As a Senior Security Engineer, you will play a key role in safeguarding the security of the RPC's technology infrastructure. This position ensures that our offices, data center, and cloud environments adhere to industry standards and best practices for security. Your primary responsibilities will include developing and implementing security measures to protect against unauthorized access, data breaches, and other security risks.
Essential Job Functions - Key Responsibilities:
- Design and implement security strategies to protect information from unauthorized modification, destruction, or disclosure.
- Serve as a Subject Matter Expert (SME) in information security, working closely with architecture teams, management, and other departments to identify best practices and adopt a risk-based approach to security.
- Collaborate with infrastructure, network, cloud, and application teams to support project delivery, update security standards, and contribute to the overall success of our security program.
- Develop and maintain detailed system documentation for user-facing technologies, including Endpoint Detection and Response (EDR), Identity and Access Management (IAM), Single Sign-On (SSO), email protection, and network security solutions.
- Establish, update, and enforce security standards, policies, and procedures that align with organizational goals and regulatory requirements.
- Lead integration and authentication efforts for third-party vendor solutions, SSO, and cloud platforms, overseeing implementations, upgrades, enhancements, and conversions.
- Proactively recommend security solutions to meet the company’s needs.
- Participate in a hybrid work model, spending 1-2 days monthly from one of our corporate offices (Houston, TX; Atlanta, GA; Oklahoma City, OK).
Qualifications:
- Bachelor’s degree or equivalent experience.
- 8+ years of experience in IT, with at least five years focused on Information Security.
- Expertise in Identity & Access Management (IAM) and Single-Sign-On (SSO) solutions.
- In-depth knowledge of authentication protocols such as SAML, OAuth, OpenID Connect (OIDC), and RADIUS.
- Experience with Endpoint Detection and Response (EDR) management, including deployment, updates, reporting, and incident response.
- Proficiency in securing physical on-premises, remote data center, and cloud environments.
- Strong understanding of secure configuration standards for various systems, including Windows, Linux, Mac, server, and cloud-based environments.
- Experience in vulnerability management, remediation, tabletop exercises, and coordinating yearly penetration testing.
- Familiarity with security frameworks such as NIST, CIS, and SOX compliance.
- Excellent problem-solving skills, with the ability to thrive in fast-paced environments.
- Strong written and verbal communication skills, with the ability to lead by example.
- Self-motivated, adaptable, and able to succeed in an ever-evolving work environment.
#Tech2024
#LI-RA1