Rock Family of Companies Information Security Consulting Engineer in Detroit, Michigan
The Rock Family of Companies is made up of nearly 100 separate businesses spanning fintech, sports, entertainment, real estate, startups and more. We’re united by our culture – a drive to find a better way that fuels our commitment to our clients, our community and our team members. We believe in and build inclusive workplaces, where every voice is heard and diverse perspectives are welcomed. Working for a company in the Family is about more than just a job – it’s about having the opportunity to become the best version of yourself.
The Information Security Consulting Engineer works in an environment that offers unique challenges which demand a motivated, self-sufficient, passionate security professional. The ideal applicant is a well-rounded InfoSec practitioner who can jump into any engagement with little to no ramp-up and provide actionable guidance for our teams. Always evaluating and communicating the risks, the Consulting Engineer advocates for the secure way of doing things.
Ask yourself if the following sounds fun:
Driving your own day with minimal supervision
Researching and advising on security best practices for emerging technologies
Working with teams on innovative solutions that challenge the status quo
When presented a problem-statement you’re able to think through the applicable layers (OSI Model), evaluate the risks involved, and advocate for the appropriate security controls at each layer
Defining the standards rather than being told what the standards are
Speaking business, IT, and InfoSec
Digging in to find out the “why” to ensure we’re doing the right things for the right reasons
Defining, building, and evangelizing the standards and patterns to be applied across a multi-tenant, multi-platform enterprise environment
Working on a team that challenges each other to level up
Being an active member in the InfoSec community
Staying up to date with security trends and threats
Being encouraged to attend conferences and training (ProTip – We’ll reimburse you!)
Did you answer ‘yes’ to the questions above? If so, we want to talk to you!
Collaborate with Business, IT, Project Management, Architecture, and Information Security teams to deliver secure solutions that support our business
Review project and process plans to ensure security is baked in
Consult with teams to ensure data is properly handled throughout our environment
Work with InfoSec Analysts to ensure visibility and security controls are implemented and maintained
Perform qualitative risk assessments on systems and applications
Collaborate with Architecture and InfoSec teams to build new policies and standards that enable and protect our team members
Ensure proposed changes and solutions meet the standards set forth by our business and team
Other duties as required
5 years of combined experience in a direct/indirect IT Security or Technical IT role
Understanding and practical experience in at least 4 of the following:
Network design and architecture (traditional, SDN)
Cloud based services (PaaS, IaaS, SaaS)
OS config management & hardening (Windows, Linux, Mac)
Virtualization / Containerization
Mobile security (MDM, MAM)
Encryption / PKI
Application / API security
Identity Management (IDM)
DevSecOps / SDLC
What else are we looking for?
Strong passion for information security
100% trustworthy, and able to maintain strict confidentiality
High sense of urgency
Outstanding written, organizational, interpersonal, and communication skills
Ability to look at all situations objectively, loves to challenge assumptions
Comfort with acting decisively with limited information
Agnosticism on technology and platform
Efficient, but methodical in a fast-paced environment
Love for mentoring, cross-training and building stronger teams
What'll Make You Special
Knowledge of the mortgage/financial industry
Practical knowledge of any combination of PCI-DSS, GLBA, HIPAA, state/federal privacy laws
Experience working in a probabilistic, quantitative risk management program
Experience working in a decentralized IT environment
Who We Are
Rock Central is a Detroit-based professional services company obsessed with delivering innovative, effective solutions to meet the diverse needs of our clients. From legal and finance to technology and public relations, our expertise spans from executive consulting all the way to tactical implementation. We thrive at the intersection of people, process and technology and empower our partners to unleash the maximum potential of their business through unmatched partnership and the entrepreneurial spirit of a startup. From the smallest venture to the largest enterprises, we believe having an impact is never a question – it’s part of our DNA.
The Company is an Equal Employment Opportunity employer, and does not discriminate in any hiring or employment practices. The Company provides reasonable accommodations to qualified individuals with disabilities in accordance with state and federal law. Applicants requiring reasonable accommodation in completing the application and/or participating in the employment application process should notify a representative of the Human Resources Team, The Pulse, at 1-800-411-JOBS.
The Rock Family of Companies uses world-class recruiting and talent management teams to help each member organization recruit the best and brightest. If you’re looking for the next step in your career, you’ve come to the right place.