Security Engineer

As an employee-owned company, DMA prioritizes employees. Low turnover rates and tenured teams are living proof: 

• 2024 Great Places to Work Certified
• Employee stock ownership program eligibility begins day one of employment. ESOP contribution is targeted at 6% of your annual compensation.
• Company paid parental leave
• Generous time off plans
• Multiple benefit plans, eligible day one of employment.
• Culturally focused on work/life balance, mental health, and the overall wellness of our employees

*This position is hybrid. The requirement is to be in office at least three days per week.*

Position Summary

The Security Engineer will bring their experiences, best practices, and a collaborative attitude to help drive security initiatives. To be successful, one must effectively communicate with our Development and Systems/Infrastructure team to consult upon, design, test, and implement IT and cybersecurity solutions that are both resilient and adaptive to an evolving cyber threat landscape.

Essential Duties and Responsibilities

• Define, plan, implement, maintain, and upgrade security measures, policies, and controls
• Manage vulnerability management processes to ensure timely remediation of identified risks
• Analyze security incidents to identify the root cause
• Select, develop, and manage the implementation of systems, tools, and processes that will keep the organization at the leading edge of security while proactively mitigating risks to the organization
• Analyze our security posture, identify gaps/potential vulnerabilities, and work closely with other teams to ensure strong operational security
• Manage and support network security controls including WAF, firewalls, and IDS/IPS
• Manage and support EDR and/or XDR, host-based firewalls
• Lead efforts to counter security breaches and anticipate and reduce the likelihood of future security alerts, incidents, and disasters
• Manage public key infrastructure (PKI) systems
• Oversee password rotation policies and processes for local and service accounts to maintain compliance and reduce risk.
• Administer and monitor service accounts, ensuring proper usage, access controls, and lifecycle management
• Manage and support corporate identity solutions, including Microsoft Active Directory and Microsoft Entra ID (formerly Azure AD)
• Implement and maintain identity protection tools to detect and respond to identity-based threats and anomalies
• Manage and continuously improve the Security Awareness Training program to ensure employees are informed and vigilant about cybersecurity threats
• Assist with management of SIEM systems and configurations
• Assist in information security related audits and security questionnaires
• Write reports and provide insights on the efficacy of the current security policies, incident responses, and other security-related information
• Perform analysis of security events and logs
• Assist with other security initiatives and procedures
• Perform other duties as required

Education And Qualifications

• Bachelor’s degree in Computer Science, Information Security, or related field
• 3-5 years of experience in the field, such as security administration or IAM-focused role
• Hands-on experience with Microsoft Active Directory and Entra ID
• Familiarity with identity protections tools and best practices
• Strong understanding of account management, password policies, and access control principles
• Knowledge of Zero Trust architecture and modern authentication protocols (e.g., SAML, OAuth, OpenID Connect)
• Excellent verbal and written communication and interpersonal skills
• Ability to work independently as well as in a team environment
• Ability to work in a high-stress environment
• Ability to prioritize, meet deadlines, and provide excellent customer service
• Ability to maintain confidentiality
• Good anticipation, analytical, and problem-solving skills
• Ability to remain current on the latest technology and best practices in information security
• Must be authorized to work in the U.S. without the need for employment-based visa sponsorship now or in the future. This position does not qualify for employment-based sponsorship. 

Preferred Certifications

• Security +
• Certified Information Systems Security Professional (CISSP)

#LI-HYBRID

#LI-JS1