<p>Kforce has a client that is seeking a Senior Cyber Security Engineer in Concord, CA.</p> <p>Summary: The Senior Cyber Security Engineer role is responsible for designing, implementing, and enhancing appropriate cyber security controls to protect the large, complex IT environment. This is a highly visible, hands-on position responsible for identifying and mitigating security risks. The Senior Cyber Security Engineer is a resident security expert and drives efforts focused on both cyber security and product security.</p> <p>Duties Include:</p> <ul> <li>Oversee all aspects of enterprise-level cyber security, including designing, implementing, and documenting appropriate security measures to protect data and systems </li><li>Manage projects, initiatives, and changes, including planning, scheduling, implementation, and reporting of status and risks </li><li>Assess impact of proposed new systems or integrations on security posture of the environment as a whole, and communicate risks and mitigation options to key stakeholders </li><li>Audit controls such as firewall rules, cloud and SaaS security configurations, and API controls, and recommend improvements </li><li>Monitor in-house developed software for vulnerabilities and oversee remediation </li><li>Maintain and recommend changes to cybersecurity architecture and toolbase </li><li>Conduct periodic testing of security controls to evaluate effectiveness and recommend improvements, and establish and collect risk-based metrics </li><li>Develop security requirements and assessment program for business use of technologies including Artificial Intelligence (AI) </li><li>Assist with development of roadmaps for cybersecurity initiatives* Bachelor's degree or equivalent work experience required </li></ul> <p>Licenses and Certifications:</p> <ul> <li>Information or Cyber Security certification - required </li><li>Certified Information Systems Security Professional (CISSP) or Certified Cloud Security Professional (CCSP) - preferred </li><li>Information Systems Security Engineering Professional (CISSP-ISSEP) or Certified Secure Software Lifecycle Professional (CSSLP) desirable </li><li>10+ years of experience in information security field </li><li>Application of core security concepts - 5 years minimum </li><li>Ability to lead/develop a program </li><li>Balance the risks and usefulness of IT initiatives and advise business partners appropriately </li><li>Understand the role of cybersecurity in the context of the Company's mission, business cycles, critical systems, and projects </li></ul>