assessment, risk analysis, risk management, and awareness activities for system and networking operations.
Remain informed on trends and issues in the cybersecurity industry, including current and emerging technologies,
Continuously assess the organizations security posture, report findings, and make recommendations,
Strong communication and documentation skills; ability to develop reference documentation,
Develop and maintain best practices, baselines, guidelines, and security standards,
Validate proposed software, hardware, firmware, and infrastructure comply with security guidelines, policies, and procedures,
Contribute to the security planning, assessment, risk analysis, risk management, and awareness activities for system and networking operations,
Conduct investigations as needed,
Respond to emergency situations that may arise outside course of a regular workday or week,
Detect and analyze emerging threats and determine countermeasures,
Assist in supporting and maintaining the cybersecurity platform (vulnerability management, data loss prevention, endpoint, and email protection, SIEM, privileged account management, etc),
Provide support for problem tickets, requests, and security alerts,
Support security planning, assessment, risk analysis, and risk management.
Evaluate additional security products and services as needed,
Assist fellow employees with cybersecurity needs,
Work to ensure integrity and confidentiality of data,
Abides by all policies and procedures established by the Company including plant safety regulations and work rules,
Maintain confidentiality at the highest level,
Meets attendance requirements, and
Performs other duties as deemed necessary.
SKILLS AND ABILITIES
Five or more years' experience in Cybersecurity or Information Systems with a working understanding of information security principles, technologies, best practices, and industry standards,
Solid knowledge and experience in the secure configuration and management of network devices, including routers, switches, firewalls, and/or IDS/IPS,
Familiarity with best practices and compliance standards such as NIST 800-171, CMMC, NIST 800-53, ISO, and other standards,
Analytical and quantitative skills, including ability to perform a variety of analyses,
Experience using common vulnerability scanning tools (e.g., Nessus) to discover weaknesses,
Experience using privilege account management tools,
Experience configuring/managing/tuning security event monitoring tools (SIEM),
K owledge and understanding of the potential impacts associated with security features,
Must be able to work independently on a project, seeing it from inception to completion,
Excellent verbal and written communication skills,
Customer service driven with strong interpersonal skills,
Detail oriented and analytical/problem solving skills that result in quality solutions,
Excellent time management skills,
Ability to work effective as a team member and independently, and
Have a valid driver's license and reliable transportation.
TRAVEL
This position is an onsite position with an office based at the New Castle facility. It will additionally require occasional travel to supported facilities regionally, domestically and in Canada and Mexico.
EDUCATION
Bachelor's degree in cybersecurity, computer science or related discipline, relevant certificates (Security+ Certification, CySA+, etc.), or related field or equivalent experience.
Physical Demands
The physical demands described here are representative of those that must be met by an employee to successfully perform the essential functions of this job. Reasonable accommodations may be made to enable individuals with disabilities to perform the essential functions.The employee may occasionally lift and/or move up to 20 pounds. Specific vision abilities required by this job include close vision and ability to adjust focus. While performing the duties of this Job, the employee is regularly required to sit; stand, walk, use hands to operate equipment, and talk or hear. The employee is occasionally required to reach with hands and arms and stoop, kneel, or crouch. The work environment has moderate noise level and requires frequent travel by land and occasionally by air.
Disclaimer and Acknowledgements:
The above statements describe the general nature and level of work only. They are not an exhaustive list of all required responsibilities, duties, and skills. Other duties may be added, or this description may be amended at any time.
EEO, including disability/veterans
Several ELLWOOD divisions are Federal Contractors and require employees to be a U.S. Citizen or hold a valid Green Card.EOE, including disability/vets