Information Security Engineer III

As a Security Engineer III, you will operate as a senior technical authority within the security engineering team. This role focuses on designing, implementing, and maintaining advanced security controls across on-premises and cloud environments. You ll be expected to drive complex engineering projects, lead architecture discussions, and ensure the secure configuration of enterprise infrastructure. This is a hands-on position requiring deep technical knowledge and strategic thinking.

Key Responsibilities:

• Architect, deploy, and maintain SIEM solutions for comprehensive log ingestion, normalization, and correlation logic; ensure scalability and automation of alert pipelines.

• Engineer and integrate EDR/XDR platforms across endpoints and servers; develop custom detection rules, response playbooks, and automated containment procedures.

• Design and operationalize vulnerability management solutions; automate scan scheduling, vulnerability classification, risk scoring, and remediation workflows.

• Build and maintain CSPM and CWPP solutions for hybrid cloud environments (e.g., Azure, AWS); enforce policy compliance and remediate misconfigurations at scale.

• Lead the engineering and lifecycle management of IAM architectures, including policy design, privileged access workflows, and MFA integration across all services.

• Configure and support enterprise DLP systems, ensuring classification, endpoint enforcement, and data egress monitoring are robust and aligned with compliance standards.

• Collaborate with architecture, DevOps, and IT teams to embed security into infrastructure as code, CI/CD pipelines, and application lifecycles.

• Act as a lead engineer during major incidents, threat investigations, and post-incident reviews.

• Document technical procedures, architectural decisions, and engineering standards.

• Mentor junior engineers and serve as an escalation point for complex implementation challenges.

Skills & Core Competencies:

• Hands-on expertise with:

  • SIEM platforms (e.g., Microsoft Sentinel, Splunk)

  • EDR/XDR tools (e.g., CrowdStrike, Defender XDR, SentinelOne)

  • Vulnerability Management (e.g., Tenable, Qualys, Rapid7)

  • Cloud Security Platforms (Azure Defender, Prisma Cloud, AWS GuardDuty)

  • IAM technologies (Microsoft Entra, Okta, Duo, PAM solutions)

  • DLP (Microsoft Purview, Forcepoint, Symantec DLP)

• Deep understanding of networking, system internals, and hybrid infrastructure (Windows, Linux, Azure, M365).

• Scripting and automation skills (e.g., PowerShell, Python, Terraform) for infrastructure and security tooling.

• Familiarity with security frameworks and methodologies (e.g., MITRE ATT&CK, NIST, CIS).

• Strong documentation and communication skills with the ability to explain complex security concepts to both technical and non-technical stakeholders.

Minimum Qualifications:

• Bachelor s degree in Cybersecurity, Computer Science, or related field (or equivalent experience).
• 5 8 years of experience in security engineering, infrastructure security, or cloud security.
• Industry certifications (preferred but not required): CISSP, AZ-500, GCIA, Google Cloud PlatformN, or similar.
• Demonstrated experience in designing and implementing enterprise-grade security solutions.

Work & Physical Requirements:

• Primarily desk-based with frequent computer use.
• Must be able to lift and carry items up to 10 pounds occasionally.
• May require occasional travel for business needs.
• Must be able to work regular business hours and respond to off-hours events as needed.
• Office environment with moderate noise levels.

Hybrid Work Policy:

• Remote: Monday and Friday
• In-office: Tuesday to Thursday

Exceptions may be made based on business needs or operational requirements. This designation is subject to change.

Soft Skills & Expectations:

• Strong organizational and multitasking abilities.
• Capable of working both independently and collaboratively.
• Able to lead discussions, influence outcomes, and own delivery of complex technical projects.
• Proactive in continuous improvement, professional development, and mentoring others.

REASONABLE ACCOMMODATION: Reasonable accommodation may be made to enable individuals with disabilities to perform the essential functions.

For over 25 years, Farm Credit Financial Partners, Inc. (FPI) has provided technology products and services to the Farm Credit System. We care deeply about the agricultural credit associations (ACAs) we serve through our mission of delivering trusted technology solutions to help American agriculture thrive. As a customer-owned service organization, we support ACAs from Maine to California with over 62,000 customer-members and over $40 billion in loan volume. Everyone here contributes to the success of our customers, and to the vibrant culture that makes FPI a great place to work. Throughout the year, you will find us having fun and jamming out to FPI s band, coming together to support local charities, and celebrating our wins together.

We offer a robust benefits package that includes competitive earnings, hybrid and remote work options, tuition reimbursement, generous 401(k) matching, and development opportunities through company-sponsored trainings and certifications.

Come grow with us: .

Farm Credit Financial Partners, Inc. is an Equal Opportunity Employer, and all qualified applicants will receive consideration for employment without regard to age, race, color, national origin, sex or gender, religion, pregnancy, marital status, status as a veteran, sexual orientation, gender identity, disability, or any other characteristic protected by law. EEO / Disabilities / Veterans

#FPI