Information Security Engineer

Overview We are seeking an Information Security Engineer to support security operations, engineering, and architecture functions. This role plays a critical part in ensuring the confidentiality, integrity, and availability of IT systems, applications, and data, aligning with enterprise objectives and client service delivery. Reporting to the Manager of Information Security, the Information Security Engineer will engage in day-to-day security operations, incident response, and the ongoing development of security controls and best practices. ResponsibilitiesSecurity Operations Perform security log and event analysis; take appropriate action to address risks or incidents using EDR, SIEM, and log aggregation systems. Monitor and execute the vulnerability management program to reduce IT hygiene risks. Maintain and manage assigned security tools (e.g., EDR/AV, email security platforms, application control systems, attack simulation, threat intelligence, AI-based security tools). Support incident response and investigation efforts. Validate and track IT operational activities for compliance with policies and standards. Research and monitor industry trends and emerging vulnerabilities. Report and track IT security events, metrics, and remediation activities. Assist with third-party risk management, security awareness training, and IT compliance initiatives. Participate in IT security on-call rotation. Security Engineering & Architecture Advise on security systems, standards, and requirements for enterprise infrastructure. Review new applications, SaaS solutions, and application changes for security impacts. Actively participate in the enterprise Change Advisory Board (CAB). Research and recommend methods, technologies, and software to mitigate risk. Contribute to the development of security policies, standards, and procedures. Qualifications Bachelor's degree preferred; equivalent experience considered. Minimum of 3 years of experience in Information Security or IT with security responsibilities. Knowledge of Windows, Unix/Linux, Active Directory, and networking protocols (TCP/IP, UDP, DNS, DHCP, HTTP/HTTPS, routing). Technical expertise in system/network security, authentication, cryptography, application security, and cloud security. Proficiency with Microsoft Office Suite and related software. Strong ability to use AI tools in daily work. Excellent oral and written communication skills, with the ability to explain complex concepts to non-technical audiences. Strong problem-solving skills, strategic thinking, and ability to prioritize and execute tasks. Detail-oriented, with excellent organizational and time management skills. Professionalism, confidentiality, and exceptional client service focus. Flexibility to work additional hours and travel (1-4 weeks annually, or as required). The anticipated base salary range for this position is $122,000 - $160,000, depending on qualifications, experience, education, certifications, and work location.

Created: 2026-03-10