Cybersecurity Engineer

ELLWOOD Group, Inc. is a family-owned and managed company established over 110 years ago in Ellwood City, PA, and our ten divisions are widely regarded as the best in their field. We are the leading vertically integrated supplier of quality metals and custom-engineered components for critical applications worldwide. Our footprint spans 25 facilities across North America, and our expertise extends to steelmaking, aluminum casting, forging, ring rolling, machining, cladding and fabricating, iron casting and more.

The Cybersecurity Engineer will be responsible for implementing, maintaining, and enforcing multiple cyber security standards, processes, and initiatives. This position will primarily be based onsite in New Castle, PA providing support to all ELLWOOD facilities. This position will report to the ELLWOOD VP of Information Security.

• Self-motivated, able to work in a team, and willing to learn new concepts and processes,
• Proven ability to interpret and correlate the data produced by various event sources - network security devices, operating systems, web servers, endpoint security agents, etc.,
• Assess and analyze current security architectures to identify vulnerabilities and develop enhanced protections,
• Contribute to the security planning, assessment, risk analysis, risk management, and awareness activities for system and networking operations.
• Remain informed on trends and issues in the cybersecurity industry, including current and emerging technologies,
• Continuously assess the organizations security posture, report findings, and make recommendations,
• Strong communication and documentation skills; ability to develop reference documentation,
• Develop and maintain best practices, baselines, guidelines, and security standards,
• Validate proposed software, hardware, firmware, and infrastructure comply with security guidelines, policies, and procedures,
• Contribute to the security planning, assessment, risk analysis, risk management, and awareness activities for system and networking operations,
• Conduct investigations as needed,
• Respond to emergency situations that may arise outside course of a regular workday or week,
• Detect and analyze emerging threats and determine countermeasures,
• Assist in supporting and maintaining the cybersecurity platform (vulnerability management, data loss prevention, endpoint, and email protection, SIEM, privileged account management, etc...),
• Administration of tools owned and managed by cybersecurity team
• Provide support for problem tickets, requests, and security alerts,
• Support security planning, assessment, risk analysis, and risk management.
• Evaluate additional security products and services as needed,
• Assist fellow employees with cybersecurity needs,
• Work to ensure integrity and confidentiality of data,
• Abides by all policies and procedures established by the Company including plant safety regulations and work rules,
• Maintain confidentiality at the highest level,
• Meets attendance requirements, and
• Performs other duties as deemed necessary.

SKILLS AND ABILITIES

• Five or more years' experience in Cybersecurity Engineer with a strong understanding of information security principles, technologies, best practices, and industry standards,
• Solid knowledge and experience in the secure configuration and management of network devices, including routers, switches, firewalls, and/or IDS/IPS,
• Knowledge of security models, frame works, and standards to guide the organizations cyber security practices
• Analytical and quantitative skills, including ability to perform a variety of analyses,
• Experience using common vulnerability scanning tools (e.g., Nessus) to discover weaknesses,
• Experience using privilege account management tools,
• Experience configuring/managing/tuning security event monitoring tools (SIEM),
• Knowledge and understanding of the potential impacts associated with security features,
• Must be able to work independently on a project, seeing it from inception to completion,
• Excellent verbal and written communication skills,
• Customer service driven with strong interpersonal skills,
• Detail oriented and analytical/problem solving skills that result in quality solutions,
• Excellent time management skills,
• Ability to work effective as a team member and independently, and
• Have a valid driver's license and reliable transportation.

TRAVEL

This position is an onsite position with an office based at the New Castle facility. It will additionally require occasional travel to supported facilities regionally, domestically and in Canada and Mexico.

EDUCATION

Bachelor's degree in cybersecurity, computer science or related discipline, relevant certificates (Security+ Certification, CySA+, etc.), or related field or equivalent experience.

EEO, including disability/veterans

Several ELLWOOD divisions are Federal Contractors and require employees to be a U.S. Citizen or hold a valid Green Card.