Security Engineer II

Sheetz, Inc•Pittsburgh, PA

About The Position

You own the security platforms that protect the company every day. If it’s a core security tool — SIEM, SOAR, EDR, secrets management, DLP, or email security, you’re responsible for making sure it works, scales, and delivers real value. This isn’t just running tools; it’s designing, automating, tuning, and improving them so security and IT teams can rely on them. Why it’s exciting Real ownership of critical security systems Hands-on work across detection, response, prevention, and automation The opportunity to turn noisy, underused tools into high-signal platforms Your improvements are felt immediately across the organization Why it matters When incidents happen, these platforms are the first line of defense. Well-engineered systems mean faster detection, smarter response, and less real-world impact. This position offers a base salary range of $78,807.00 - $131,346.00 per year, depending on experience and qualifications, plus bonus based on company performance. One of the MANY work perkz at Sheetz is quarterly employee bonuses based on company performance! And there’s more – A LOT more… like competitive salaries, PTO and parental leave, 401k match and employee stock ownership, limitless professional development and growth opportunities, tuition reimbursement, full medical, vision and dental coverage, and snack discounts! OVERVIEW Leads engineering efforts for enterprise-wide security initiatives and provides technical leadership in the design, architecture, and implementation of secure solutions. Responsible for translating business and risk requirements into scalable, resilient security capabilities, while influencing standards, driving technical direction, and ensuring security is embedded across platforms, applications, and infrastructure.

Requirements

Bachelor’s degree in Computer Science, Engineering or related field required.
Minimum 2 years cyber security engineering experience required
Previous experience with security solutions such as DLP, EDR, PKI, Password/Secret management, SEIM & SOAR required.
Previous exposure to utilization of IP, TCP/IP, and other network administration protocols required
Previous exposure to utilization of Windows and Linux systems required
Maintain a continuous personal professional development program; this level requires at least 1 of the following certifications and commitment to pursue additional training or certifications in risk, security, governance, compliance.
CompTIA CySA+ (Cybersecurity Analyst): Validates skills in threat detection, analysis, and incident response.
CompTIA Security+: Establishes a strong foundation in core cybersecurity principles.
Certified Ethical Hacker (CEH): Demonstrates knowledge of attack methodologies and defensive countermeasures (Preferred), or equivalent foundational security certification.
General Office Equipment

Nice To Haves

Previous experience with security incident response preferred

Responsibilities

Design, engineer, and implement new security solutions that address complex enterprise risks while aligning with architectural standards and business objectives.
Lead technical evaluations, proof-of-concepts, and vendor assessments to select security technologies that meet functional, scalability, and risk management requirements.
Perform advanced troubleshooting and lead incident response activities, including root cause analysis, remediation planning, and post-incident improvements.
Develop and maintain automation scripts and tooling to improve security platform operations, efficiency, consistency, and response times.
Own and drive the lifecycle management and roadmap planning for assigned security tools, including upgrades, integrations, and decommissioning.
Serve as a subject matter expert (SME) across multiple security domains and technologies, providing guidance and technical direction to stakeholders and project teams.
Partner with compliance, risk, and audit teams to support internal and external audits, security reviews, and control validation activities.
Lead the technical execution of security projects, including solution design, implementation oversight, testing, and transition to operations.
Collaborate closely with enterprise architects, infrastructure, application, and cloud engineering teams to ensure security is integrated into designs and delivery processes.
Mentor and coach junior engineers by sharing expertise, reviewing designs, and promoting secure engineering best practices.
Participate in an on-call rotation to provide evening and weekend support as needed. As Sheetz operates 24/7/365, internal and external customers may require support at any time.