Security Engineer

About The Position

Requirements

• College degree in technology, computer science, engineering, or equivalent work experience.
• Minimum 5 years of experience in operational engineering, automation, security engineering, systems administration, or a related technical discipline.
• Intermediate or higher proficiency in Python and PowerShell development, including hands-on scripting, object-oriented programming, modules and package distribution, and independent troubleshooting and debugging.
• Hands-on experience with DevOps and CI/CD practices, including source control platforms such as GitHub or GitLab and pipeline development.
• Strong networking knowledge, including micro-segmentation, firewalls, packet capture analysis, troubleshooting, and hybrid cloud/on-premises/zero trust environments.
• Hands-on experience working with REST APIs, including secure integration patterns and best practices for connecting and automating across multiple tools.
• Deep understanding of network security best practices, secure connectivity patterns, and core network protocols.
• Hands-on experience with network traffic analysis using tools such as Wireshark, tcpdump, and NetFlow data.
• Experience supporting and engineering solutions across Microsoft Azure and Amazon Web Services (AWS), including operational administration and integration.
• Experience with container technologies and platforms, including Docker, Podman, or Kubernetes development and deployments.
• Detailed understanding of Kubernetes architecture and security, containerization, infrastructure as code, and enterprise automation practices.
• Knowledge of secrets management practices, including secure retrieval and usage of secrets from a centralized secrets platform.
• Understanding of security frameworks and practices including NIST, OWASP, CIS, CVSS, the MITRE ATT&CK framework, and secure software development lifecycle principles.
• Strong communication skills, with the ability to collaborate across a wide audience of stakeholders and clearly explain complex technical topics.
• Ability to think both strategically and tactically, operate as a motivated self-starter, and be recognized as a technical leader within the security organization.

Nice To Haves

• Experience with ServiceNow administration or development is preferred, including scoped applications, Flow Designer, and catalog item development.
• Proficiency with relevant DevOps tooling such as Terraform, Git, Jenkins, Nexus Repository Manager, and related platforms is preferred.
• CCSK, CCSP, CISSP, or equivalent security credentials are preferred.

Responsibilities

• Develop, maintain, and support secure automation and operational engineering solutions across on-premises and cloud environments.
• Design and implement operational workflows and remediation capabilities that improve efficiency, consistency, and resilience across security and infrastructure processes.
• Protect key infrastructure in compliance with privacy, security, business resiliency, and compliance frameworks as defined.
• Provide hands-on engineering support for security systems, platform integrations, and configuration administration to improve reliability and reduce operational risk.
• Work with key stakeholders to ensure operational requirements, engineering standards, and support considerations are incorporated into platform deployments.
• Document, standardize, and improve engineering processes that balance security, operational stability, and business needs.
• Build relationships with infrastructure and development groups to incorporate security principles into engineering design and deployments.
• Develop partnerships with IT production and engineering teams.
• Analyze operational issues, identify opportunities for automation and integration, and implement improvements across infrastructure and security platforms.
• Design and implement extensible and maintainable enterprise grade solutions using existing toolsets.
• Architect, engineer, and develop innovative on-premises and cloud-based solutions using existing technology stacks.
• Work with our team to develop user stories for key security initiatives and support delivery from concept through implementation.
• Engage and communicate with stakeholders throughout project planning and execution to ensure alignment on requirements, security expectations, and implementation outcomes.
• Develop high-quality technical content including automation tools, reference architectures, and baselines to help our partners build on the work we deliver.
• Attend and fully engage in change and project management meetings.
• Mentor and invest in the development of team members.
• Performs other duties as assigned.

Benefits

• medical, dental, and vision coverage
• wellness plans
• parental leave
• adoption assistance
• tuition reimbursement
• Paid Time Off
• paid holidays
• a 401(k) plan with company match
• an employee stock purchase plan
• commuter benefits