Cybersecurity Lead
Denver, Colorado
Redaptive, Inc.
Redaptive uses a data driven approach to create enterprise corporate sustainability initiatives that generate savings without financial or logistical barriers.The successful candidate’s responsibilities include using their skills to detect insecure features and malicious activities within our networks and infrastructure. You will implement customized application security assessments for client-based asset risk, corporate policy compliance as well as conduct vulnerability assessment. You should have an advanced understanding of TCP/IP, common networking ports and protocols, traffic flow, system administration, OSI model, defense-in-depth and common security elements.
The Cybersecurity Lead's focus is not only limited to assessing whether vulnerabilities exist but also how those risks could be mitigated which can help provide organizations with more confidence about system stability going forward.
This position will report to the Director of Corporate IT and will work to ensure the security of our business information, employee data, and client information throughout our entire network.
Redaptive is an Energy-as-a-Service provider that funds and installs energy-saving and energy-generating equipment. Redaptive’s programs help many of the world’s most sophisticated organizations reduce energy waste, save money, lower their carbon emissions, and meet their sustainability goals across their entire real estate portfolios.
Committed to Diversity, Equity, Inclusion and Belonging
Job Responsibilities
- Develops and ensures compliance with formal, written security policies.
- Safeguards information system assets by identifying and solving potential and actual security problems.
- Protects system by defining access privileges, control structures, and resources.
- Develop and provide leadership to a SecOps team across U.S. and India.
- Recognizes problems by identifying abnormalities and reporting violations.
- Implements security improvements by assessing current situation; evaluating trends; anticipating requirements.
- Determines security violations and inefficiencies by conducting periodic audits.
- Upgrades system by implementing and maintaining security controls.
- Keeps users informed by preparing performance reports and communicating system status.
- Maintains quality service by following organization standards.
- Maintains technical knowledge by attending educational workshops and reviewing publications.
- Contributes to team effort by accomplishing related results as needed.
Job Requirements/Qualifications
- 6-8+ years of prior relevant experience
- Bachelor’s degree in Computer Science, Information Systems, or equivalent education or work experience
- Advanced certifications such as SANS GIAC/GCIA/GCIH, CISSP or CASP and/or SIEM-specific training and certification
- Hold DoD-8570 IAT Level 2 baseline certification (Security+ CE or equivalent) at start date
- Advanced understanding of TCP/IP, common networking ports and protocols, traffic flow, system administration, OSI model, defense-in-depth and common security elements
- Hands-on experience analyzing high volumes of logs, network data and other attack artifacts in support of incident investigations
- Experience with vulnerability scanning solutions
- Familiarity with the DOD Information Assurance Vulnerability Management program.
- Proficiency with any of the following: Anti-Virus, HIPS, ID/PS, Full Packet Capture, Host-Based Forensics, Network Forensics, and RSA Security
- In-depth knowledge of architecture, engineering, and operations of at least one enterprise SIEM platform
- Experience developing and deploying signatures
- Understanding of mobile technology and OS (i.e. Android, iOS, Windows), VMware technology, and Unix and basic Unix commands
- Have an ergonomically correct and functional work-from-home workstation set up; amenable to working from home for the foreseeable future
Permanent Authorization in the US is required at this time.
The Perks!
- Equity plan participation
- Company-subsidized benefits: medical, dental, vision, life insurance
- Flexible Spending Accounts: healthcare and dependent care
- Immediately-vested 6% 401(k) match
- Monthly internet and cell phone allowance
- Flexible Time Away
- Volunteer activities
- Expected annual salary: 150k (subject to adjustment for relevant experience, skills, geo location)
- Annual at-target bonus: minimum 10% of salary depending on level of role
- Monthly Virtual Happy Hour
Our company culture is fun, collaborative, and fast paced. We are passionate about changing the world and helping our customers to become more environmentally sustainable and profitable. We are looking for team members who are driven, passionate, and want to take on a diverse set of challenges to help grow a great company. Redaptive, Inc is an equal employment opportunity employer and all qualified applicants will receive consideration for employment.
This employer participates in E-Verify.
CCPA Notice for California Job Applicants
Please, no third-party recruiters.
#LI-Remote
* Salary range is an estimate based on our InfoSec / Cybersecurity Salary Index 💰
Tags: Android Application security Audits CASP+ CCPA CISSP Compliance Computer Science DoD DoDD 8570 Forensics GCIA GCIH GIAC iOS RSA SANS SecOps Security assessment SIEM TCP/IP UNIX VMware Vulnerabilities Vulnerability management Windows
Perks/benefits: 401(k) matching Career development Cell phone stipend Equity Flex hours Health care Salary bonus Startup environment
More jobs like this
Explore more InfoSec / Cybersecurity career opportunities
Find even more open roles in Ethical Hacking, Pen Testing, Security Engineering, Threat Research, Vulnerability Management, Cryptography, Digital Forensics and Cyber Security in general - ordered by popularity of job title or skills, toolset and products used - below.
- Open Security Operations Engineer jobs
- Open Information Security Specialist jobs
- Open Staff Security Engineer jobs
- Open Cyber Security Architect jobs
- Open Manager Pentest H/F jobs
- Open Senior Information Security Analyst jobs
- Open Senior Cyber Security Engineer jobs
- Open Cyber Security Specialist jobs
- Open Principal Security Engineer jobs
- Open Product Security Engineer jobs
- Open Consultant infrastructure sécurité H/F jobs
- Open IT Security Analyst jobs
- Open Cybersecurity Analyst jobs
- Open Senior Information Security Engineer jobs
- Open Information Systems Security Officer (ISSO) jobs
- Open Chief Information Security Officer jobs
- Open Cybersecurity Consultant jobs
- Open Consultant SOC / CERT H/F jobs
- Open Security Specialist jobs
- Open Cybersecurity Specialist jobs
- Open Senior Penetration Tester jobs
- Open Sr. Security Engineer jobs
- Open Security Researcher jobs
- Open Senior Security Architect jobs
- Open Security Operations Analyst jobs
- Open ISO 27001-related jobs
- Open Clearance-related jobs
- Open Windows-related jobs
- Open Application security-related jobs
- Open Network security-related jobs
- Open Agile-related jobs
- Open Pentesting-related jobs
- Open Vulnerability management-related jobs
- Open GCP-related jobs
- Open Analytics-related jobs
- Open SaaS-related jobs
- Open CISA-related jobs
- Open IAM-related jobs
- Open Threat intelligence-related jobs
- Open APIs-related jobs
- Open Java-related jobs
- Open Security assessment-related jobs
- Open DevOps-related jobs
- Open Malware-related jobs
- Open Kubernetes-related jobs
- Open CI/CD-related jobs
- Open Security Clearance-related jobs
- Open IDS-related jobs
- Open CEH-related jobs
- Open EDR-related jobs