Job Description:

Senior Security EngineerThe Senior Security Engineer plays a crucial role in ensuring the security and integrity of our organization's systems, networks, and data; and has primary responsibility for implementing, managing, and enhancing security measures to protect against cyber threats and vulnerabilities either directly or through service providers. This role requires a deep understanding of security principles, technologies, and best practices, as well as the ability to collaborate effectively with cross-functional teams. Our Commitment to Employees:and Career Development Program to give employees a learning path with the necessary tools and resources they need to help build their career.financial opportunities with competitive compensation, immediate 401k match with 100% vesting, profit sharing, and Blue Cross Blue Shield for medical, dental, vision and prescription drug benefits.Awareness that includes activities with local non-profit organizations and a Matching Gift Program.Balance with Flexible Work Arrangements, Flexible Work Hours, and SickVacationHoliday Pay.Activities such as Walking Contests, Nutritional Learning Sessions, On-Site Flu shots and Health Screenings.Responsibilities:Policy and Compliance Implementation:and enforce security policies, standards, and procedures across systems and services to ensure compliance with industry regulations and best practices (e.g., NIST, HIPAA, COBIT).with cross-functional teams to integrate security requirements into all system architectures and designs.security reviews of new technologies, applications, and infrastructure to identify potential security risks and propose solutions.regular technical security audits and assessments to identify gaps and areas for improvement, and drive remediation efforts.provide periodic reports to leadership and respond to ad hoc corporate or audit requests as needed on infrastructure and system security compliance status.Security Infrastructure Configuration & Monitoring:implement, and maintain security infrastructure, including firewalls, intrusion detectionprevention systems, endpoint protection, VPNs, and other security tools.security infrastructure for vulnerabilities, anomalies, and breaches, and take proactive measures to mitigate risks.monitor and manage EDR, SIEM, PAM, IAM Tools, firewalls, etc. as needed.regular vulnerability assessments to identify and address security weaknesses.penetration testing to simulate real-world attacks and proactively address potential cident Response and Forensics:incident response activities in the event of security breaches or incidents, including containment, analysis, and recovery.andor conduct forensic investigations to determine the root cause of security incidents and implement measures to prevent recurrence.Risk Management:security risks and vulnerabilities across the organization's systems, networks, and applications, and develop risk mitigation strategies and controls in a manner that meets the organization's compliance and regulatory requirements.closely with business stakeholders to prioritize security initiatives based on risk exposure and business impact.Security Operations:security events and alerts, investigate suspicious activities, and respond to security incidents in a timely manner.improve security operations processes and procedures to enhance detection and response capabilities while minimizing false positive alerts.Job Requirements:degree in Computer Science, Information Security, or a related field; advanced degree or relevant certifications (e.g., CISSP, CISM, CEH) preferred.experience (5-7 years) in a security engineering role, with a focus on designing, implementing, and managing security solutions.understanding of network security principles, protocols, and technologies (e.g., TCPIP, DNS, VPN, SSLTLS).experience with security tools and technologies, such as SIEM, IDSIPS, DLP, WAF, encryption and endpoint security solutions.knowledge of security frameworks and standards (e.g., NIST, ISO 27001) and experience with security compliance assessments and audits.analytical and problem-solving skills, with the ability to analyze complex security issues and develop practical munication and interpersonal skills, with the ability to effectively communicate security concepts and risks to technical and non-technical stakeholders.Don't meet every single requirement? Studies have shown that women and people of color are less likely to apply to jobs unless they meet every single qualification. At this organization we are dedicated to building a diverse, inclusive and authentic workplace, so if you're excited about this role but your past experience doesn't align perfectly with every qualification in the job description, we encourage you to apply anyways. You may be just the right candidate for this or other roles. This company is an Equal Opportunity Employer. We provide equal employment opportunities (EEO) to all employees and applicants for employment without regard to race, color, religion, sex, national origin, age, disability or genetics. In addition to federal law requirements, we comply with applicable state and local laws governing nondiscrimination in employment in every location in which the company has facilities. This policy applies to all terms and conditions of employment, including recruiting, hiring, placement, promotion, termination, layoff, recall, transfer, leaves of absence, compensation and training.