Security Engineer

The IT Security Engineer performs core security functions for the enterprise. The primary function of the role is the day-to-day operations of the in-place security solutions and the identification, investigation, and resolution of security events detected by those systems. Additional tasks may include involvement in the implementation of new security solutions, participation in the creation and or maintenance of policies, standards, baselines, guidelines, and procedures as well as conducting vulnerability audits and assessments. The IT Security Engineer is expected to be fully aware of the enterprise's security goals as established by its stated policies, procedures, and guidelines and to actively work towards upholding those goals. Microsoft Defender experience is required., * Participate in the planning and design of enterprise security architecture, under the direction of the Director of Security, where appropriate.

• Participate in the creation of enterprise security documents (policies, standards, baselines, guidelines, and procedures) under the direction of the Director of Security, where appropriate.
• Maintain up-to-date detailed knowledge of the IT security industry including awareness of new or revised security solutions, improved security processes, and the development of new attacks and threat vectors.
• Recommend additional security solutions or enhancements to existing security solutions to improve overall enterprise security.
• Perform the deployment, integration, and initial configuration of all new security solutions and of any enhancements to existing security solutions in accordance with standard operating procedures generically and the enterprise's security documents specifically.
• Maintain up-to-date baselines for the secure configuration and operations of all in-place devices, whether they be under direct control (i.e. security tools) or not (e.g. workstations, servers, network devices).
• Maintain operational configurations of all in-place security solutions as per the established baselines.
• Monitor all in-place security solutions for efficient and appropriate operations.
• Deliver training and phishing simulations for the enterprise's security awareness training program.
• Review logs and reports of all in-place devices, whether they be under direct control (i.e. security tools) or not (e.g. workstations, servers, network devices). Interpret the implications of that activity and devise plans for appropriate resolution.
• Participate in investigations into problematic activity, evaluate and assess trends
• Participate in the design and execution of vulnerability assessments, penetration tests, and security audits.
• Provide on-call support., This is a hybrid position that requires on-site presence in addition to working remotely. Are you within commute distance to San Francisco, California? If not, are you willing to relocate at your own expense?
• Do you now or will you in the future need sponsorship to work for WCIRB?
• Desired salary?

Do you have experience in Windows?, Do you have a Bachelor's degree?, To be considered, candidates need a minimum of 3+ years of experience with all components of the Microsoft Defender Security Stack (XDR, Endpoint, Identity, Cloud Apps, Office 365, Sentinel)., * Bachelor of Science Degree (including completed courses in relevant areas such as computer science, computer languages, etc.) or equivalent combination of education and progressive, related experience supplemented with courses and seminars in relevant subject matters.

• Certification in one or more of the following (Strong Plus):
• CompTIA Security+
• CompTIA PenTest+
• GIAC Security Certifications
• Microsoft Security Certifications
• (ISC) SSCP
• (ISC) CISSP
• 5+ years of extensive experience with threat hunting and security forensics.
• 3+ years of experience with Microsoft Defender Security Stack (XDR, MDR, Endpoint, Identity, Cloud Apps, Office 365, Sentinel)
• 3+ years of experience with Identity Management (Entra ID, Active Directory, Conditional Access)
• Working experience with Intune and Group Policies (GPO) configuration management
• Working experience with MFA infrastructure (Microsoft and Duo)
• Working technical knowledge of Windows OS hardening, perimeter security, firewall services, web application firewalls. PAN knowledge a plus
• Strong technical knowledge of cloud computing standards (Azure preferred)
• Strong understanding of IP, TCP/IP, and other network administration protocols.
• Strong understanding of security training needs
• Familiarity with NIST, CIS, PCI, DSS standards, * Are you legally authorized to work for any employer in the US?

Pulled from the full job description

• Referral program
• 401(k)
• Health insurance
• Retirement plan
• 401(k) matching
• Paid time off
• Vision insurance, * Hybrid work environment (40% onsite 60% remote)
• Medical, dental and vision benefits
• Competitive PTO Program
• Wellness benefits
• 401K and pension plan
• Social activities
• Community volunteer involvement, * 401(k)
• 401(k) matching
• Health insurance
• Health savings account
• Paid time off
• Referral program
• Retirement plan
• Vision insurance

For over a century, the Workers' Compensation Insurance Rating Bureau of California (WCIRB) has been California's trusted, objective provider of actuarially based information and research, advisory pure premium rates and educational services integral to a healthy workers' compensation system. The WCIRB is a California unincorporated, private, nonprofit association comprised of all companies licensed to transact workers' compensation insurance in California. The operations of the WCIRB are funded primarily by membership fees and assessments; no state money is used to fund its operations. The WCIRB is a stable company and a proven leader in the workers' compensation insurance industry nationwide. The WCIRB performs a number of functions to accurately measure the cost of providing workers' compensation benefits and ensure a healthy workers' compensation system. To learn more about our company, please visit About Us | WCIRB California. The WCIRB employs approximately 175 people with the average tenure of over 10 years. We are committed to fostering a healthy, safe and diverse work environment leading to a dedicated, collaborative and innovative workforce This is a hybrid position where approximately 40% of the work time is spent at the home office in San Francisco, California., Our employees enjoy a state of the art, energy-efficient, open work environment that nurtures collaboration and creativity. At the WCIRB, we go the extra mile to keep our employees happy and healthy. Proud to be recognized as a Plan Sponsor of the Year finalist for our commitment to retirement readiness through strong 401k and pension offerings.