Engineer, Information Security Operations

About The Position

Requirements

• 5+ years experience in systems administration and security operations required
• 5+ years experience with endpoint security technologies (e.g., endpoint detection and response, antivirus, host-based firewalls) required
• 3+ years experience with SIEM (Security Information and Event Management), SOAR (Security Orchestration, Automation and Response), IDS/IPS (Intrusion Detection/Prevention System), and cloud monitoring solutions required
• 3+ years experience with vulnerability management and asset management required
• Bachelor of Science (BS) Information Technology Preferred
• Bachelor of Science (BS) Computer and Information Science Preferred
• An equivalent mix of education, training, and/or work experience may be considered in place of a degree
• Must be analytical and a problem solver with the ability to identify problems and/or cause-effect relationships; identify key issues; secure relevant information from all appropriate sources; identify possible root causes of problems and develop and implement corrective actions for resolution (Intermediate-Advanced)
• Interpersonal skills; Must be able to establish and maintain effective working relationships with all levels of management, employees, customers, and outside vendors; Must be able to clearly and effectively communicate both orally and in writing, using good grammatical form, both in general correspondence, as well as on technical issues. (Intermediate-Advanced)
• Proficiency with computer applications, including Microsoft Excel, Word, Project, PowerPoint and Outlook, as well as the ability to learn and effectively utilize other software applications used within the Company. (Intermediate-Advanced)
• Organizational skills and the ability to prioritize tasks are essential. Must be able to establish a course of action for self and others/department to accomplish specific goals; must plan and prioritize proper assignments of personnel and/or appropriate allocation of resources. (Intermediate-Advanced)
• Self-motivated and capable of working with minimal supervision and/or direction. (Intermediate-Advanced)
• Stationary Position/Seated: Frequently
• Communicate/Talking: Constantly
• Communicate/Hearing: Constantly
• Seeing/Observing: Constantly

Nice To Haves

• IT support experience in the automotive industry preferred
• CompTIA Security+ - Computing Technology Industry Association (CompTIA) Preferred Upon Hire
• CompTIA A+ - Computing Technology Industry Association (CompTIA) Preferred Upon Hire

Responsibilities

• Maintain endpoint security tools, configurations, and standards across the enterprise.
• Lead detection, prioritization, and remediation tracking in partnership with infrastructure and application teams.
• Actively participate in endpoint-related incident response, collaborating with the SOC to detect, contain, and remediate threats in real time.
• Support endpoint threat hunting, forensic analysis, and root-cause investigations with security engineering teams.
• Facilitate vulnerability management activities for MNAO and regional offices, ensuring consistent remediation processes and risk reduction.
• Track KPIs and SLAs to measure remediation effectiveness, drive accountability, and report progress to leadership.
• Support reduction of endpoint vulnerabilities and misconfigurations across all environments.
• Improve mean time to detect/respond MTTD/MTTR (Mean Time to Detect/Mean Time to Repair/Resolve) for endpoint-related incidents.
• Continuously tune endpoint security controls (e.g., endpoint detection and response, antivirus, host-based firewalls) to adapt to emerging threats.
• Evaluate new tools, automation opportunities, and processes to strengthen endpoint security maturity.
• Increase automation and integration with SOC and security engineering.
• Provide input and support the overall advancement of the endpoint security strategy.
• Maintain compliance with security frameworks (e.g., NIST CSF 2.0, ISO 27001, NYCRR 500) and ensure accuracy of the Configuration Management Database (CMDB).
• Partner with Governance, Risk, and Compliance (GRC) to meet regulatory requirements and align security controls with enterprise standards.
• Ensure MNAO meets and makes progress to exceed endpoint compliance and target thresholds.
• Deliver regular reports on endpoint health, compliance, and overall security posture to leadership and cross-functional stakeholders.
• Collaborate with executive leadership and influence enterprise-wide security initiatives.
• Perform other duties as assigned
• Comply with all policies and standards