Security Engineer

• This is a remote contract to hire position
• Salary: 120 -125k

GENERAL STATEMENT OF DUTIES

The Security Engineer II designs, implements, and optimizes enterprise security solutions with a focus on firewall management, Security Operations Center (SOC) engineering, and security operations enablement. This role ensures security strategies align with organizational risk management and compliance requirements. The Security Engineer II collaborates with IT, security teams, and business units to enhance the organization’s overall cybersecurity posture.

ESSENTIAL FUNCTIONS

• SOC Engineering – Engineer and enhance Security Operations Center (SOC) capabilities, integrating security monitoring tools, SIEM solutions, and automation workflows.

• Security Operations Enablement - Develop and implement security frameworks and processes that enhance the efficiency of security operations teams.

• Firewall Management - Design, deploy, and maintain enterprise firewall solutions, ensuring secure network segmentation and traffic control.

• Incident Response Support - Work closely with SOC analysts to refine incident detection, investigation, and response capabilities.

• Threat Intelligence Integration - Integrate threat intelligence feeds and analytics to improve proactive threat detection and mitigation.

• Risk Management & Compliance - Ensure security controls comply with industry regulations such as NIST, ISO 27001, and SOC 2.

• Security Engineering Development - Define and document security reference engineering and best practices for network and cloud environments.

• Automation & Orchestration - Implement automation strategies for security processes, including firewall policy management and security alert triaging.

• Stakeholder Collaboration - Work with IT, DevOps, and business units to align security policies with operational goals.

• Continuous Improvement - Monitor emerging threats, security trends, and best practices to enhance enterprise security posture.

EDUCATION & CERTIFICATIONS

• Education - Bachelor's degree in Cybersecurity, Information Technology, or a related field.

• Preferred Certifications - CISSP, GIAC (GSEC, GCIA, GCIH), CCNP Security, Palo Alto Networks PCNSA/PCNSE, or equivalent.

• Microsoft - Microsoft Defender Certified.

• Security Management - Certified Information Security Manager (CISM)

EXPERIENCE

• IT Systems Engineering - At least 6-8 years of experience in engineering enterprise IT platforms.

• Firewall Engineering - At least 3-5 years of experience managing enterprise firewall solutions.

• SOC Engineering & Security Operations - Minimum of 3 years in SOC engineering, incident response, or security automation.

• Network Security - Proven experience designing and securing network platforms, including VPNs, proxies, and IDS/IPS solutions.

• Threat Intelligence & Detection - Experience working with SIEM platforms, threat hunting, and endpoint detection response (EDR) solutions.

• Security Design - A minimum of 3 years of experience in security design and implementation.

• Azure Cloud Solutions - Proven expertise in designing and deploying Azure cloud solutions.

KNOWLEDGE

• Security Operations - In-depth understanding of SOC workflows, log management, and SIEM solutions (Splunk, Sentinel, QRadar, etc.).

• Firewall Technologies - Expertise in firewalls, including Palo Alto, Fortinet, Cisco, or Check Point.

• Cloud Technologies – In-depth understanding of cloud computing principles, serverless architectures, and cloud-native development.

• Cloud Security - Familiarity with cloud security models in AWS, Azure, and Google Cloud.

• Security Standards & Compliance – Knowledge of cybersecurity principles, authentication protocols (OAuth, SAML).

• Regulatory Frameworks - Strong knowledge of compliance standards and best practices such as NIST, ISO 27001, SOC-2, PCI-DSS, HIPAA, and GDPR.

• Automation & Scripting - Experience with Python, PowerShell, or Bash for security automation.

• Continuous Learning Mindset – Passion for staying up to date with industry trends, emerging technologies, and best practices.