Job Description

National Veterinary Associates (NVA) is the largest private owner of freestanding veterinary hospitals and pet resorts in the United States, owning over 900 hospitals/resorts in the US and Canada. The company is backed by JAB holding, a leading private equity firm, and led by a proven management team that includes MBAs from Harvard, Columbia, and Wharton and former management consultants from BCG, Bain, McKinsey and Accenture. Competing in a $25B industry that has grown faster than GDP over 20+ years, the company has grown rapidly over the past 20 years, and continues to do so, via acquisition, de novo, and same-store initiatives.

The Role:

NVA is looking for a Cybersecurity Threat Engineer, who enjoys security work and possesses both deep and wide expertise in the security space. You will improve security by protecting system boundaries, keeping computer systems and network devices hardened against attacks, and securing highly sensitive data. Qualified candidates will have a background in security or systems engineering . A strong information technology background is required for this role.

Responsibilities:

This position will have the following responsibilities:

• Implement and manage security tools;
• Investigate suspicious activities, contain and prevent them;
• Reduce downtime and ensure business continuity;
• Provide audit and compliance support;
• Perform threat detection, threat investigation, and timely response;
• Guide the Information Technology team in protecting the company from infiltration and cyber-attacks;
• Apply risk-based approach to make proper security decisions and set priorities;
• Plan and execute the security measures necessary to monitor and protect sensitive data;
• Perform vulnerability testing, risk analysis, and security assessments.
• Drive governance and risk activities to include tracking and reporting;
• Perform security operations tasks and work with MSSP;
• Carry out NVA’s information security strategy by following the guidance of the Chief Information Security Officer;
• Identify and define system security requirements to protect the organizations’ sensitive information;
• Document incident response processes;
• Prepare and document standard operating procedures and protocols;
• Configure and troubleshoot security infrastructure tools and devices;
• Develop technical solutions and implement new security tools to help mitigate security vulnerabilities and automate repeatable tasks;
• Write comprehensive reports including assessment-based findings, outcomes, and propositions for further system security enhancement;
• Collaborate with the Cybersecurity and Technology Risk team, the IT team and other departments to educate and incorporate security;
• Support the implementation of policies and parameters to tune security technologies (e.g. DLP);
• Develop standard operating procedures to operationalize security functions and to provide guidance to security operations, Help Desk, and other support areas;
• Write comprehensive reports, user documentation, policies and procedures including assessment-based findings, outcomes and propositions for further system security enhancement;
• Attend, participate, and provide guidance and recommendations on projects, as assigned.

Requirements:

The cybersecurity engineer must meet the following requirements:

• Proven work experience as a system security engineer or information security engineer or cybersecurity engineer;
• Experience in building and maintaining security systems and implementing security tools;
• Detailed technical knowledge of security as it pertains to networking, databases, operating systems, and cloud;
• Problem solving skills and ability to work under pressure.

Education/Experience : B.S. in Computer Science or related field plus 4 or more years of security experience or 6 or more years of security specific work experience.

Certifications : CISSP or similar security industry certification.

Security Tools Knowledge : Privileged Access Manage (e.g. CyberArk); CASB (e.g. CloudLock); Email security (e.g. ProofPoint, Mimecast); AntiVirus (e.g. McAfee, TendMicro); Scanning/pen testing tools (e.g. Qualys, Frontline); SIEM technology (e.g. Splunk); Other security tool experience such as EDR, is a plus.

NVA is an Equal Opportunity Employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, age, protected veteran or disabled status, or genetic information. This role is not eligible for visa sponsorship. Hiring is contingent on candidate verifying their eligibility to work in the United States and passing a complete background check and drug screen.

*This role is not open to receiving agency candidates and any contingent submissions will not be honored.