IT Security Engineer
Role details
Job location
Tech stack
Job description
Kforce has a client that is seeking an IT Security Engineer in Draper, UT., Our client is seeking an experienced IT Security Engineer to play a critical role in protecting enterprise systems, data, and infrastructure. This individual will serve as a key member of the security operations function, partnering closely with internal technology teams and an external Security Operations Center (SOC) to identify threats, investigate incidents, and drive remediation efforts. This role offers a balanced mix of hands-on security operations, vulnerability management, incident response, security tooling administration, and continuous improvement initiatives., * Investigate and respond to security alerts and incidents escalated by a 24/7 Security Operations Center (SOC)
- Perform alert validation, threat analysis, evidence collection, root cause investigation, and containment activities
- Lead or support incident response efforts, including documentation, remediation coordination, and post-incident reviews
- Maintain accurate records of investigations, findings, response actions, and security recommendations
- Manage day-to-day vulnerability management activities, including vulnerability identification, prioritization, tracking, and remediation support
- Partner with infrastructure, cloud, networking, and application teams to drive timely risk reduction efforts
- Administer and support enterprise security technologies, including endpoint protection, detection, and response platforms
- Assist with the optimization and maintenance of security services, policies, and operational controls
- Tune and improve security monitoring rules, detections, and alerting mechanisms to reduce false positives and improve visibility
- Develop and enhance security playbooks, response procedures, and operational runbooks
Requirements
- Bachelor's degree in Cybersecurity, Computer Science, Information Technology, Engineering, or a related discipline preferred
- Security certification such as CompTIA Security+, CySA+, SecurityX, or equivalent
- 3+ years of cybersecurity, security operations, incident response, or related IT security experience
- Strong hands-on experience investigating security incidents and responding to security alerts
- Experience managing and supporting enterprise vulnerability management programs
- Experience working with endpoint security technologies, including Antivirus (AV), Endpoint Detection and Response (EDR), and Extended Detection and Response (XDR) solutions
- Experience collaborating with infrastructure, application, and cloud teams to remediate security findings
- Experience documenting investigations, response actions, and technical findings
- Understanding of cyber threat actors, attack methodologies, threat detection, and incident response frameworks
- Strong analytical, troubleshooting, and problem-solving skills
- Familiarity with ticketing systems, ITSM processes, and operational workflows, * GIAC certifications such as GCIH, GCIA, GCED, or similar advanced cybersecurity certifications
- Experience working within or in partnership with a 24/7 SOC environment
- Experience with SIEM platforms and security monitoring technologies
- Familiarity with enterprise cloud environments such as Azure or AWS
- Experience supporting compliance frameworks and audit requirements
- Knowledge of threat hunting, security automation, and detection engineering concepts
Benefits & conditions
The pay range is the lowest to highest compensation we reasonably in good faith believe we would pay at posting for this role. We may ultimately pay more or less than this range. Employee pay is based on factors like relevant education, qualifications, certifications, experience, skills, seniority, location, performance, union contract and business needs. This range may be modified in the future.
We offer comprehensive benefits including medical/dental/vision insurance, HSA, FSA, 401(k), and life, disability & ADD insurance to eligible employees. Salaried personnel receive paid time off. Hourly employees are not eligible for paid time off unless required by law. Hourly employees on a Service Contract Act project are eligible for paid sick leave.
Note: Pay is not considered compensation until it is earned, vested and determinable. The amount and availability of any compensation remains in Kforce's sole discretion unless and until paid and may be modified in its discretion consistent with the law.