Security Engineer

Location: Downtown Denver, CO (parking provided)

Schedule: Onsite 5 days per week

Type: Full-Time, Direct Hire

Hourly Rate: $125k - $140k (depending on experience)

Seeking an IT Security professional with a well-rounded background who thrives in complex, regulated environments. Ideal candidates are familiar with SIEM platforms (preferably Rapid7), Mimecast, and Cisco, but more importantly, they should demonstrate the ability to troubleshoot through process rather than relying solely on specific tools.

Duties & Responsibilities:

Work collaboratively with other team members to provide immediate response to cybersecurity events, servicing end users, and protecting company assets.

Support the modernization of our cybersecurity environment as we transition from on-prem to hybrid/cloud infrastructure, ensuring secure configurations and thoughtful architecture decisions.

Participate in the development, configuration, and operation of cybersecurity programs and risk management initiatives aligned to NIST and SOX frameworks.

Conduct technical evaluations of new or evolving systems, including cloud security architecture reviews and compliance impact assessments.

Optimize current security tools and assist with vendor evaluation as we reassess platforms during our digital transformation.

Assist with the selection and onboarding of a 24/7 SOC/MDR provider and serve as a liaison to ensure ongoing service delivery meets expectations.

Create and maintain documentation such as data flow diagrams, system architecture charts, and standard operating procedures that span both legacy and emerging environments.

Partner with IT, business units, and third-party service providers to implement secure and scalable solutions.

Contribute to threat detection, incident response, and vulnerability management across the security ecosystem.

Promote a security-first mindset across the organization through professionalism, strong communication, and consultative support.

Responsibilities during off-hours related to monitoring and responding to alerts, outages, and certain security-related helpdesk incidents, as needed.

Perform other duties as assigned.

Qualifications:

Bachelor's degree in Computer Science, Information Technology, Information Systems, or related field; OR 5+ years of relevant cybersecurity experience.

Hands-on experience with malware analysis, intrusion detection and prevention, vulnerability remediation, PAM, encryption, and firewalls.

Familiarity with regulated environments including SOX compliance and NIST frameworks.

Experience with both on-prem systems and cloud-based platforms, preferably M365.

Ability to produce clear process documentation and technical diagrams.

Strong written and verbal communication skills with the ability to interact professionally with technical and non-technical stakeholders.

Experience with SIEM (Rapid7 preferred)

Familiarity with Mimecast and Cisco

Strong communication skills and a service-oriented mindset

Ability to collaborate across IT and business teams

Comfortable wearing multiple hats

Prior work in regulated environments (SOX familiarity a plus)

Proven ability to self-manage and work in demanding environments

Interpersonal skills to work with difficult personalities

Preferred: Scripting/programming experience (e.g., Python, log engine query languages).

Preferred: Certifications such as Security+, CCSP, CISSP, CEH, or equivalent.

Preferred: Experience in OT/SCADA or industrial control system security.

All qualified applicants will receive consideration for employment without regard to race, color, national origin, age, ancestry, religion, sex, sexual orientation, gender identity, gender expression, marital status, disability, medical condition, genetic information, pregnancy, or military or veteran status. We consider all qualified applicants, including those with criminal histories, in a manner consistent with state and local laws, including the California Fair Chance Act, City of Los Angeles' Fair Chance Initiative for Hiring Ordinance, and Los Angeles County Fair Chance Ordinance. For unincorporated Los Angeles county, to the extent our customers require a background check for certain positions, the Company faces a significant risk to its business operations and business reputation unless a review of criminal history is conducted for those specific job positions.