IT Security Engineer I

Job Summary

The IT Security Engineer is responsible for maintaining security operations and assisting ITSS with security-related projects, designed to protect the company's sensitive data and assets. Responsibilities include protecting and monitoring system boundaries, hardening cloud and on-premise systems, network security devices and security tools. The IT Security Engineer I will assist in the design and implementation of new security solutions and monitor existing solutions. The role is a member of the IT shared services team that supports a portfolio of privately held companies.

**This position can be hybrid or remote; Candidates located within 100 miles of Indianapolis, IN area are preferred**

Essential Job Functions:

• Design, execute, and oversee security measures to safeguard computer systems, networks, and data.`
• Identify security vulnerabilities, promote system security best practices, and collaborate with teams for mitigation implementation.
• Contribute to the design of the system security architecture.
• Assist with preparing and documenting standard operating procedures and protocols.
• Audit compliance with company security standards and work with team(s) to remedy noncompliance
• Configure, optimize, and troubleshoot security infrastructure devices.
• Utilize current system security tools to provide security remediation recommendation and guidance to business units and ITSS teams.
• Research and review new technical solutions and security tools to help mitigate security vulnerabilities and automate repeatable tasks.
• Ensure that the company knows as much as possible, as quickly as possible about security incidents.
• Write comprehensive reports including assessment-based findings, outcomes and propositions for further system security enhancement.
• Assist with development and management of the IT security awareness program.
• Be an essential part of executing all tasks or projects as put forth in the IT security strategic plan.
• Conduct vulnerability assessments and security testing on systems, networks, and applications to identify weaknesses.
• Effectively communicate security risks to both technical and non-technical colleagues, highlighting potential impacts and required actions.
• Stay updated with the latest trends in cybersecurity threats, and mitigation techniques.

Relevant Skills:

• Very high-level of self-awareness and desire to develop leadership capabilities.
• Ability to hold themselves and others accountable to high standards.
• Experience identifying and resolving issues independently. Demonstrates a solid sense of accountability and sound personal judgement.
• Proven analytical skills with information systems and security systems.
• Courage to take initiative in unfamiliar or ambiguous circumstances.
• Ability to gain alignment with different clients and represent a common point of view across multiple stakeholders. Must be confident building business partnerships with various business stakeholders.
• Excellent verbal and written communication
• Maintains a high level of confidentiality.

Requirements:

• BS degree in Computer Science or related field or equivalent work experience
• Microsoft Azure certifications required, CISSP, CISM, CEH or equivalent certifications highly preferred.
• At least 2 years of proven work experience as an IT Security Engineer or similar role
• Experience in building and maintaining security systems. Experience with Microsoft security solutions including Sentinel, Azure Information Protection, Defender for Cloud Apps, etc. is highly preferred.
• Detailed technical knowledge of database and operating system security
• Hands on experience in security systems, including firewalls, intrusion detection and prevention systems, anti-virus software, authentication systems, log management, content filtering, etc. (Checkpoint and Palo Alto preferred)
• Experience with network technologies and with system, security, and network monitoring tools
• Thorough understanding of the latest security principles, techniques, and protocols
• Familiarity with web related technologies (Web applications, Web Services, Service Oriented Architectures) and of network/web related protocols
• Problem solving skills and ability to work under pressure.
• Ability to travel as needed.
• Exceptional customer service orientation.
• Experience in executing red team and purple team assessments is preferred.
• Understanding of both internal and external penetration testing methodologies and frameworks.
• Experience in blue team engagements, focusing on defensive security strategies and incident response.
• Hands-on experience with a variety of ethical hacking tools and techniques.
• Knowledge of threat modeling, attack vector identification, and vulnerability analysis.
• Continuous learner, keeping up-to-date with the latest in security vulnerabilities, exploits, and industry trends.

About The Heritage Group

Founded in 1930, The Heritage Group (THG) is a fourth-generation family-owned business managing a diverse portfolio of companies specializing in heavy construction and materials, environmental services, and specialty chemicals. Companies within the THG portfolio include Heritage Environmental Services, Heritage Construction + Materials, and Monument Chemical. With more than 5,000 employees and 30 operating companies worldwide, THG aims to build a safer, more enriching, and sustainable world by harnessing the power of family.

The Heritage Group welcomes the diverse backgrounds, experiences, and perspectives of all to work together to accomplish our goals

EOE/Veteran/Disability

Current Openings for IT Security Engineer I Jobs at The Heritage Group