IT Security Engineer

About The Position

Requirements

• The requirements listed below are representative of the knowledge, skill, and/or ability required. Reasonable accommodation may be made to enable individuals with disabilities to perform the essential functions.
• 7-12 years of progressive experience in information security engineering/operations, network administration, and enterprise infrastructure support.
• Experience with Fortinet solutions, EDR, email security solutions
• Demonstrated experience leading security engineering initiatives from design through implementation, including developing standards, reference architectures, and operational runbooks.
• Experience serving as an escalation point and technical lead for high-severity security incidents, including containment, eradication, root-cause analysis, and post-incident corrective actions.
• Experience with security monitoring and detection engineering (e.g., SIEM/log management, alert tuning, and creation of actionable detection use cases).
• Proven ability to drive vulnerability management at scale (scan strategy, risk-based prioritization, remediation SLAs, exception handling, and validation of fixes).
• Experience translating regulatory and framework requirements into technical controls and supporting audits/assessments through evidence collection and technical walkthroughs.
• Demonstrated mentoring and technical leadership experience, including coaching junior engineers, leading design reviews, establishing best practices, and providing hands-on guidance during troubleshooting and incident response.
• Solid knowledge of cybersecurity frameworks including NIS, ISO27001/27002, CIS, HIPAA, CCPA/CPRA and GDPR.
• Solid working knowledge of Layer 2 (VLANs, Inter-VLANs, VTP Domains, bridge groups, MVRP, ACL’s) technologies and network segmentation.
• Strong knowledge of DNS records including reverse zones and maintaining DNS records
• Strong DHCP Knowledge to include DHCP Fail over and able to configure DCHP relay on Switches
• Solid understanding of routing protocols, static routes and ARP cache
• Proficient in creating and implementing certificates on layer 2 devices (Switches, Firewalls, Linux Appliances)
• Strong troubleshooting skills and possess the ability to find security and network issues in a timely manner
• Strong Windows administration skills including Active Directory/GPO’s and security policies
• Solid working knowledge of Virtualization, such as VMware ESXi servers and vCenter 7.x
• Solid working knowledge of Veeam/Bacula/Exagrid backup software to manage backup and restore procedures
• Must be able to follow instructions and procedures and ask questions if something is unclear
• Excellent documentation skills including ability to create network drawings
• Self-motivated and energetic with the ability to manage time efficiently without supervision and to work effectively under pressure
• Strong customer service and communication skills
• Excellent organizational skills and strong sense of urgency
• Familiarity with various network types including LANs, WANs, SDWAN, WLANs, SANs, and VoIP networks
• Great accuracy and attention to detail

Nice To Haves

• Experience in Business Continuity and disaster recovery is a plus
• Knowledge of Ruckus Access Points and Switches
• Knowledge of IBMi

Responsibilities

• Monitor network traffic for anomalies, investigate alerts and respond to security incidents.
• Conduct regular vulnerability scans, risk assessments, patch management and mitigation across network devices.
• Ensure adherence to cybersecurity frameworks including NIS, ISO27001/27002, CIS, HIPAA, CCPA/CPRA and GDPR.
• Able to proactively scan servers and network devices for vulnerable ports and protocols and rogue devices.
• Manage our firewall environment with the ability to create route policies and apply cybersecurity recommendations
• Install and configure Network Equipment (Switches, Firewalls, and other networking hardware)
• Perform (Layer 2) switch administration and configuration on Cisco/Ruckus switches. Including configuring LAGs, interfaces, creating trunks, creating, and managing segmented VLANs.
• Possess a solid understanding of Windows Server services and roles including installation and configuration
• Create certificates for network devices and servers that have a web management capability
• A strong understanding of Windows Active Directory and can design, implement, and configure and troubleshoot Active Directory issues
• Create, Manage and Deploy Group Policy Objects (GPO’s) to deploy applications and implement security including windows firewalls
• Effectively use PowerShell to automate and standardize administrative tasks
• Capable of installing a Linux VM and execute basic Linux commands and managing Linux appliances
• Manage our virtualized server environment managing, creating VM’s and patching the VMware environment. Strong understanding of Virtual Switches, Port Groups (Distributed and Standard)
• Manage the Active Backup for Business on Synology and other advanced Synology administration features
• Maintain and monitor Backup solutions.
• Manage our users email accounts using the cloud service M365 from Microsoft
• Responsible for creating and maintaining server and network documentation to include tasks and procedures
• Proactively monitor our network using a variety of tools to help identify potential network and server issues
• Assist in patching our entire infrastructure when needed using a variety of tools
• Maintains strong technical abilities, knowledge of new and changing technologies
• Prepare for emergencies by creating and/or updating action plans
• Jumping into time-sensitive projects wherever needed
• Showing flexibility and a willingness to learn
• Maintain healthy communication with IT Staff, IT Customers and Vendors
• Actively participate in IT Infrastructure and Operations projects, managing, completing, communicating, and fully documenting assigned tasks and deliverables.
• Maintain reliable and consistent attendance, including being punctual, and dependable in order to meet the needs of the department and the organization.
• Execute each essential duty satisfactorily to perform job successfully.
• Follows all safety procedures required in work area, wears PPE as needed, attends all safety meetings, and reports safety issues regarding equipment or unsafe/hazardous conditions.
• Performs effectively as a team member, able to work well with others, open to receiving and give feedback, and treats everyone with respect.
• Takes ownership of own work and behavior, accepts accountability for own actions, encourages solutions, and communicates status of work/projects.
• Follow all department quality standards/criteria.
• Raise concerns and issues to immediate manager.
• Able to understand and demonstrate Cambro company culture, display company core values (Safety, Quality, Respect, and Service).
• Understands department’s key performance indicators and contributes to achieve these goals both individually and as a team.
• Lead security architecture and engineering efforts (e.g., network segmentation, secure remote access, zero trust-aligned improvements) and produce implementation standards.
• Own and mature vulnerability management (prioritization, SLAs, exception handling, validation) and provide risk-based remediation guidance to IT and business partners.
• Define logging and monitoring requirements; develop and tune detection use cases and alerting to reduce false positives and improve mean time to detect/respond.
• Serve as the technical lead during major security incidents: coordinate triage and containment, perform root-cause analysis, and drive corrective actions and post-incident reviews.
• Translate cybersecurity framework requirements into technical controls; lead evidence gathering and technical walkthroughs for audits and assessments.
• Lead cross-functional security projects, provide technical direction to peers, and mentor junior engineers through design reviews, troubleshooting, and skills development.
• Other duties as needed or required.