Global IT Security Engineer

About The Position

Requirements

• Advanced analytical and problem-solving skills.
• Strong interpersonal skills.
• Strong working knowledge of networking, routing, protocols, ports and services.
• Experience with attack surface management (ASM) platforms, vulnerability management tools (e.g., InsightVM/Nexpose), external pen testing tools and frameworks (e.g., Metasploit, Burp Suite, NMAP, Wireshark), and cloud security posture management (CSPM) tools.
• Hands-on experience with penetration testing and/or red team concepts and methodologies (e.g., PTES, MITRE ATT&CK). Familiarity with automated pentesting platforms is a big plus.
• Working knowledge of Linux and Microsoft Windows operating systems, Active Directory, and server / endpoint skills and experience.
• Demonstrated experience in conducting security assessments.
• Familiarity with OT/ICS security concepts and environments, including network segmentation, industrial protocols, asset visibility, and OT-specific threat considerations (e.g., Purdue model, IEC 62443).
• Understanding of identity and authentication platforms and their security implications, including MFA, token-based authentication, and privileged access management (e.g., RSA, PAM solutions).
• Strong working knowledge of various cloud computing environments, including cloud-native security services, IAM, and common cloud misconfigurations and exposure patterns.
• Ability to follow established processes and guidelines for Change Management, Release Management, Problem and Incident management.
• Collaborator with strong organizational skills, a positive attitude and customer service orientation.
• Innovative thinker who can see the big picture while remaining attentive to the details.
• Experience with MS productivity tools (Word, Excel, PowerPoint, Visio).

Nice To Haves

• Experience with scripting languages (e.g., PowerShell, Python, Bash) is a plus.
• Familiarity with SDLC security testing concepts and application security (OWASP, SAST/DAST) is a plus.
• Relevant security certifications (e.g., CISSP, CISM, CEH, CompTIA Security+) are highly desirable.

Responsibilities

• Own and drive the external exposure management program: manage attack surface management (ASM) tooling, continuously identify and prioritize externally exposed assets and vulnerabilities, develop remediation strategies, and track remediation through to closure with relevant IT and business stakeholders.
• Plan and coordinate external penetration testing with tooling and 3rd party engagements, including scoping, vendor management, results analysis, and remediation follow-up. Develop and maintain internal red team/pen test capabilities and tooling to assess the organization’s external attack surface on an ongoing basis.
• Assess and improve cloud security posture across various cloud environments. Identify misconfigurations, excessive exposure, and policy violations; partner with cloud and infrastructure teams to drive remediation.
• Contribute to cloud security architecture standards and guardrails.
• Interpret various federal, state, and industry frameworks for security, including but not limited to PCI DSS, SOX, ISO/IEC 27001, OWASP Top Ten, CIS Critical Security Controls, NIST, and advises management of any changes. Participate in security audits and assessments.
• Manage and optimize vulnerability management tooling (e.g., InsightVM); analyze scan results, develop and maintain reporting and dashboards, and coordinate with IT teams on prioritization and remediation tracking. Interpret relevant security frameworks (PCI DSS, NIST, CIS Controls) and advise on compliance implications.
• Provide secondary support for network security and OT/ICS security functions, including firewall rule review, network segmentation assessments, and OT-specific security architecture considerations. Serve as backup for identity and authentication platforms (e.g., RSA) as needed.
• Contribute to security governance activities including policy documentation, security audits, and compliance assessments. Support ongoing risk assessment processes and communicate findings to both technical and non-technical stakeholders.
• Develop and maintain comprehensive documentation related to security policies, procedures, and configurations.
• Collaborate effectively with other IT teams, business units, and vendors. Communicate security risks and recommendations to both technical and non-technical audiences.
• Stay up to date on the latest security threats, vulnerabilities, and technologies. Research and evaluate new security solutions to improve our security posture.
• Mentor junior security team members and provide technical guidance.

Benefits

• competitive total compensation plan
• comprehensive benefits
• upward mobility opportunities
• work life balance