IT Security Engineer

About The Position

Requirements

• Bachelors degree in Computer Science, Information Security, or related technical field, or equivalent practical experience.
• 47 years of hands-on experience in security engineering, security operations, or incident response roles.
• Demonstrated experience designing, implementing, and operating security controls across endpoint, identity, cloud, and email environments.
• Strong experience with incident response, including investigation, containment, remediation, and post-incident analysis.
• Experience with SIEM platforms, including log ingestion, correlation, alert tuning, and investigation workflows.
• Hands-on experience with EDR/XDR technologies (e.g., CrowdStrike, Carbon Black, Defender for Endpoint, or equivalent).
• Experience improving detection quality, including reducing false positives and increasing signal fidelity through tuning and correlation.
• Ability to validate control effectiveness through testing, simulation, and real-world incident analysis.
• Working knowledge of modern attack techniques, adversary tradecraft, and defensive detection strategies.
• Experience with cloud-native security architectures in AWS, Azure, and/or GCP environments.
• Experience integrating security tools with identity providers, SaaS platforms, and cloud logging pipelines.
• Proficiency in scripting or automation (PowerShell, Python, Bash) to support detection, response, or control validation.
• Experience building or improving incident response playbooks and operational processes.
• Exposure to detection engineering frameworks (e.g., MITRE ATT&CK mapping, threat-informed defense).

Responsibilities

• Design, implement, and tune technical security controls across cloud, endpoint, identity, and email environments.
• Validate the effectiveness of existing security controls.
• Partner with IT and engineering teams to deploy security tooling, integrate log sources, and improve visibility and telemetry.
• Own continuous improvement of security controls aligned to industry frameworks.
• Evaluate new security technologies and configurations.
• Improve alert quality by reducing false positives through rule tuning and correlation.
• Assist in building and maintaining dashboards and metrics that measure control effectiveness, detection coverage, and response performance.
• Identify gaps in monitoring or logging and remediate them.
• Monitor, triage, and investigate alerts across security tooling including SIEM, EDR, and email security platforms.
• Lead and participate in security incident response activities, including containment, eradication, recovery, and post-incident analysis.
• Perform root cause analysis for security incidents findings and drive corrective actions.
• Develop, refine, and maintain incident response processes to improve response effectiveness.
• Track and analyze security events and trends to identify gaps in detection, coverage, or response capabilities.
• Handle daily tasks, ad-hoc assignments, and lead projects as needed or directed by IT Security management.
• Participate in on-call rotation.

Benefits

• Access to experts and resources for your Learning & Development journey
• Opportunity for internal mobility
• Employee referral bonus program
• Employee Resource Groups (ERGs)
• Annual fundraising and volunteer events to give back to communities
• Paid time off, floating holidays, time off to volunteer and rollover
• Paid parental leave
• Medical, dental, vision and 401k plans (with match)
• Flexible spending account, mass transit and dependent care plans available
• Health savings account, with a annual company contribution for plan participants
• Short-term and long-term disability; life insurance policies subsidized by company
• Additional benefits including pet insurance, accident care, access to legal advice and more