Staff Information Security Engineer

About The Position

Requirements

• Bachelor’s degree or equivalent combination of education and relevant experience.
• A minimum 10 years of related industry experience, or equivalent mix of education and related experience.
• Deep knowledge of security and telecommunications protocols and architectures.
• Proficient in one or more scripting language (Python, PowerShell, or equivalent).
• Excellent oral and written communication skills.
• Excellent critical thinking, analytical, and engineering skills, including the ability to independently analyze and understand both new technologies and legacy solutions.
• Demonstrated commitment to ongoing skills development.

Nice To Haves

• Advanced Degree preferred.
• Experience with asset discovery and logical asset management.
• Solid understanding of authentication and identity technologies (IAM, SSO, RADIUS, TACACS+, AD/LDAP/Kerberos).
• Experience with compliance frameworks, particularly NIST CSF, NIST 800-53, and/or ISO 27001.
• Experience with administration of Splunk, Splunk ES or other SIEM platforms.
• Familiarity with Infrastructure as Code and automation tools (Terraform, Ansible, git).
• Familiarity with AWS, Microsoft Azure, and Office 365 security controls (e.g., IAM, PIM, Identity Governance, Azure Policies, Entra, Intune, DLP, IaaS).
• Familiarity with EDR/MDR/XDR platforms.
• Experience with security incident response.
• Strong understanding of operating systems and command line administration at all levels.
• Strong understanding of TCP/IP networking protocols at all layers of the OSI stack.
• Understanding of the HTTP protocol, Web Application Firewall (WAF) technologies, BurpSuite testing, and APIs.
• Understanding of PKI, SSL/TLS, and cryptographic functions.
• Experience working in micro-segmented environments.
• Comfortable with regular expressions.
• Current relevant industry certifications (SANS/GIAC, etc.), Azure or AWS architecture or security certifications.

Responsibilities

• Protecting the confidentiality, integrity, and availability of information systems and data at Segra.
• Understanding complex technology systems and tools in both the traditional Information Technology and Service Provider domains.
• Maintaining awareness of security trends, government regulations and 3rd-party standards (NIST, ISO).
• Monitoring developments in systems, protocols, tools, and other changes in the information security space.
• Understanding and supporting the business environment in which security operates.
• Collaborating with architects, senior-level engineers, management, and stakeholders inside and external to the organization.
• Ensuring awareness of security risks.
• Ensuring appropriate mitigation steps are taken.

Benefits

• Medical, dental, vision insurance
• Life insurance
• 401(k) match
• Flexible Spending/Health Savings Accounts
• Tuition and gym reimbursements
• Vacation/PTO, paid holidays, floating holidays
• Volunteer days, parental leave
• Legal, accidental, hospital indemnity, identify theft, pet insurance
• Immediate 401(k) vesting
• Programs supporting physical, mental, financial, and social wellness