Jobs · Information Technology · Oklahoma

Sr IT Security Engineer | Tulsa, OK (ON-SITE)

Cherokee Nation Businesses · Tulsa, OK · 3 wk ago
On-siteInformation TechnologyFull-time

About the role

Responsible for designing, implementing, maintaining, and continuously improving enterprise cybersecurity controls, architectures, and operational security capabilities across cloud, infrastructure, applications, endpoints, and data environments. Serve as a senior technical advisor and security subject matter expert responsible for protecting organizational systems, sensitive information, and mission-critical services against evolving cyber threats. Provide leadership in security engineering, threat detection, incident response, risk management, compliance, vulnerability management, cloud security, and secure systems design. Partner closely with infrastructure, development, operations, compliance, and business teams to design, test, implement and maintain security best practices and ensure alignment with organizational and regulatory requirements.

Responsibilities

  • Designs, implements, documents, and maintains security systems and solutions.
  • Supports secure administration of Microsoft Active Directory, Entra ID/Azure AD, Group Policy, DNS, DHCP, and related identity services.
  • Performs security assessments based on current environment; and develops recommendations/action plans.
  • Maintains cyber security risk register and cyber security plan.
  • Performs advanced troubleshooting for networking, application, security system, and related system problems.
  • Gathers detailed problem information, assesses the problem, determines the resources needed, and leads the problem resolution.
  • Advise in the design, deployment, and administration of the following areas: cloud, infrastructure, networking, and applications including security related to these areas.
  • Supports security monitoring, detection engineering, SIEM tuning, and threat hunting initiatives.
  • Assists with confidential security investigations and insider threat activities.
  • Plans, designs, implements, documents, and maintains disaster recovery and risk mitigation strategies.
  • Provides leadership cyber security recommendations, costs, and implementation design/plans.
  • Works with the leadership on confidential security investigations.
  • Participates in and supports Cyber Incident Response Team (CIRT) activities including investigation, containment, eradication, recovery, and lessons learned.
  • Provides administration, documentation, and implementation expertise for data security categorization, audit reporting, and protections.
  • Supports internal and external customers using appropriate email, telephone, and face-to-face interactions.
  • Mentors less experienced staff in areas of cybersecurity technologies and practices.
  • Led or supports cybersecurity-related projects and cross-functional initiatives.
  • Communicates cybersecurity risks, recommendations, and technical concepts effectively to technical and non-technical stakeholders.
  • Facilitates team and project activities.
  • Manages multiple projects without having direct supervisory responsibilities.

Qualifications

  • Bachelor’s degree and eight plus (8+) years of cyber security engineering experience in the areas of networking, application, data, and end users computing.
  • or an equivalent combination of education and experience.
  • CISSP, Security+, and Azure Security Engineer Associate certifications preferred.
  • Experience with patch management, vulnerability management, 3rd party vendor assessments, cyber incident response, and common industry practices.
  • Experience with security engineering, security assessments, design reviews and threat modeling.
  • Experience with Zero Trust architecture, cloud-native security tooling, and automation/security orchestration.
  • Experience with scripting or automation using PowerShell, Python, or similar languages.
  • Experience with SIEM platforms such as Microsoft Sentinel.
  • Advanced knowledge of cloud security and associated tools.
  • Advanced knowledge of computer security including knowledge of vulnerability and penetration testing, compliance testing, and disaster recovery planning.
  • Advanced knowledge of Microsoft Active Directory including users, groups, servers, group policy, DNS, DHCP, and replication.
  • Advanced knowledge of securing networks in areas such as Ethernet, firewalls, and Wi-Fi.
  • Advanced knowledge and implementation of cyber forensics.
  • Advanced knowledge of implementation, deployment, and administration of certificates and Public Key Infrastructure.
  • Advanced knowledge of firewall and intrusion prevention system installation and rule administration.
  • Advanced knowledge of security tools such as Qualys, Armis, MS Defender, MS Purview, and MS Cloud Security Tools.
  • Excellent analytical and problem-solving skills.
  • Excellent communication skills.
  • Excellent organizational and prioritization skills.
  • Ability to work well under pressure and handle multiple projects at once.

About The Team

The Cherokee Nation Businesses is a dynamic company that drives growth and innovation for the Cherokee Nation, the largest Native American tribe in the United States and our sole shareholder. As the holding company of our diverse family of businesses, we offer exciting opportunities for those who are committed to our values and passionate about advancing our mission and your career. Our employees are part of something bigger. Every day, we explore new ways to grow the company and contribute to the success of the Cherokee Nation - improving the lives of our tribal citizens and the communities we are a part of. If you're looking for a career where you can make an impact, contribute to growth and be a part of something meaningful, CNB is a place where you can thrive.

Elite Benefits Program (for Eligible Employees)

  • Comprehensive Medical Plan: including a $0 deductible plan for you to choose from for what is best for you and your family.
  • Preparing You For the Future: Contribute to a fully vested, 6% employer match 401(k) plan to help prepare you for retirement.
  • Financial Incentives: Earn incentives based on company performance or take advantage of our employee referral program, tuition reimbursement program, nationwide employee discount program & an employee emergency fund.
  • Your Health in Mind: Access to free health clinics at select locations & 24/7 telemedicine access.
  • Work-Life Balance: We offer maternity, paternal, and adoption leave, as well as flexible spending accounts & voluntary benefits for added peace of mind.
  • A Company With a Purpose Guided by our Shared Enterprise Values:Work with Purpose, Serve with PurposeGadugi - Work together for the common goodExemplify Integrity in everything we doBe Intentional in planning & Committed in delivery.

Similar jobs

Sr. IT Security Engineer

Great West, An Old Republic CompanyIowa, United States· 1 wk ago
Information Technologyapply on myjobs.adp.com

Sr Security Engineer

MeijerMichigan, United States· 1 wk ago
Information Technologyapply on meijer.wd5.myworkdayjobs.com

Sr Systems Security Engineer

Sierra Nevada CorporationLone Tree, CO· 2 wk ago
Information Technology$143k–$197k/yrapply on snc.wd1.myworkdayjobs.com