Security Engineer

Overview

Remote
$140000
Full Time

Job Details

Position Overview
The Security Engineer plays a critical role in ensuring that IT infrastructure aligns with ISO 27001 security standards. This individual collaborates closely with IT teams to evaluate, enhance, and maintain secure systems and services. Key responsibilities include safeguarding infrastructure, implementing risk mitigation measures, and contributing to enterprise-level cybersecurity efforts. This position also provides expertise in access control, incident management, and audit support. Additionally, the Security Engineer is actively involved in the architecture and support of networking, threat management, identity management, and endpoint security systems and is a core member of the Cybersecurity Incident Response Team (CIRT).

Key Responsibilities

  • Administer and maintain Public Key Infrastructure (PKI) systems, overseeing encryption practices, certificate handling, and key management throughout their lifecycle.

  • Deploy and support encryption mechanisms to secure data at rest, in transit, and in use—both on-premises and in the cloud—ensuring compliance with organizational and industry regulations.

  • Secure cloud platforms (AWS, Azure, GCP) by applying best practices for access control, identity management, and data security in accordance with internal policies.

  • Partner with external vendors to securely integrate third-party tools and systems while maintaining compliance and ensuring secure interoperability.

  • Configure and manage firewalls and security gateways, including Unified Threat Management (UTM), Firewall-as-a-Service (FWaaS), and Secure Web Gateway (SWG) platforms.

  • Deploy advanced security solutions such as Zero Trust Network Access (ZTNA) and Cloud Access Security Brokers (CASB) to improve the overall defense strategy.

  • Respond to and lead escalations related to security incidents, policy violations, and audits; support post-incident evaluations and corrective actions to maintain ISO 27001 compliance.

  • Serve as an internal security consultant for IT teams, offering insights and recommendations on infrastructure, cloud, and endpoint protection.

  • Conduct infrastructure reviews, identify vulnerabilities, and propose remediation strategies that support long-term risk reduction.

  • Monitor access control systems and infrastructure security settings to ensure ongoing compliance and optimal configuration.

  • Analyze daily security logs and alerts, triage events, and escalate potential threats as necessary to mitigate risks.

  • Review and enhance security policies and operational procedures, aligning them with industry standards and regulatory frameworks.

  • Provide hands-on support and troubleshooting for LAN/WAN, remote access, IDS/IPS, and other network and threat detection systems.

  • Collaborate with system stakeholders to manage antivirus and endpoint detection and response (EDR) software, ensuring effective threat mitigation on devices.

  • Oversee the integrity and security of DNS records and domain names, coordinating updates with relevant internal and external partners.

  • Perform additional related duties as required.

Qualifications

Education:

  • Bachelor's degree in Computer Science, Engineering, Business, or a closely related field—or equivalent professional experience.

  • CISSP certification (or current progress toward it) is highly desirable.

Experience:

  • Minimum five years in information technology, with at least one year in a systems project leadership or management role.

  • Solid understanding of IT security principles and hands-on experience managing complex technical environments.

  • Experience developing and enforcing cybersecurity policies and participating in audit and compliance activities is preferred.

  • Familiarity with system hardening, encryption, forensic analysis, vulnerability assessments, and penetration testing.

  • Experience in a legal or professional services setting is a plus.

Skills and Competencies:

  • Strong ability to architect and secure infrastructure solutions that meet enterprise and industry security benchmarks.

  • Skilled in managing cloud security components and services, including identity, access, and data encryption strategies.

  • Capable of leading audit initiatives and supporting ongoing compliance efforts.

  • Adept at analyzing and interpreting security logs, metrics, and trends to make data-driven decisions.

  • Well-versed in regulatory compliance, control frameworks, and risk assessment methodologies.

  • Proven experience in integrating and securing third-party tools and external services.

  • Strong problem-solving and negotiation skills, especially within complex or high-stakes technical environments.

Employers have access to artificial intelligence language tools (“AI”) that help generate and enhance job descriptions and AI may have been used to create this description. The position description has been reviewed for accuracy and Dice believes it to correctly reflect the job opportunity.

About Pinnacle IT