Cyber Security Engineer II

About The Position

Requirements

• Minimum Degree Required: Bachelor's Degree In Computer Information Systems
• Years of experience: 4-6 years; Multi-domain Security Experience, preferred
• Must have knowledge in configuration, tuning, and administration of Endpoint Detection & Response (EDR) and Extended Detection & Response (XDR) platforms (e.g., CrowdStrike, Microsoft Defender, SentinelOne, Palo Alto Cortex).
• Possess hands-on knowledge of endpoint, identity, cloud, and log-based telemetry, including host-based sensors, process monitoring, file system activity, authentication logs, and API-based integrations across Windows, macOS, Linux, and cloud workloads.
• Strong understanding of detection engineering concepts, including behavioral detections, MITRE ATT&CK mapping, alert fidelity tuning, and false-positive reduction.
• Knowledge of encryption technologies and secure communications as they relate to endpoint agents, secure telemetry transmission, certificate-based authentication, and troubleshooting encrypted data flows.
• Working knowledge and exposure to SIEM and log management platforms (e.g., Splunk, Elastic, Microsoft Sentinel, CrowdStrike NG-SIEM), including log onboarding, parsing, normalization, correlation rules, dashboards, and retention strategies.
• Experience with SOAR platforms and automated response workflows (e.g., Palo Alto XSOAR, Splunk SOAR, Sentinel playbooks), including alert triage, enrichment, containment actions, and integration with ITSM and identity platforms.
• Knowledge of remote access, endpoint isolation, containment, and remediation techniques, including live response, host quarantine, process termination, and forensic artifact collection.
• Familiarity with endpoint and identity security controls, such as device control, attack surface reduction, application control, and identity-driven detections.
• Ability to work with small teams of high-performance professionals within direct or matrixed security operations, engineering, and incident response functions.
• Familiarity and experience developing, writing, and enhancing enterprise-grade security policies, standards, and procedures related to detection, response, incident handling, logging, and monitoring; demonstrated ability to assess current practices, identify gaps, and propose improved approaches.
• Regular sitting.
• Occasional walking and standing.
• Performs duties within scope of general company policies, procedures, and objectives. Analyzes problems and performs needs assessments. Uses judgment in adapting broad guidelines to achieve desired result. Regular exercise of independent judgment within accepted practices. Makes recommendations that affect policies, procedures, and practices.

Nice To Haves

• Preferred Degree: Master's Degree In Computer Information Systems
• Certificate(s) or License(s) preferred: CISSP, CISM, CISA, GIAC, GSEC, CSSP, CCIE-Sec, CEH, PCI ISA, etc.

Responsibilities

• Works more independently than an CSE I and is able to take lead on engagements
• Run multiple concurrent projects as lead infosec engineer
• Maintains and implements enhancements to current security management software and hardware devices including, but not limited to: EDR, SIEM, SOAR, XDR, ZTNA
• Provides input across multiple disciplines regarding new projects to ensure the security posture of the environment.
• Provides technical expertise and support to other IT Security team projects and troubleshooting.
• ALL OTHER DUTIES AS ASSIGNED

Benefits

• Enjoy discounts on retail merchandise, our restaurants, world-class resorts and conservation attractions!
• Medical
• Dental
• Vision
• Health Savings Account
• Flexible Spending Account
• Voluntary benefits
• 401k Retirement Savings
• Paid holidays
• Paid vacation
• Paid sick time
• Bass Pro Cares Fund
• And more!