Sr. Security Engineer (Hybrid)

We are seeking a Senior Security Engineer to join our cybersecurity team and play a critical role in protecting our enterprise from evolving cyber threats. The ideal candidate is a hands-on technical expert with strong experience across multiple areas of security—including endpoint protection, IT networking, cloud security, data protection, and incident response. This person should be passionate about security, proactive in identifying risk, and constantly driven to improve the security posture of a fast-paced retail environment.

Key Responsibilities:

• Collaborate with IT and development teams to integrate security best practices into all projects.
• Oversee Endpoint Detection and Response (EDR) technologies to detect and contain threats on user and server endpoints.
• Support incident response efforts by triaging security alerts, investigating threats, performing root cause analysis, and coordinating response actions.
• Collaborate with IT and networking teams to implement network segmentation, secure configurations, and threat detection capabilities.
• Assess and implement security controls across cloud platforms ensuring compliance with best practices and regulatory requirements.
• Monitor and enhance SIEM/log management capabilities to improve threat visibility and detection.
• Evaluate, deploy, and tune security tools such as firewalls, intrusion prevention systems (IPS), and data loss prevention (DLP) platforms.
• Document security architecture, runbooks, and response procedures; assist with internal/external audits.
• Mentor junior engineers and contribute to a culture of learning, security awareness, and continuous improvement.
• Manage cybersecurity vendors and third-party service providers, including tool selection, performance evaluation, and ongoing relationship management.
• Adhere to processes and procedures for change management and trouble ticket resolution; and maintain documentation as changes are made.
• Administer and maintain Privileged Access Management (PAM) solutions and processes to safeguard access to critical systems and sensitive data.

Required Qualifications:

• 5+ years of hands-on experience in cybersecurity roles, including experience as a security engineer or analyst.
• Deep understanding of vulnerability management tools and processes (e.g., Qualys, Tenable, Rapid7).
• Proficiency with EDR platforms (e.g., CrowdStrike, SentinelOne, Microsoft Defender for Endpoint).
• Solid knowledge of IT networking fundamentals, protocols, firewalls, and segmentation strategies.
• Experience securing cloud environments (IaaS/PaaS), including identity and access management, encryption, and logging.
• Proven experience in incident detection, analysis, and response, including familiarity with MITRE ATT&CK and threat hunting methodologies.
• Familiarity with SIEM tools (e.g., Gurucul, Microsoft Sentinel, Google SecOps) and log analysis.
• Working knowledge of compliance standards (e.g., PCI DSS, NIST, CIS Controls).

Preferred/Bonus Qualifications:

• Scripting or automation skills (e.g., Python, PowerShell, Bash) to streamline detection, reporting, and remediation tasks.
• Experience with security frameworks and risk management methodologies.
• Exposure to DevSecOps practices and infrastructure-as-code security.
• Certifications such as CISSP, GIAC, GCIH, Security+, or GCP/Azure Security.
• Understanding of standard network protocols, operating systems (Windows, Linux, macOS), and web technologies.
   
• Solid understanding of cybersecurity principles, secure coding practices, cloud infrastructure, and network security controls.
• Knowledge of system administration concepts, including server configuration, user, and patch management.
   
• Willingness to continuously learn new tools, methodologies, and technologies in the rapidly evolving field of cybersecurity.
   
• Ability to work effectively as a team, collaborate with other security professionals, and share knowledge and expertise.
   
• Must be current on modern threats and threat actor groups.

Key Traits We Value:

• Passion for cybersecurity and a strong desire to continuously learn and grow.
• Proactive problem-solving attitude and ownership mindset.
• Clear communication skills and ability to explain technical risks to non-technical stakeholders.
• Team player who thrives in a collaborative and fast-moving environment.

#LI-CM1

#IND3

#LI-HYBRID