Principle Security Engineer

This is a remote position.

looking for a Principal Engineer - Security to join our team! As a Principal Engineer - Security, you’ll lead the effort to design, implement, operate, support, and maintain the security infrastructure and supporting tools that are necessary to protect internal and external assets on networks that support our corporate infrastructure and applications. You’ll be the SME and primary technical resource for projects, and you’ll facilitate outstanding documentation of the architecture, configurations, processes, maintenance procedures, and service desk support functions.  

The well qualified candidate will possess the ability to integrate at a high level the knowledge of several areas including network security, IAM, DevSecOps, continuous monitoring, enterprise desktop security, zero-trust architecture principles, security incident remediation, red/blue team exercises, securing multi-cloud and private cloud environments, and more. As we embrace separation of duties, this role will be a critical check and balance that reviews changes in the environment developed by other cybersecurity teams and thereby ensures changes are appropriate and don’t introduce additional risk/liability.  

This is an extremely unique opportunity and allows an excellent engineer to build the most efficient processes, workflows, and methodologies for implementing, monitoring, managing, and maintaining the most critical components of the entire organization. The engineer chosen for this position should adapt quickly and manage constant change effectively. 

Responsibilities:

• Design, implement, and lead the build-out of security infrastructure and tools 
  
• Function as the SME for security related infrastructure, architecture, and operations 
  
• Take functional ownership of all security related architecture and design following standards set forth by the enterprise cybersecurity teams 
  
• Ensure the quality and accuracy of implementations, upgrades, configuration changes, and break/fix activities 
  
• Assist the Enterprise Cybersecurity teams with hardening initiatives which include monitoring for baseline configuration compliance across all pertinent systems and tools 
  
• Identify and make recommendations citing strong evidence for material changes in policies, standards, established architecture, and best practices where necessary to further enhance security posture 
  
• Work closely with application development teams to ensure a successful implementation of DevSecOps complete with automated testing using tools and processes you will create
  

Requirements:

• Bachelor’s degree in Computer Science, Engineering, Cyber Security, or a directly related field. Education requirements may be replaced with previous related work experience and cyber security certifications (CISSP, CISM, CEH, Azure Security Engineer, etc.)
  
• 8 to 10 years working in the Cyber Security 
  
• At least one professional level technical certification such as CCNP – Security, GIAC certifications, or another industry-recognized security-related certification 
  
• Experience in SOC II, ISO and VAPT required
  
• 3+ years acting as the SME, architect, or principal engineer on large-scale security infrastructure projects 
  
• Design and implementation experience with tools such as BigFix, InTune, Imperva, Snort, Nessus/Nexpose, and others that are similar 
  
• Experience designing and implementing Enterprise wide -authentication and identity solutions 
  
• Experience with Azure AD/Active Directory Single Sign-On (SSO), Multi-Factor Authentication (MFA), Application Registration, Identity Federation, Automation 
  
• Experience with automation using PowerShell, Python, Bash, etc… 
  
• Excellent troubleshooting and root cause diagnosis skills 
  
• Strong writing and communication skills 
  
• Strong leadership experience and team management skills.
  
• Experience creating and maintain accurate and detailed guidelines and procedures 
  
• Experience with Agile Scrum Methodology and Azure DevOps 
  

Requirements

Requirements

• Bachelor’s degree in Computer Science, Engineering, Cyber Security, or a directly related field. Education requirements may be replaced with previous related work experience and cyber security certifications (CISSP, CISM, CEH, Azure Security Engineer, etc.)
  
• 4 to 7 years working in the Cyber Security field 
  
• At least one professional level technical certification such as CCNP – Security, GIAC certifications, or another industry-recognized security-related certification 
  
• Experience in SOC 2, ISO and VAPT required.
  
• Design and implementation experience with tools such as BigFix, InTune, Imperva, Snort, Nessus/Nexpose, and others that are similar 
  
• Experience designing and implementing Enterprise wide -authentication and identity solutions 
  
• Experience with Azure AD/Active Directory Single Sign-On (SSO), Multi-Factor Authentication (MFA), Application Registration, Identity Federation, Automation 
  
• Experience with automation using PowerShell, Python, Bash, etc… 
  
• Excellent troubleshooting and root cause diagnosis skills 
  
• Strong writing and communication skills 
  
• Experience creating and maintain accurate and detailed guidelines and procedures 
  
• Experience with Agile Scrum Methodology and Azure DevOps