Cactus Wellhead - IT Security Engineer

About the position

This is a Cactus Wellhead position and is located in Houston, TX. The IT Security Engineer leads the investigation, response, and remediation of cybersecurity events and findings. The role will develop and operate comprehensive security solutions and programs that align with the organization's cybersecurity controls. The IT Security Engineer will work closely with IT, development, and application teams to implement best-in-class security practices across cloud and on-premises environments. The individual must be able to work autonomously, must have exceptional problem-solving abilities and exhibit a strong sense of ownership to assigned responsibilities.

Responsibilities

• Practice safe work habits and comply with all quality, safety, health, environmental policies, procedures, programs, and regulations.
• Design, implement, and maintain security solutions such as endpoint protection, SIEM/SOAR, and security automation tools.
• Develop and enforce security policies and standards for network, cloud, and endpoint security.
• Implement best practices for endpoint, server, and cloud security hardening.
• Ensure timely remediation of vulnerabilities by working with system owners and developers.
• Participate in Incident Response efforts, including containment, remediation, and forensic analysis.
• Manage IAM, PAM, and access control policies to enforce Zero Trust principles.
• Perform security event triage and deep analysis of security logs.
• Build and optimize security monitoring, alerting, and logging capabilities.
• Support compliance initiatives (e.g., SOC 2, ISO 27001, NIST, SOX) and security audits.
• Participate in security assessments, penetration testing and threat modeling exercises.
• Maintain knowledge by monitoring InfoSec trends, news, and technologies while providing guidance to the organization.

Requirements

• Bachelor's degree in Information Security/Systems, Computer Science, or other related technical discipline.
• 5+ years' experience in an IT Security role.
• Advanced experience with Identity and Access Management and associated technology.
• Advanced experience with Extended Detection and Response product suites.
• Intermediate knowledge of frameworks such as NIST CSF, ISO/IEC 27001 and Sarbanes-Oxley (SOX).
• Intermediate experience with vulnerability assessment technologies.
• Intermediate knowledge and experience with SIEM/SOAR technologies.
• Intermediate knowledge of Cloud and SaaS productivity platforms.
• Intermediate knowledge of data classification techniques and Digital Loss Prevention (DLP).
• Proven experience leading technical security projects.
• Motivated self-starter who can work in a dynamic, fast-paced team environment.

Nice-to-haves

• CISSP - Certified Information Systems Security Professional.
• CCSP - Certified Cloud Security Professional.
• GIAC - Global Information Assurance Certification (various specializations, such as GPEN, GCIH, GSEC, etc.).
• OSCP - Offensive Security Certified Professional.
• Associate/Architect/Specialization-level certifications in AWS/GCP/Azure security.