Sr Security Engineer

Location: Hershey, PA

Summary: 

As a Security Engineer for The Hershey Company, you will design and build a defensible network to minimize cyber risk to the company’s vision to become a leading snacking powerhouse. The team has three major service categories. The first is infrastructure protection, which designs and builds solutions and standards that protect enterprise systems from cyber threats. The second is analytic engineering, which designs and builds solutions that support threat intelligence, detection, investigation, and response to cyber threats. The third is data protection, which designs and builds solutions that classify, detect, and prevent sensitive data disclosure

Responsibilities:

• 30% - Research, assess, and continuously improve security solutions.​

• 30% - Consult with customers and partners to understand requirements and enable them to design, build, and secure technical solutions securely.​

• 30% - Develop requirements, design, and build security solutions.​

• 5% - Write standards, guidelines, processes, and procedures.​

• 5% - Collaborate with security administrators to ensure sustained service delivery.​

• Work with leadership, customers, and stakeholders in both IT and Information Security to develop requirements based on a changing threat landscape and new digital capabilities.​

• Design security solutions that mitigate or reduce cyber risk that is identified via assessments, consultations, and incident response.​

• Ideate, initiate, plan, execute, and close security projects in coordination with project management and project resources.​

• Implement new security solutions that are prioritized for their effectiveness at reducing cyber risk.​

• Implement continuous control monitoring to automate detection and remediation of control deficiencies​

• Transition solutions to operational teams for sustained service delivery.​

• Research, assess, and continuously improve security solutions to ensure they are maturing and adapting according to the evolving threat landscape and evolving business requirements.

Qualifications: 

• The ideal candidate will maintain one or more of the following certifications, though they are not required: GSE, GDSA, GCIA, GCIH, GSEC, GCDA, CISSP​

• Technical expertise in 2+ security domains between endpoint security, network security, email and web security, data security, identity security, cloud, containers, Operational Technology (OT), vulnerability and configuration management, threat intelligence management, security automation, and security incident and event management (SIEM).​

• Full-stack knowledge of IT infrastructure including applications, databases, operating systems, hypervisors, IP networks, storage networks, and backup media.​

• Experience with enterprise technology platform implementations.​

• Strong working knowledge of IT service management, including change management, configuration management, asset management, incident management, and problem management.​

• Proficiency with at least one scripting language (e.g., Python, PowerShell)

Education:

• Bachelor’s degree in computer science, cybersecurity or a related field OR equivalent work experience​

• 3+ years of experience in cybersecurity, especially in a security engineering role