Job Details

Position Overview:

The Senior Information Security Engineer is tasked with overseeing the development and deployment of advanced security solutions across an organization’s technology stack. They lead complex projects, such as building secure cloud environments or fortifying enterprise-wide systems against sophisticated attacks. Their responsibilities include reviewing and updating security architectures to address evolving threats and compliance needs. They guide other engineers, manage cross-functional initiatives, and ensure security standards are met during system upgrades or migrations. They also analyze incident trends and recommend long-term improvements to enhance overall security resilience.

Essential Responsibilities:

• Implement security solutions that reinforce a defense-in-depth and zero-trust posture.
• Contribute to complex security projects.
• Install, configure, maintain, patch and troubleshoot all information security tools and infrastructure including but not limited to SIEM, SOAR, WAF, PAM, firewalls, secure web/email gateways.
• Perform routine configuration reviews of information security technology and infrastructure against industry best practices, vendor supplied recommendations and the company’s own internal baselines.
• Create and maintain internal documentation such as network, architectural and data flow diagrams and internal procedures for all information security owned products and tools.
• Train the security team on newly deployed technologies and act as an escalation point and subject matter expert for all information security owned systems.
• Support proof of concept efforts of new security technology solutions while working closely with established vendors and resellers. Implement and test new security technologies deployed to safeguard access to resources, enterprise networks and computer systems as directed by the Information Security Manager.
• Participate and lead security incident response procedures as outlined in the company security incident response plan. Responsibilities may include playing a role as the senior technical resource leading triage efforts and taking the lead on communications with senior leadership.
• Work closely with the Governance, Risk, Compliance team to document internal operational and audit procedures around information security owned infrastructure, gather technical evidence, speak to cybersecurity procedures and standards.

Qualifications: 

• Bachelor’s degree in computer science, cybersecurity (or related field), or 5 years of professional experience as an information security engineer.
• Extensive hands-on experience with security tools including SIEM, SOAR, WAF, PAM, firewalls, secure web/email gateways.
• Articulate with strong business acumen and executive presence.
• Coachable and willing to learn with an emphasis on positive demeanor.
• Ability to take initiative and drive results.
• Successful completion of the Nlets fingerprinting background assessment.

Preferred

• Information security industry certifications such as CISSP, CompTIA Security+. CEH, OSCP.
• Hands-on experience with the CrowdStrike suite of cybersecurity tools.
• Proficiency in scripting languages (e.g., Python, PowerShell, Bash) for automation and tool development.
• Extensive knowledge of networking protocols, operating systems (Windows, Linux).
• Experience in security operations and incident response.

Desired

• Experience securing cloud-native environments (Kubernetes, Docker) and implementing DevSecOps practices.
• Experience with zero-trust architecture.
• Knowledge of machine learning for anomaly detection or threat intelligence.