Cyber Security Engineer

We are looking for a Cyber Security Engineer to join our Technology group. The Cyber Security Engineer is responsible for performing all phases of the security technology lifecycle including technical requirements, architecture, design, implementation, maintenance, and monitoring. You will handle security operations including log analysis, vulnerability assessments, and threat analysis. Ideal candidate possesses an in depth understanding of current and emerging threats and technology to drive improvement in all technical areas of security including network, data, application, cloud, IAM, mobile, and endpoint.

This is a full-time role based out of our DTLA office and is eligible for our competitive benefit offerings including medical, dental, vision, 401(k) plan with company contribution, Well-Being Allowance, and more.

The LA Clippers are committed to providing a safe and healthy workplace. New members of our team must be fully vaccinated for COVID-19 and will need to provide verification of vaccination for COVID-19 at least seven days prior to their start date. Fully vaccinated refers to at least two (2) weeks after the final dose on a two-dose vaccination series (Pfizer or Moderna) or at least two (2) weeks after a single dose COVID-19 vaccination series (Johnson and Johnson).

Essential Functions Include:

• Architect, design, deploy, and run the implementation of multiple information security technologies including endpoint, application, database, network, cloud, infrastructure, and identity management solutions.
• Architect, design and deploy technology to support security operations center including log management, SIEM, vulnerability management, patch management, and forensics tools.
• Conduct research to identify threats and attack vectors and develop mitigating solutions to manage the risk.
• Monitor and respond to information security incidents and support security investigations using insourced and outsourced tools and services.
• Build and analyze reports compiled from various security tools to identify and anticipate patterns of attack and manage and report on the overall threat landscape.
• Develop and maintain the Incident Response plan including procedures for incident response, forensic investigation and mitigation of security events.
• Maintain an information security risk register and assist with internal and external audits relating to information security.
• Maintain and operate vulnerability management process and tools and work with infrastructure and application development staff to keep systems current and effectively manage risk.
• Review and document security related change requests and advise management on approval decisions.
• Monitor and respond to 'phishing' emails and 'pharming' activity.
• Build and maintain security policies and procedures that ensure all systems follow regulatory security standards and compliance.
• Perform regular security assessments on infrastructure and monitor information systems activities and systems to confirm security policy compliance
• Assist with the creation, maintenance and delivery of cyber security awareness training for colleagues.
• Maintain technical currency and continuously seek out opportunities to grow skills and broaden expertise.

• Education: BA/BS Degree (4yr) in Information Technology, CS/Engineering, Cryptology, or equivalent experience.
• 3+Years Related Work Experience.
• Experience with security industry standards (ISO 27001, NIST Cybersecurity Framework) and best practices.
• Experience in coordinating and performing application and infrastructure penetration testing.
• Experience in working with security operations tools including anti-malware, AV, IPS/IDS, SIEM.
• Experience in managing and operating vulnerability/patch management processes and tools.
• In-depth technical knowledge of web development, security engineering, network security, security protocols and cryptography.
• Demonstrable ability to identify vulnerabilities, anticipate threats, and use a practical approach to reduce the likelihood or impact of a breach.
• A thorough understanding of tools, policies and standards related to security systems and experience in executing incident response process and procedures.
• Excellent written and verbal communication skills with the ability to explain technical concepts to a non-technical audience.
• Demonstrated dedication to continuing education to strengthen skills, broaden expertise and maintain currency with emerging technology.
• Proficient in Microsoft Office (Word, Excel, PowerPoint) and ability to learn applicable business systems.
• Demonstrated dedication with the ability to lead projects from origin through execution.
• Ability to learn, contribute and thrive in a fast-growing, dynamic environment.
• Effective interpersonal skills, both oral and written.
• Self-starter and entrepreneurial spirit with hands-on approach towards business.

• Strong understanding of regulatory requirements such as PII, PCI, and CCPA.
• Professional certifications in computer technology, security, risk management or business continuity, preferably CISSP, CCSP, CEH or CISA.
• Scripting skills (e.g. Python, PowerShell, shell scripting).

The LA Clippers are a proud equal opportunity employer. It is our desire and intent that all employees enjoy a professional business working environment that is free from discrimination and harassment.

We will ensure that individuals with disabilities are provided reasonable accommodation to participate in the job application or interview process, to perform essential job functions, and to receive other benefits and privileges of employment. To request an accommodation, please contact us at humanresources@clippers.com.