Senior Security Engineer

**We’re hiring**At Cognizant we have an ideal opportunity for you to be part of one of the largest companies in the digital sector worldwide. A Great Place To Work where we look for people who contribute new ideas, experiencing a dynamic and growing environment. At Cognizant we promote an inclusive culture, where we value different perspectives providing career growth and development opportunities. #WelcomeToCognizantWe have an exciting opportunity for an exceptional individual to work supporting one of our clients as a Security Engineer**What you’ll do**:- Bring individuals of diverse and varied backgrounds together as a team to work toward an identified goal.- Mentor colleagues in Security Best Practices and Policies.- Teaching and training colleagues on various security tools being managed.- Assist in the identification and development of Objectives and Key Results (OKRs) and Quarterly Goals for the development team members and increasing the maturity of the implemented security solutions.- Be responsible for the configuration, management, administration, and maintenance of security platforms across the full security stack within multiple healthcare enterprise-level environments both within on-prem datacenters and cloud solutions.- Day-to-day coordination and collaboration with a wide array of IT groups, Information Security teams, business units, and client delivery teams.- A basic understanding of various security control frameworks such as and not limited to HITRUST, NIST, HIPAA, and PCI.- Assist with Audit Artifact evidence gathering, logging, and retention and teach others.- Capable of accurately communicating and presenting evidence to auditors as requested and teaching others what that is and how it is done.- Monitor, manage and tune core endpoint and network security controls and teaching others.- Develop and deliver required metrics and reports, including vulnerability management and preventive controls for Endpoint Detection and Response (EDR), Multi-Factor Authentication (MFA), Certificate Management, and Data Loss Prevention.- Develop and maintain process and standard operating procedure (SOP) documentation for core security controls and operational processes and teach others.**Preferred experience**:- Strong Troubleshooting skills.- Demonstrated capability of issue isolation.- Working experience with Layers 2-7 Protocols and security technologies.- Excellent technical aptitude, resourcefulness, and critical thinking skills- Ability to identify security risks and weaknesses and provide security mitigation and remediation recommendations- Demonstrated experience and expertise with multiple security controls within multiple security domains.- 6-10 years of progressive experience in information technology and 3-5 years of progressive information security experience across 3 or more information security / information technology risk management domains such as but not limited to:**Endpoint Security**- Day to day policy and platform management and operations of the following technologies:- EDR tools - Cisco AMP, Tanium, Microsoft Defender for Endpoint/Cloud (Microsoft Defender experience strongly preferred)- Certificate Management - Venafi, DigiCert- Strong OS security experience (Windows, Linux, MacOS)- Gathering and presenting audit artifact information to internal and external auditors (prior experience with this process is strongly preferred)- Data Loss Prevention - Forcepoint (preferred - other products acceptable)- Multi-Factor Authentication - RSA SecurID (preferred - other experience acceptable)**Data Security**- Understand how data is identified or de-identified and how DLP works- Protection of data at rest, in use, and in motion.- Deep knowledge of TCP/IP protocols including routing and subnetting.- Experience working in Cloud Environments such as Azure/AWS/GCP and On-Prem Environments.**Identity and Access Management**- Knowledge of MFA, including use of the console, identity routers, provisioning tokens, and troubleshooting of issues.- Basic understanding of Certificates and their use within an enterprise.**Device Management**- Understanding of multiple device management venues: SCCM, Active Directory etc.**Personal Characteristics**:***- Strong collaboration skills- Willingness to be a team player to solve problems and incorporate input from various sources- Ability to think strategically; work with a sense of urgency and detail oriented- Ability to present complex solutions and methods to a general community- Ability to understand and adapt quickly in business situational communications- Strong work ethic- Willingness to take on new challenges that require extensive learning- Independent thinking, willingness to "step outside the box" and take reasonable, calculated risks- Excellent written and verbal communication and organizational skills in English- Ability to think strategically with strong attention to detail.