20167 - Security Engineer III

About The Position

Requirements

• Bachelor’s degree in Computer Science, Information Systems, or related field, or equivalent experience.
• 5+ years of hands‑on Security Engineering, Security Planning, or Security Operations experience.
• 2+ years of network administration/engineering experience and 2+ years of system administration experience.
• Advanced knowledge of security technologies with experience operating in medium to complex computing environments.
• Hands-on experience with two or more enterprise security technologies, such as IPS/IDS, VPNs (SSL/IPsec), firewalls, NAC, Windows/Linux OS, packet inspection, or directory services (LDAP/AD).
• Strong understanding of network architecture and concepts, including routing, switching, DNS, DHCP, subnetting, and security dependencies across server/VM environments.
• Experience implementing security technologies, conducting risk assessments, and integrating security controls into operational frameworks.

Nice To Haves

• Professional security certifications such as Security+, CISSP, CISSP‑ISSAP, or SANS.
• Experience with endpoint security solutions (EDR, AV, DLP) and web filtering tools (e.g., Palo Alto, Forcepoint, Sophos).
• Strong technical documentation skills (e.g., reports, proposals, SOWs, white papers).
• Ability to work independently with minimal supervision while managing multiple tasks in a team environment.

Responsibilities

• Design, build, test, and deploy new security technologies, including developing operational documentation and runbooks.
• Evaluate, recommend, integrate, and automate security tools and processes to enhance the protection of corporate assets and infrastructure.
• Conduct security risk assessments, exposure analyses, and security architecture reviews to ensure secure and cost‑effective system and network performance.
• Lead or assist in producing periodic or ad‑hoc security reports that provide situational awareness to senior stakeholders.
• Analyze network security elements and architectural designs to maintain optimal performance, security, and operational resilience.
• Monitor and manage networks, systems, and infrastructure for attacks, malware, intrusions, and vulnerabilities, including full remediation of impacted systems.
• Implement, operate, and tune enterprise security technologies (e.g., IPS/IDS, vulnerability scanners, encryption, endpoint protection).
• Support security audits, compliance reviews, and risk‑management activities, delivering required documentation and remediation follow‑up.
• Participate in or lead incident response activities and provide rotational after‑hours on‑call support.
• Develop and maintain cybersecurity policies, procedures, and controls, including risk management and incident response plans.
• Conduct security assessments and penetration tests to identify and evaluate vulnerabilities across systems and networks.
• Manage, configure, and monitor security tools and technologies such as firewalls, IDS/IPS, and antivirus platforms.
• Investigate, contain, and remediate cybersecurity incidents, including breaches, malware, and other threats.
• Provide cybersecurity training to employees, promoting security awareness and safe practices.
• Stay current on emerging threats, trends, and best practices through continuous learning and industry engagement.

Benefits

• comprehensive medical/dental coverage
• generous PTO
• education assistance
• annual merit increase eligibility