Security Engineer

Company Description

Spring Venture Group is a leading digital direct-to-consumer sales and marketing company with product offerings focused on the senior market. We specialize in distributing Medicare Supplement, Medicare Advantage, and related products via our family of brands and dedicated team of licensed insurance agents. Powered by our unique technologies that combine sophisticated marketing, comparison shopping, sales execution, and customer engagement – we help thousands of seniors across the country navigate the complex world of Medicare every day.

Job Description

Are you a cybersecurity engineer who thrives on the challenge of safeguarding digital assets? Do you possess a deep passion for engineering, configuring, and masterfully managing cutting-edge SIEM and EDR tools? Spring Venture Group is searching for a proactive and highly collaborative Security Engineer to join our elite team in Kansas City. This isn't just about monitoring; it's about building, optimizing, and automating our defenses to stay ahead of sophisticated threats.

We're looking for a hands-on engineer with 3+ years of experience who understands that true security comes from meticulous configuration, intelligent rule development, and seamless integration. If you're a problem-solver who enjoys diving deep into logs, crafting custom alerts, and orchestrating automated responses, this is the role for you. You'll be a vital part of protecting our information assets, ensuring the integrity of our systems, and championing a robust security posture across the organization.

You'll need strong scripting skills, particularly in Python and/or PowerShell, to excel in this role.

Please note: You must currently reside in the Kansas City area. We are unable to provide sponsorship for this role now or in the future.

What You'll Engineer and Manage

SIEM Mastery: The Brains of Our Defense

You won't just use our SIEM; you'll be its architect and custodian. You'll be instrumental in:

• Engineering and optimizing our SIEM solution to ingest, normalize, and analyze security events from diverse sources, transforming raw data into actionable intelligence.
• Designing, developing, and continually refining SIEM rules, alerts, and dynamic dashboards that provide immediate visibility into emerging threats.
• Spearheading investigations into security incidents identified by the SIEM, rapidly dissecting alerts to uncover their root cause and impact.

EDR Domination: Fortifying Our Endpoints

Take ownership of our EDR capabilities, ensuring our endpoints are resilient and responsive. Your responsibilities will include:

• Deploying, meticulously configuring, and actively managing our Endpoint Detection and Response (EDR) solution across the enterprise.
• Proactively analyzing EDR alerts, transforming them into actionable insights and leading thorough investigations into potential endpoint security incidents.
• Developing, implementing, and enforcing robust EDR rules and policies that automatically detect, prevent, and respond to threats at the endpoint level.
• Orchestrating rapid responses to contain and eradicate endpoint-specific threats, minimizing their impact.

Cloud Security Platform Administration: Securing Our Digital Frontier

• Configure and maintain our cloud security platforms, ensuring a secure and compliant cloud environment.
• Monitor and analyze cloud application usage and security events, identifying and mitigating risks.
• Implement and enforce stringent cloud security policies.

Incident Response: On the Front Lines

• Lead and participate in critical incident response activities, from initial investigation to containment and full remediation.
• Meticulously document incident response procedures and findings to foster continuous improvement.
• Actively contribute to the ongoing development and enhancement of our incident response plans.

Orchestration and Automation: Building Smart Defenses

• Develop and implement ingenious security automation scripts and workflows, leveraging your Python and/or PowerShell expertise, streamlining our operations.
• Integrate diverse security tools and systems to create a cohesive and highly efficient security ecosystem.
• Utilize orchestration tools to automate incident response and routine security tasks, freeing up valuable time for advanced threat hunting.

Vulnerability Management: Proactive Defense

• Conduct thorough vulnerability scans and assessments, identifying potential weaknesses before they can be exploited.
• Analyze complex vulnerability reports, expertly prioritizing remediation efforts based on risk and impact.
• Collaborate seamlessly with IT teams to ensure timely patching and remediation of identified vulnerabilities.
• Continuously maintain and enhance our comprehensive vulnerability management program.

Who You Are:

You're more than just a security professional; you're a team player who thrives on collaboration, capable of working seamlessly across various IT teams. Your strong written and verbal communication skills allow you to articulate complex security concepts to both technical and non-technical audiences. You're passionate about security engineering and ready to make a significant impact.

If you're eager to take ownership of critical security tools and truly engineer robust defenses, we want to hear from you!

Qualifications

Qualifications:

• 3-5 years of experience in IT or security.
• Must have 2-3 years work experience coding scripting languages (Python, PowerShell, etc.)
• Must have 2-3 years of work experience with automation tools and tool configuration.  
• Experience with SOAR.
• Proven experience with SIEM tools (e.g., Splunk, Sentinel).
• Experience managing an EDR solution.
• Experience with cloud security platforms (e.g. Netskope).
• Strong understanding of incident response principles and methodologies.
• Knowledge of vulnerability management processes and tools.
• Strong understanding of networking and security protocols.
• Excellent problem-solving and analytical skills.
• Ability to work independently and as part of a team.
• Strong written and verbal communication skills.   
• Relevant security certifications (e.g., Security+, CEH, CISSP) are a plus.

Desired Skills:

• Experience with cloud security (AWS, Azure, GCP).
• Knowledge of compliance frameworks (e.g., NIST, ISO 27001).
• Experience conducting threat hunting, penetration testing, or purple team exercises.
• Experience in a regulated industry.

Additional Information

Benefits:

The Company offers the following benefits for this position, subject to applicable eligibility requirements:

• Competitive Compensation
• Medical, Dental and vision benefits after a short waiting period
• 401(k) matching program
• Life Insurance, and Short-term and Long-term Disability Insurance
• Optional enrollment includes HSA/FSA, AD&D, Spousal/Dependent Life Insurance, Travel Assist and Legal Plan
• Generous paid time off (PTO) program starting off at 15 days your first year
• 15 paid Holidays (includes holiday break between Christmas and New Years)
• 10 days of Paid Parental Leave and 5 days of Paid Birth Recovery Leave
• Annual Volunteer Time Off (VTO) and a donation matching program
• Employee Assistance Program (EAP) - health and well-being on and off the job
• Rewards and Recognition
• Diverse, inclusive and welcoming culture
• Training program and ongoing support throughout your Venture Spring Venture Group career  

Spring Venture Group is an Equal Opportunity Employer