IT Security Engineer
Responsibilities
- Design, implement, and maintain enterprise network security architecture, including firewalls, intrusion detection systems, VPNs, and DMZs.
- Develop and enforce security policies, standards and procedures across the organization.
- Conduct security assessments, vulnerability scans and penetration testing to identify and remediate security gaps.
- Maintain 24/7 monitoring of systems and networks using security information and event management (SIEM) tools; investigate and respond to security incidents.
- Manage access controls, identity and access management (IAM), and multi-factor authentication (MFA) solutions.
- Establish and manage data loss prevention (DLP) and encryption protocols for sensitive data at rest and in transit.
- Perform security hardening of servers, workstations, and endpoints; manage patch management and system updates.
- Provide security awareness training and education to employees to foster a security-conscious culture.
- Conduct root cause analysis on security incidents and prepare incident response reports and recommendations.
- Ensure compliance with relevant regulations (CMMC, SOC 2, GDPR, PCI-DSS, or industry-specific standards as applicable).
Requirements
- Bachelor's degree in Computer Science, Information Security, or related field (or equivalent professional experience).
- 5+ years of professional IT security experience, with demonstrated expertise in at least two of the following domains: network security, systems security, or cybersecurity.
- Strong knowledge of TCP/IP, DNS, DHCP, and network protocols; experience with firewalls, proxies, and network segmentation.
- Hands-on experience with security tools such as Splunk, ELK Stack, Snort, Suricata, or similar SIEM and IDS/IPS platforms.
- Proficiency in systems security, including endpoint protection and vulnerability management.
- Experience with cloud security (AWS, Azure, or GCP) and containerized environments (Docker, Kubernetes).
- Understanding of common attack vectors and security frameworks (NIST, CIS Controls, OWASP Top 10).
- Excellent problem-solving skills with the ability to work independently and as part of a team.
- Strong communication skills to explain complex security concepts to non-technical stakeholders.
Nice-to-Haves
- Security certifications such as CISSP, CISM, CEH, CCNA Security, Security+, or similar.
- Experience with security automation and Infrastructure as Code (Terraform, Ansible).
- Knowledge of application security testing (SAST/DAST) and secure development practices.
- Experience with incident response and forensics investigations.
- Familiarity with compliance frameworks and audit processes.
Benefits
Health. Medical, dental, and vision plan options.
Life / AD&D, disability coverage options.
Family. Paid parental leave for eligible full-time employees. 12 weeks for birthing parents, 4 for non-birthing parents, 6 weeks for adoptive, foster, or intended parents through surrogacy.
Vacation. Paid holidays and flexible PTO. Take what you need.
Retirement. 401(k) with pre-tax and Roth options. HSA/FSA options, dependent care FSA.
Benefits vary by location, role, and eligibility. Full plan details provided during the interview and offer process.
If you need a reasonable accommodation during the hiring process, let us know and we will work with you.
Career opportunities at Twenty Technologies are limited to U.S. citizens due to U.S. government contract and security requirements.
Compensation Range: $116K - $195K