IT Security Engineer

About The Position

Requirements

• Bachelor’s degree in Cybersecurity, Information Technology, or a related field, or equivalent professional experience.
• 4+ years of hands-on experience across key security domains including infrastructure security, network security, identity and access management, and security operations.
• Strong foundation in cybersecurity, including IAM, data protection, and incident response.
• Proficient in Windows, Linux, PowerShell, Python, and Microsoft security tools.
• Strong experience with Microsoft Defender, MS365 Intune MDM, Active Directory, and Microsoft Sentinel.
• Skilled in SIEM platforms, logging, alerting, and dashboard creation.
• Lead engineering for platforms such as Azure Sentinel, Tenable Nessus, BeyondTrust (Bomgar), Pentera, Palo Alto Firewalls, and Cisco networking.
• Experience leading cybersecurity teams in security incident identification, response, and eradication.
• Cybersecurity certifications such as CISSP, CISM, Security+, CEH, Cybersecurity Analyst+, GIAC, or Microsoft Security.
• Proven ability to secure both IT and OT networks, including experience with incident response, alert triaging, and vulnerability management.
• Proficient in managing identity and access controls, including Active Directory administration and privileged access management.
• Skilled in executing cybersecurity strategies and enforcing technical policies across enterprise environments.
• Experienced in working with security frameworks and standards such as ISO 27001, NIST, and SOC2.
• Capable of managing vendor relationships and coordinating with internal/external stakeholders on security incidents and compliance matters.
• Strong understanding of cybersecurity principles, risk management, encryption, authentication, and access control.
• In-depth knowledge of network and infrastructure security, including virtualization, wireless technologies, and email systems.
• Familiarity with security technologies and tools, including SIEM platforms, automated penetration testing tools, and cloud risk assessment methodologies.
• Knowledgeable in security design, technical governance, and third-party auditing practices.
• Ability to communicate complex technical issues clearly and effectively to both technical and non-technical audiences.
• Demonstrated discretion in handling sensitive and confidential information.
• Strong adaptability, time management, and independent problem-solving skills.
• Ability to remain composed under pressure and provide after-hours support when necessary.
• Willingness to travel (5–10%) for training and business-related activities.

Nice To Haves

• Experience securing OT/industrial networks in manufacturing or consumer packaged goods environments.
• Familiarity with Power BI, Fabric, or similar tools for security data analysis and reporting.

Responsibilities

• Lead and execute advanced alert triage, investigation, and incident response activities across global cloud and on-premises environments, including root cause analysis and post-incident improvement initiatives.
• Design, implement, and maintain identity and access management (IAM) controls, including user lifecycle management, role-based access, privileged access management, and secure authentication mechanisms across enterprise systems.
• Perform in-depth vulnerability assessments and risk analysis, prioritize remediation efforts, and partner with IT and business stakeholders to design and implement effective mitigation strategies.
• Serve as a technical expert for MDR, SIEM, and security service providers; driving effective detection, response, and tuning of security monitoring capabilities.
• Automate and standardize security processes to ensure consistency and compliance.
• Implement and align security controls with regulatory frameworks (e.g., NIS2, ISO 27001, GDPR).
• Identify technical security risks and communicate risks to the appropriate enterprise stakeholders.
• Support and integrate physical security technologies, including badge access systems and CCTV, ensuring alignment with cybersecurity and identity controls.
• Develop and maintain security documentation, policies, and procedures.
• Design and implement actionable security metrics to evaluate and optimize the effectiveness and efficiency of deployed security controls.
• Lead security-focused initiatives, including the hardening and ongoing management of the organization’s Endpoint Detection and Response (EDR) solution and enforcement of robust device security policies.
• Design and enforce secure remote access and vendor access controls, ensuring least-privilege access and secure connectivity across global infrastructure.
• Conduct regular security testing of applications, networks, and systems.
• Partner in the design and evaluation of Business Continuity and Disaster Recovery (BC/DR) strategies, ensuring security considerations are integrated into resilience planning.
• Stay current with emerging security trends, tools, and best practices through continuous learning.
• Perform other duties and responsibilities as assigned.

Benefits

• Jack Link’s provides a variety of benefits to eligible Team Members, including medical, dental and vision benefits, life and disability insurance, 401k participation, paid holidays, and paid time off.