Sr Security Engineer
Role details
Job location
Tech stack
Job description
The Senior Security Engineer is a member of the cyber security team, providing advanced analysis, troubleshooting, and resolution of complex technical issues impacting the company's networks, operating systems, applications, and services. The primary focus is system security and managing utilities, policies, configuration changes, and monitoring required to keep our servers and workstations protected at all times. The role identifies potential weaknesses, remediates vulnerabilities, conducts security assessments, and investigates and resolves security incidents, working closely with the Information Technology team to ensure security standards and best practices are implemented across the enterprise., * Evaluate risk, assess controls, and identify improvements to mitigate risk; perform application and infrastructure risk assessments and threat modeling.
- Identify, investigate, and resolve security-related incidents and escalations, including root cause analysis and after-action reports.
- Research, identify, and implement security solutions; perform computer and network security vulnerability assessments.
- Implement, administer, and maintain security tools and utilities; configure, deploy, and integrate tools to protect information assets and infrastructure.
- Help design, maintain, and improve the enterprise security architecture, and continuously monitor systems and networks for security issues.
- Maintain detailed awareness of new vulnerabilities, threat vectors, and indicators of compromise.
- Interface with IT to remediate vulnerability findings and reduce risk to the business.
- Develop security procedures and standards supporting full life-cycle protection of information systems and confidential information.
- Perform periodic testing for compliance with documented security policies, procedures, and standards.
- Initiate, facilitate, and promote activities that foster information security awareness across the enterprise., Job Description: ABM is seeking an experienced Construction Engineer to support the planning, design, construction, and commissioning of facilities within the Waymo expansion por…
- 2 days ago
Requirements
- 10+ years of hands-on Information Technology experience, including 5+ years in IT Security.
- Advanced technical background with the ability to understand network, operating system, database, and application design and support.
- Advanced knowledge of security technologies such as vulnerability management, intrusion detection/prevention, endpoint protection, email security, remote access solutions, and privileged access management.
- Hands-on experience with these or similar products: Cortex XDR, BeyondTrust, Proofpoint, Tenable, and Nozomi.
- Knowledge of LAN, WAN, SAN, Microsoft Entra, Microsoft Purview, Active Directory, Windows server and desktop operating systems, Linux, Microsoft IIS, Microsoft SQL, and firewall management.
- Strong working knowledge of security standards, regulations, and control frameworks such as NIST, SOX, ISO 27001, IEC 62443, PCI DSS, and CIS Controls.
- Experience producing technical documentation, spreadsheet reports, and visual presentations.
- Ability to effectively communicate security exposures, misuse, and noncompliance to both technical and non-technical audiences.
- Advanced communication, documentation, prioritization, and investigation skills; excellent problem-solving and analytical ability.
- Bachelor's degree in Computer Science, Information Technology, or a related technical discipline - or equivalent applicable work experience with at least one technical certification.
Preferred / Nice-to-Have
- Security certifications such as CISSP, GICSP, or comparable.
- Scripting or general-purpose programming languages (JavaScript, PowerShell, Python, etc