Rightworks

Security Engineer II

Rightworks

full-time

Posted on:

Origin:  • 🇺🇸 United States

Visit company website
AI Apply
Apply

Job Level

Mid-LevelSenior

Tech Stack

AzureCloudCyber SecurityFirewallsPythonRubySplunkSQL

About the role

  • A Security Engineer Level II serves as a key individual responsible for safeguarding an organization's networks and systems. This person collaborates with various operations teams to maintain, enforce, and enhance the organization’s security infrastructure, ensuring protection from potential threats. Configure security logs, alerts, and notifications to identify and assist in responding to vulnerabilities/attack vectors which are identified. Configure and maintain security appliances such as firewalls, intrusion detection/prevention systems, web application firewall policies and other security devices. Conduct ongoing security risk and vulnerability assessments, leveraging AI-driven analytics for efficiency. Serve as escalation point for incidents, coordinating rapid response with traditional and AI-assisted playbooks and orchestration tools. Conduct forensic investigations to correlate and reconstruct incident timelines. Oversee log management for automated collection, correlation, and anomaly detection. Review and apply threat intelligence, integrating traditional mechanisms and AI to proactively identify vulnerabilities and predict attack paths. Collaborate with development and operations teams to embed security best practices into traditional and AI-enabled SaaS applications. Document security configurations, changes, and incidents, and provide reports to leaders or stakeholders. Design and implement custom tools to enhance detection, reporting, and automated remediation. Mentor junior security team members, guiding them with best practices and improving existing workflows Deploy and maintain hybrid-cloud security solutions, ensuring both resilience and system availability (endpoint, network, logging, etc.). Stay updated with the latest security trends, threats, and best practices.

Requirements

  • Bachelor’s Degree (preferred) in Information Technology, Computer Science, Cybersecurity, or a related field. CISSP, CISM, Azure, Security+, or other cybersecurity certifications highly desirable 4+ years of experience with Microsoft 365 and Azure products and services 2+ years of experience hunting for threats with different query languages (SQL, Splunk, KQL, etc.) 2+ years of experience with securing hybrid cloud environments 2+ years securing SaaS applications, including those with artificial intelligence components Deep understanding of information security concepts, best practices, and procedures, including Windows and hybrid cloud architecture Deep understanding of cybersecurity threats, vulnerabilities, and risks, with experience in hybrid cloud security architecture Knowledge of on-premises and hybrid cloud security architectures, tools, and technologies Ability to develop custom security tools using Python, Powershell, Ruby, etc. Experience integrating 3 rd party threat intelligence into security controls Excellent documentation skills Knowledge of system security vulnerabilities and remediation techniques, web app security testing and penetration testing experience preferred Experience with any combination of the following: threat modeling, secure coding, identity management and authentication, software development, cryptography, system administration and network security Ability to manage multiple projects in high-pressure situations Ability to explain security risks and solutions to non-experts Familiarity with web-related technologies, including web applications, web services, service-oriented architectures, and web-related vulnerabilities Experience with identity and access management (IAM) solutions