Senior Cyber Security Engineer

Position Summary

This technical leader position is responsible for implementing, maintaining, monitoring and managing secure solutions across Information Technology and Operational Technology environments. Position is accountable for delivering these solutions in accordance with the organization’s architectural designs, best practices, and regulatory or compliance requirements. As risks change, the security engineer is responsible for recommending modifications and enhancements to ensure the organization is evolving with the threat landscape.

- Work cross-functionally to translate business requirements into technical security controls while maintaining alignment with enterprise architecture standards and security frameworks.

- Serve as an escalation point for complex technical challenges and provide guidance as a technical leader.

- Handle day-to-day implementation, monitoring and operational support of hardware, software, customer applications, managed solutions and service provider relationships.

- Document, formulate and enforce areas of security improvement that balance risk with business operations and do not diminish efficiencies or innovation.

- Serve as lead engineer for SIEM design, related components, and the confidentiality, integrity, and availability (CIA) of logs.

- Be ready for incident response, forensic, troubleshooting and security issues requiring event details.

- Implement, manage, and maintain event and log collection, reporting and compliance requirements.

- Connect events to contextual security reports that security management and technical teams can easily comprehend.

- Actively participate and lead security team meetings that facilitate secure design.

- Engage in information security projects that evaluate existing security infrastructure and propose changes as defined by security leadership and architects.

- Deliver projects on time, within budget and in accordance with service level agreements (SLAs).

- Maintain a consistent, secure environment using configuration management solutions (e.g., Azure Bicep, Azure ARM templates, etc.).

- Conduct rigorous oversight of security systems and security configuration administration to reduce risk to enterprise systems and accounts.

- Assist with incident response and system stability issues as they occur. This may include involvement outside of regular work hours, and responsiveness is expected.

- Work in tandem with architects, the security operations center (SOC), incident responders (in cases of anomalous activity and host compromise), and technology infrastructure and development team members.

- Respond to and handle service and escalation tickets within SLA expectations.

- Develop security test plans from architectural design. Identify deficiencies and make enhancements to ensure production is not impacted.

- Participate regularly in change project and change management meetings.

- Follow security engineering fundamentals and processes as outlined in NIST 800-160.

- Focus on driving security efficiencies, enabling security team members to work on more advanced tasks.

- Conduct performance testing to stress the limitations of security solutions while at the same time ensuring business innovation and day-to-day processes are not negatively impacted.

- Perform other duties as assigned.