Cybersecurity Engineer, Global

**About Vantage Data Centers**

Vantage Data Centers powers, cools, protects and connects the technology of the world’s well-known hyperscalers, cloud providers and large enterprises. Developing and operating across North America, EMEA and Asia Pacific, Vantage has evolved data center design in innovative ways to deliver dramatic gains in reliability, efficiency and sustainability in flexible environments that can scale as quickly as the market demands.

**Security Department**

The Vantage Cybersecurity Department for Vantage Data Centers is very hands-on. In most cases, we specify, purchase, configure, and maintain all networking and server hardware. We also work closely with partner Value Added Resellers (VARs) to learn about the latest technological changes so that we can make informed purchase decisions. We are always looking for ways to strike the best balance between technology, performance, and cost. Vantage Security Department also participates in designing each of our new data center building’s security infrastructure. If you like getting your hands dirty and helping to design, build and maintain Security infrastructure in a modern data center, then come work at Vantage. We’re expanding with many new builds

**Essential Job Functions**
- Keep up to date with the latest cybersecurity threats, vulnerabilities, and industry trends.
- Manage, support and maintain VDC’s vulnerability management program
- Adhere to KPIs and SLAs
- Administration of the Tenable suite
- Proactively detect and secure VDC’s environment against both insider and outsider threats
- Experience with scripting and automation of administrative tasks
- Leverage Tenable to identify weaknesses in the internal and internet-facing systems by detecting vulnerabilities, missing patches, and misconfigurations
- Analyze existing operational standards, processes, and/or governance to identify and implement improvements
- Manage security and access controls of cloud-based solutions
- Help develop and implement best practices and document Procedures
- Interface with internal technology and systems teams, network teams, and other stakeholders augments as needed
- Develop and implement policy-driven data and asset protection best practices
- Oversee automation and AI driven improvements on vulnerability Management
- Drive system requirements, system specifications, input/output processes and working parameters by using security engineering best practices
- Lead the deployment of new modules, upgrades and fixes
- Leverage templates and tools to define security processes and services and ensure practices and processes are standardized and repeatable
- Work with system owners to drive remediation plans, communicate information to stake holders through dashboards and reporting, and review exception requests for threat and risk
- Automate and streamline low-value activities and notification and escalation processes
- Perform benchmarking and trend analysis and create action plans to implement

**Risk Management & ISMS Support**:

- Manage the ISMS risk register, ensuring that risks are identified, assessed, and mitigated effectively.
- Provide oversight on cyber risks and the implementation of appropriate controls.
- Support the ISMS program by ensuring compliance with relevant standards and conducting periodic gap assessments.

**Cybersecurity Oversight**:

- Manage, support, and maintain Vantage’s security environment.
- Act as a contact for end users and individuals reporting cybersecurity issues, questions, or concerns.
- Support AI Initiatives and governance.

**GRC Program & Project Management**:

- Manage GRC programs and projects as assigned, ensuring that objectives are met and risks are mitigated.
- Maintain and manage policies, procedures, standards, and the Confluence site for all documentation, ensuring accuracy and conducting annual reviews.

**Audit Support & Compliance**:

- Support internal and external audits by providing necessary documentation and responding to audit inquiries.
- Perform periodic gap assessments to validate compliance on an ongoing basis.

**Incident Response & Triage**:

- Support triage and investigation of security alerts to identify potential threats and take appropriate action
- Participate and support the Business Impact Analysis (BIA) and Crisis Management Framework (CMF) Documentation

**Documentation & Communication**:

- Create documentation and presentations for leadership and stakeholders on relevant topics and issues.

**Professional Development**:

- Engage in ongoing training and professional development to stay current with the latest cybersecurity threats, vulnerabilities, trends and technologies.

**Additional Duties**:

- Handle additional duties as assigned by Manager.

**Job Requirements**

**Education**:

- 7 or more years of IT or Cybersecurity Experience or Bachelor’s degree in Computer Science, Information Technology, Cybersecurity plus 3 years or more of equivalent years of experience.