We use cookies. Find out more about it here. By continuing to browse this site you are agreeing to our use of cookies.
I agree and accept cookies
Main menu
Post a Job
Request a Demo
Yes
No
Both
Advanced search
#alert
Back to search results / More jobs like this
Back to search results
Matson Navigation Company, Inc jobs

Senior Information Security Engineer

Matson Navigation Company, Inc
United States, California, Oakland
555 12th Street (Show on map)
Jan 08, 2025
Description
Position at Matson Navigation Company, Inc

About Us

Matson has been the leading ocean shipping and logistics provider throughout the Pacific since 1882. We are the supply chain lifeline for Hawaii, Alaska, Guam, and islands of the South Pacific. We also offer the top two ocean shipping services in the world's largest trade lane - Asia to the U.S. West Coast. With our subsidiaries Matson Terminals and Matson Logistics, our business focus is exceeding customer expectations with quality, reliability, and integrity.

We strive to operate in an environmentally sustainable manner and promote land-based environmental programs in Hawaii, Guam, and Alaska. We help improve the communities in which we work and live through our community giving program that annually supports hundreds of local organizations. And we work to improve diversity, equity and inclusion in our company, communities and industry through an active social equity program.

Matson is a great place to work, and everyone who works with us becomes part of the Matson ohana or family. Join our team and help us move freight better than anyone.

Learn more at matson.com.

About the Role

The Senior Information Security Engineer is a position within IT Services with broad, company-wide responsibilities across multiple security domains. The ideal candidate should have a proven history in proactive security risk mitigation and reactive incident response with the appropriate sense of urgency. The successful candidate will have a good mix of hands-on technical knowledge as well as higher level information security concepts, risk assessment methodologies, and security practices. This individual will have to be proactive, organized, analytical, detail oriented, and persistent.

The ideal candidate possesses a balance of strong skills in the following areas:

  1. Technical: Sufficient technical depth to design, develop, and provide hands-on support of security controls, defenses and countermeasures, including but not limited to encryption and data loss prevention protocols, cryptography, intrusion detection, firewalls, and email security. Configuration and administration of policies for access control methods such as two-factor authentication (2FA), identity and access management (IAM).
  1. Analytical: Strong analytical skills in ISO 27001/27002 risk-based Information Security, including security policies and governance, asset management for sensitive data, defense perspective threat modeling, identifying risk areas that require operational coverage and outlining strategies and solutions to gain that coverage, providing updates on existing and new threats to the company, staying current with information security technologies and making recommendations for use based on business value.
  1. Communication: Superior self-organization, professional written and verbal communication that includes the capability to translate highly technical material to communications appropriate to different audiences, including PowerPoint decks to senior IT and business management. Consultative client-focused personalities with collaboration skills to lead cross-functional teams on security initiatives and drive effective company-wide change management and adoption. An ad hoc business writing example (not pre-prepared) may be requested during the in-person interview process, as well as a structured written response to a presented scenario that illustrates the candidate's level of self-organization and planning.

Dimensions

Scope of systems; Impact on Company Security support for all systems and data; A direct relationship to the jobs performed by business personnel; major impact on the quality and timeliness of services delivered to customers (end-users); Major impact on the security of Matson data; enterprise-wide impact.

Internal Visibility/Level of Influence Cross-functional; interacts with all levels of IT Services personnel; interaction with business unit personnel varies by project; implements enterprise-wide technical solutions based on operational and business need and priority.

Number of Subordinates None

What you'll do:

The Sr. Information Security Engineer is a key role in our Enterprise Information Security team and works directly with the Director, Information Security to develop and oversee implementation of our security requirements throughout the Matson environment. Responsibilities include the following:

Security Operations: Tactical

  • Manage day-to-day security operational tasks such as security event monitoring, log monitoring and security incident management, compliance monitoring, data loss prevention, and monitoring and responding to emerging threats varying from endpoint to server to public cloud system.
  • Act as 3rd level support contact for security incidents and provide direction to infrastructure and applications teams to initiate incident response. Liaison with internal and parties to address security concerns. Perform root cause analysis so we can continuously improve our prevention, reaction, and remediation of incidents.
  • Perform periodic testing for compliance with documented security policies, procedures, and standards. These tests may include penetration tests and risk assessments.

