IT Security Engineer
Link Snacks · Minneapolis, MN · 6 days ago
HybridInformation Technology$110k–$140k/yrFull-time
Key Responsibilities
- Lead and execute advanced alert triage, investigation, and incident response activities across global cloud and on-premises environments, including root cause analysis and post-incident improvement initiatives.
- Design, implement, and maintain identity and access management (IAM) controls, including user lifecycle management, role-based access, privileged access management, and secure authentication mechanisms across enterprise systems.
- Perform in-depth vulnerability assessments and risk analysis, prioritize remediation efforts, and partner with IT and business stakeholders to design and implement effective mitigation strategies.
- Serve as a technical expert for MDR, SIEM, and security service providers; driving effective detection, response, and tuning of security monitoring capabilities.
- Automate and standardize security processes to ensure consistency and compliance.
- Implement and align security controls with regulatory frameworks (e.g., NIS2, ISO 27001, GDPR).
- Identify technical security risks and communicate risks to the appropriate enterprise stakeholders.
- Support and integrate physical security technologies, including badge access systems and CCTV, ensuring alignment with cybersecurity and identity controls.
- Develop and maintain security documentation, policies, and procedures.
- Design and implement actionable security metrics to evaluate and optimize the effectiveness and efficiency of deployed security controls.
- Lead security-focused initiatives, including the hardening and ongoing management of the organization’s Endpoint Detection and Response (EDR) solution and enforcement of robust device security policies.
- Design and enforce secure remote access and vendor access controls, ensuring least-privilege access and secure connectivity across global infrastructure.
- Conduct regular security testing of applications, networks, and systems.
- Partner in the design and evaluation of Business Continuity and Disaster Recovery (BC/DR) strategies, ensuring security considerations are integrated into resilience planning.
- Stay current with emerging security trends, tools, and best practices through continuous learning.
Qualifications
- Proven ability to secure both IT and OT networks, including experience with incident response, alert triaging, and vulnerability management.
- Proficient in managing identity and access controls, including Active Directory administration and privileged access management.
- Skilled in executing cybersecurity strategies and enforcing technical policies across enterprise environments.
- Experienced in working with security frameworks and standards such as ISO 27001, NIST, and SOC2.
- Capable of managing vendor relationships and coordinating with internal/external stakeholders on security incidents and compliance matters.
- Strong understanding of cybersecurity principles, risk management, encryption, authentication, and access control.
- In-depth knowledge of network and infrastructure security, including virtualization, wireless technologies, and email systems.
- Familiarity with security technologies and tools, including SIEM platforms, automated penetration testing tools, and cloud risk assessment methodologies.
- Knowledgeable in security design, technical governance, and third-party auditing practices.
- Ability to communicate complex technical issues clearly and effectively to both technical and non-technical audiences.
- Demonstrated discretion in handling sensitive and confidential information.
- Strong adaptability, time management, and independent problem-solving skills.
- Ability to remain composed under pressure and provide after-hours support when necessary.
- Willingness to travel (5–10%) for training and business-related activities.
- Bachelor’s degree in Cybersecurity, Information Technology, or a related field, or equivalent professional experience.
- 4+ years of hands-on experience across key security domains including infrastructure security, network security, identity and access management, and security operations.
- Strong foundation in cybersecurity, including IAM, data protection, and incident response.
- Proficient in Windows, Linux, PowerShell, Python, and Microsoft security tools.
- Strong experience with Microsoft Defender, MS365 Intune MDM, Active Directory, and Microsoft Sentinel.
- Skilled in SIEM platforms, logging, alerting, and dashboard creation.
- Lead engineering for platforms such as Azure Sentinel, Tenable Nessus, BeyondTrust (Bomgar), Pentera, Palo Alto Firewalls, and Cisco networking.
- Experience leading cybersecurity teams in security incident identification, response, and eradication.
- Cybersecurity certifications such as CISSP, CISM, Security+, CEH, Cybersecurity Analyst+, GIAC, or Microsoft Security.
- Experience securing OT/industrial networks in manufacturing or consumer packaged goods environments.
- Familiarity with Power BI, Fabric, or similar tools for security data analysis and reporting.