Senior IT Security Engineer

Sr IT Security EngineerJob Description

Position Overview:
As a Senior Security Engineer, you will play a critical role in designing, implementing, and managing advanced security solutions for our global distribution and manufacturing environments. You will work closely with IT, operations, and engineering teams to mitigate risks, respond to threats, and maintain compliance with industry standards and regulations.

Key Responsibilities:

• Security Architecture & Design: Develop and implement security policies, architecture, and protocols to protect manufacturing systems, including IoT devices, OT environments, and IT infrastructure.
• Threat Management: Monitor, detect, and respond to security threats and vulnerabilities across all company systems and networks.
• Compliance & Standards: Ensure compliance with industry standards such as ISO 27001, NIST, and CMMC, and maintain knowledge of regulatory requirements.
• Incident Response: Lead incident response efforts, including forensic investigations and mitigation strategies, to resolve security breaches efficiently.
• Collaboration: Partner with cross-functional teams to integrate security into the design and operation of manufacturing systems and processes.
• Technology Management: Manage and maintain security tools, including firewalls, intrusion detection systems, endpoint protection, and SIEM solutions.
• Risk Assessments: Conduct regular security risk assessments and audits to identify potential weaknesses and recommend improvements.
• Training & Awareness: Develop and deliver security awareness training to employees to promote a culture of security.

Qualifications:

• Bachelor’s degree in Computer Science, Cybersecurity, or related field (Master’s preferred).
• 7+ years of experience in cybersecurity, with a focus on manufacturing or industrial environments.
• Strong understanding of OT security, industrial control systems (ICS), and SCADA systems.
• Proficiency with security tools and platforms (e.g., SIEMs, firewalls, endpoint protection).
• Certifications such as CISSP, CISM, CEH, or equivalent are highly desirable.
• Knowledge of cybersecurity frameworks (e.g., NIST CSF, MITRE ATT&CK).
• Strong problem-solving skills and ability to work in a fast-paced, high-stakes environment.
• Excellent communication skills and the ability to convey complex security concepts to non-technical stakeholders.