Security Engineering: Strategic

  • Perform ongoing technical risk and vulnerability assessments including vulnerability scanning and vulnerability exploit testing (penetration testing) and threat modeling with clear reporting, threat identification and action plans for remediation with prioritization. This will also include any assessments for changes that the security team has identified as requiring a vulnerability assessment prior to release.
  • Assist in developing security policies, controls, procedures, and standards requirements to support the full life cycle protection of confidential information.
  • Initiate, facilitate, and promote activities to foster Information Security awareness.

Security Infrastructure

  • Research, recommend, deploy and integrate the security tools and processes needed to protect the information assets and infrastructure.
  • Consult with applications teams on secure applications development and perform security reviews on third party applications as well as providing technical guidance and security training to development teams.
  • Advise on secure application development and infrastructure support and drive implementation of recommendations through project teams.
  • Perform special projects as assigned.

You have these skills:

  • 5+ years of experience in technical security positions, Tier 3 SOC experience required and mentoring Tier 1-2 Staff.
  • Strong SIEM deployment skills with one more of the following: Splunk, ELK, Sentinel
  • Experience writing runbooks, playbooks and orchestration tools
  • Familiar with coordinating 24x7 around the clock resources
  • Strong understanding of networking concepts and protocols (BGP, TCP/IP layers, DNS, SMTP, SSL, etc.)
  • Experience with using threat intelligence tools (Virustotal, XForce Exchange) and ISAC cooperation
  • Superior communication skills, written using MS Office (PowerPoint, Word, Excel)
  • Strong security research and root cause analysis skills to identify and analyze potential security vulnerabilities
  • Self-organize: ability to plan, document, and execute complex tasks to a high-quality standard
  • Background in security operations, project management, or information security, with knowledge of Cloud security models and controls (AWS)
  • Experience and knowledge of network firewalls and security technology and other IDS/IPS and network monitoring tools
  • Technical knowledge in system and network security, authentication and security protocols, and application security
  • Strong understanding of web technologies - protocols, programming techniques, browsers, etc.
  • Strong understanding of web vulnerabilities and weaknesses (cross-site scripting, cross-site request forgery, etc.)
  • Experience working with internal and external auditors on compliance initiatives
  • Experience managing vulnerability scanning tools (Qualys, Rapid7, Nessus, etc.)
  • Experience managing, configuring and tuning a WAF
  • Experience with Identity and Access concepts and technologies to secure production and corporate access, such as: SSO, SAML Federated Identity, RBAC, authentication & authorization solution etc.
  • Customer service experience/Strong customer focus to analyze customer reported security issues
  • Ability to multi-task in a fast-paced environment
  • Security related certifications a plus - Offensive Security Certified Professional (OSCP), GIAC Certified Incident Handler (GCIH) GIAC Certified Intrusion Analyst (GCIA), GIAC Certified Forensic Analyst (GCFA), etc.

And these qualifications:

  • 5+ years hands-on security experience.

Extra credit if you have:

  • Security certifications a plus.

Physical Requirements:

The physical demands described here are representative of those that must be met by an employee to successfully perform the essential functions of this job. Reasonable accommodations may be made to enable individuals with disabilities to perform the essential functions. While performing the duties of this job, the employee is regularly required to sit and talk or hear. The employee is frequently required to use hands to finger, handle, or feel and reach with hands and arms. The employee is occasionally required to stand and walk. Specific vision abilities required by this job include close vision and distance vision. The employee may be required to lift equipment weighing up to fifty (50) pounds.

The annual salary range for this position in California is $ $117,800 - $160,340. The salary offered will depend upon qualifications and other operational considerations.

At Matson, we're looking for people to build a unified team to maintain our values of trust, integrity, and reliability. We welcome diverse perspectives and people who think rigorously and thoughtfully challenge assumptions.

#MI

Matson is an equal opportunity employer committed to a diverse and inclusive workforce. Applicants will receive consideration for employment without regard to race, color, religion, sex (including pregnancy), age, sexual orientation, national origin, marital status, parental status, ancestry, disability, AIDS/HIV status, gender identity, gender expression, veteran status, genetic information, other distinguishing characteristics of diversity and inclusion, or any other protected status. Qualified applicants with arrest and/or conviction records will be considered for employment in a manner consistent with federal and state laws, as well as applicable local ordinances, including, but not limited to, the San Francisco and Los Angeles Fair Chance Ordinances.

Applied = 0
MORE JOBS LIKE THIS

(web-6f6965f9bf-7hrd4)