The Security Engineer I (Remote) is responsible for the continuing development, implementation, support, facilitation, and communication of the Information Security Policy within all areas of the business with a keen focus on security operations including network perimeter defense and systems security. As the Security Engineer I, you will assist with the support of existing security controls to ensure stability, uptime, and effective control operation. The role performs ongoing monitoring of networks and network elements, both internal and customer-facing, to ensure compliance with policy and standards. This includes supporting and developing systems to enable the analysis and reporting of security events and activities. Assist in security-related investigations and incident response activities and provides system forensics and investigative services. In addition, provide periodic "on-call" support of security operations during non-business hours. The Security Engineer I will act as team liaison for department projects.

This position has the ability to work remotely in any of the 40+ states in which TDS operates.

The pay range listed for this position represents the low and high end of the base compensation range. The actual offer amount will carefully consider multiple factors, such as relevant skills, qualifications, work experience, location and/or competencies that align with the specified role. Certain positions are eligible for additional forms of compensation such as bonuses and equity awards.

TDS Telecommunications LLC (TDS Telecom/TDS) delivers high-speed internet, TV entertainment, and phone services to more than 1,000 rural, suburban, and metropolitan communities across the U.S. With 1.2 million connections, TDS is a rapidly growing technology company. Powered by fiber-optics and new industry-leading technologies, TDS delivers up to 2 Gigabit internet speeds and offers internet-protocol based TV entertainment solutions along with traditional phone services. TDS also offers businesses VoIP advanced communications solutions, dedicated internet service, data networking, and hosted-managed services. Visit tdstelecom.com.

IT Security Program Development/Integration
• Assist in research and testing of new technologies from a security perspective as required and as driven by the business or regulatory needs.
• Measure and report system security posture through the ongoing development and refinement of security metrics.
• Consulting Services
• Work directly with TDS Telecom Information Technology (IT), Network Services (NS), Network Operations (NO), and TDS Corporate to ensure that TDS Telecom's technical infrastructure is adequately secured.
• Assist with security assessments of businesses acquired by TDS Telecom.
• Security Administration
• Implement firewall and VPN policies. Deploy firewalls and VPNs using recommended implementation designs.
• Assist in the deployment and operation of security controls including, but not limited to: intrusion detection, content filtering, configuration management, and vulnerability management controls.
• Perform troubleshooting and network traffic analysis to diagnose and resolve problems.
• Security Monitoring
• Monitor systems and devices for compliance with security and regulatory requirements, evaluate activity logs, and document actions taken to investigate and resolve any identified issues.
• Incident Response
• Assist with root cause analysis, expert problem resolution, and debrief activities, including executive communications as required.
• Security Investigations and Special Requests
• Work on behalf of Human Resources to collect information (e.g., e-mails, Internet activity) and investigate information security violations.
• Perform systems and network forensic investigations as needed.
• Follow established forensic principles for evidence seizure, computer forensic analysis, and data recovery. Gather and analyze data in a manner as free from distortion or bias as possible to reconstruct data or what has happened in the past on company systems.
• Maintain Industry Currency, Relevance, and Knowledge
• Maintain knowledge of vendor products, services, and security technologies and recommend/implement their use.
• Attend relevant IT security-related conferences to network with other industry personnel and maintain certification accreditation.
• Attend relevant IT security-related training to enhance skills, increase security solution capability awareness and maintain certification accreditation.

Required Qualifications

• Bachelor's degree (or higher) -OR- 4+ years of professional work experience.
• 4+ years of IT-related work experience.
• 2+ years of IT security-related work experience.

Other Qualifications

• Strong preference for candidates with one of the following certifications: ISC SCCP, CompTIA Security+ or SANS GIAC or one of the following advanced certifications from ISC: CISA, CISM, CIPP, or CISSP.
• Proficient with security principles such as encryption, hashing, PKI, and the AAA framework.
• Familiarity with one or more programming languages in the use of simple scripting or application development including UNIX shell, Perl, Python, or Ruby.
• Familiarity with the security concepts for log analysis, monitoring, system, and network auditing.
• Experience with performing security investigations and electronic forensic analysis.
• Experience with firewall principles and best practices.
• Experience with one of the following firewall platforms (Cisco ASA, Juniper ScreenOS and SRX, Fortinet, and Palo Alto Networks). Experience with Anti-DDoS security devices is a plus.
• Familiarity with remote access solutions including solutions for mobile devices.
• Familiarity with IPSec and SSL VPN implementations from Cisco, Juniper ScreenOS and SRX, Fortinet, or Palo Alto Networks technologies.
• Familiarity with network hardware including routers, switches, and wireless APs.
• Familiarity with network technologies and IP protocols (e.g., VLAN, MPLS, TCP, UDP, ICMP, SA, multicast & unicast). Proficient with the OSI 7 Layer network model.
• Familiarity with IPv4 protocol fundamentals including layer 2 resolution, addressing, and subnetting. Familiarity with P1/P2 data flows. Rudimentary familiarity with IPv6 protocol fundamentals.
• Experience with Internet networking protocols (e.g., DNS, NTP, SMTP, FTP, etc.) and experience analyzing raw data captures with Wireshark.
• Rudimentary familiarity with VoIP signaling and media protocols.
• Experience with 2 or more families of server OSes including Windows, Linux, or UNIX. Experience with 2 or more desktop OSes including Windows, Apple macOS, or popular Linux distributions.
• Familiarity with monitoring and administration of network and host-based intrusion detection and prevention systems such as OSSEC, Tripwire, or Verisys.
• Familiarity with network security assessment tools such as masscan, nmap, zmap, Canvas, Core Impact, Metasploit, Lynis, hping, scapy, and tcpreplay.
• Familiarity with open source network security intrusion detection tools (e.g., Snort, Bro, Suricata)
• Familiarity with the hardening, monitoring, and deployment of systems to DMZ and multi-zoned IP networks.
• Ability to work and lead in a fast-paced and changing environment and to prioritize multiple tasks and organize time with strong attention to detail.
• Perform tasks outside normally scheduled business hours to complete project work, provide on-call support, and/or implement scheduled changes as needed.
• Excellent written, presentation, and verbal communication skills.
• Strong human relations skills to interface with managers and staff at all levels within the organization and an understanding of the business needs that drive the company forward. Ability to engage and partner with vendors and in-sourced providers.

Benefits

Associates scheduled to work 20 or more hours per week have access to medical, dental, vision, life insurance, a 401(k) plan, and paid time off benefits such as vacation (15 days accrued per year for full-time; pro-rated for part-time associates working between 20-39 hours), sick leave (10 days accrued per year for full-time and pro-rated for all other associates), seven paid national holidays and one floating holiday, paid parental leave (2 weeks after 12 months of employment), among others. Short Term Disability and Long Term Disability coverage is also available for associates working 30 or more hours per week and Education Assistance is available to full-time associates. Associates scheduled to work under twenty hours per week or for a limited term (i.e. interns) are eligible for medical coverage, the 401(k) plan (if 18 or older), as well as sick leave (10 days accrued per year for full-time and pro-rated for all other associates). For more detail on the benefits we offer click here.

At TDS, we embrace Equal Employment Opportunity by valuing our differences and consider all qualified applicants without regard to age, race, color, religion, sex, sexual orientation, gender identity, national origin, disability, status as a protected veteran or any other status protected by law. To learn about our diversity & inclusion philosophy and culture, click here!