Senior IT Security Engineer

Full Time
Dodgeville, WI
Areas of Interest: Software Assurance and Security Engineering
report a problem
Overview

The Information Security – Engineer is a hands-on position that is responsible for maintaining enterprise information security policies, technical standards, guidelines, procedures, and other elements of an enterprise infrastructure necessary to support information security in compliance with established company policies, regulatory requirements (ex. PCI, SOX, HIPAA), and generally accepted information security controls (ISO 27001/2, NIST, etc.) and security best practices (OWASP, SANS, etc.).

JOB RESPONSIBILITIES:

Essential Functions

Strategy & Planning

  • Participate and/or lead in the planning and implementation of enterprise security architecture, under the direction of the Manager of Information Security, where appropriate.
  • Provide security architectural expertise, direction, and assistance to Systems Analysts, Systems Engineers, and other Systems Architects.
  • Perform audits of security devices, policies, and rules to ensure compliance with all regulatory standards, information security controls, and best business practice.
  • Develop and maintain security solutions that facilitate the company’s strategic business needs.
  • Conduct research on emerging technologies in support of systems development efforts, and recommend technologies that will increase improve the enterprise security posture.
  • Recommend security control and systems to support business goals of the company.
  • Implement security systems that have positive budgetary impact by reducing costs and increasing productivity.
  • Enhance the company’s information assets by contributing to its security, integrity, efficiency, availability, and accuracy.
  • Familiar with identity management, role methodologies, and least privilege principles. 
  • Project Management experience in security platform initiatives.

 

Operational Management

  • Perform strategic analysis; apply advanced principles, theories, and concepts to resolution of problems.
  • Establish and communicate design and architecture standards via mentoring, technical presentations, and white papers.
  • Interact with all levels of customers, users, and vendors, including executive management, technical personnel, and contractors.  Demonstrated ability to provide security leadership across the organization.
  • Identify, prioritize and onboard internal, application data feeds to the SIEM platform.
  • Monitor and maintain overall system health of the SIEM infrastructure.
  • In-depth experience working with mainstream firewall platforms
  • Assist with Change Management preparations and implementations, providing technical subject matter expertise.
  • Provide security analysis and consultation services for product, system and Data Protection architecture designs.
  • Ability to lead meetings with the security team and across the organization.
  • Assist with other projects as may be required to contribute to efficiency and effectiveness of the group.
  • Lead incident response efforts across the enterprise.
  • Mentoring junior staff

 

JOB QUALIFICATIONS:

  • BS/BA Degree preferred.
  • Minimum 10 years’ experience in Information Security. A background in security operations or design & engineering role or any combination of education and experience, which would provide an equivalent background.
  • Significant experience with multiple technical and business disciplines preferred.
  • In-depth knowledge of Role Base Security models and implementations within a diverse environment.
  • In-depth knowledge and understanding of industry-accepted data processing controls and concepts as applied to hardware, software, data network communications, and people.
  • Security Certifications: Security+ or CISSP preferred or other technical security certifications.
  • Familiarity with Security Audit Processes, Compliance Remediation, and Best Practices.
  • Previous professional experience with enterprise SIEM is required.
  • Previous professional experience with Enterprise Monitoring Suites.
  • Experience managing log sources, log types, and parsing rules.
  • Custom log parsing configuration development experience is highly preferred.
  • In-depth knowledge of Information Security with relevant work experience and/or relevant education/certifications.
 

PREFERRED: JOB QUALIFICATIONS:

  • Experience with Palo Alto firewalls
  • Experience with LogRhythm enterprise SIEM
  • Network certifications
  • Cloud security certification

 

 

Lands’ End® is a classic American lifestyle brand with a passion for quality, legendary service, real value and a simple two-word promise to stand behind everything it sells: Guaranteed. Period.® Lands’ End delivers timeless style for Men, Women, Kids and the Home. With over 50 years of experience, Lands’ End is renowned for its culture of service for the customer and is recognized as an innovator in the industry. Lands’ End is publicly traded and listed on NASDAQ under the trading symbol (LE).




Share this job:

Lands'​ End

Lands’ End is a premier source of apparel and gear for women, men, kids and the home – sold by catalog, online, and at over 200 Lands’ End Shops at Sears. Since 1963, we’ve earned a reputation for quality, value and exceptional customer service embodied by one simple promise: everything we sell is Guaranteed. Period.®

Specialties
Retail, Direct Sales, Catalog, Digital, Apparel and Fashion
Visit Lands'​ End's Social Media pages:
Company Industry: Apparel & Fashion
Company Type: Public Company
Company Size: 1,001-5000
One other job with this company: