The Security Engineer is responsible for ensuring information security best practices relating to issues such as establishing and disseminating enforceable rules regarding access to, and acceptable use of, information resources. Will establishing reasonable security guidelines and measures to protect data and systems. Assists with monitoring, reporting and management of systems security vulnerabilities. The Security Engineer monitors IT systems for indicators of compromise and sets up preventive measures and assists with investigations/resolution of security incidents and/or alleged violations of ABS security policies.

What You Will Do:

Design, implement, maintain and operate information system security controls and countermeasures. Configure, troubleshoot and maintain cybersecurity tools and hardware for systems such as Splunk, Azure Sentinel, and Microsoft Defender. Analyze security systems and seek improvements on a continuous basis. Design, plan, and execute projects in an efficient manner. Analyze and recommend security controls and procedures in business processes related to use of information systems and assets, and monitors for compliance. Assist in the development and maintenance of playbooks and documentation surrounding cybersecurity tools. Participate in the response to information security alerts and incidents. Analyze security tools posture and features to suggest or push improvements to the business. Automate internal controls and centralize logging and reporting related to security and electronic enterprise policies. Prepare and deliver presentations to management teams and user groups.

What You Will Need:

Education and Experience

College degree or equivalent experience preferred. Typically requires a minimum of five (5) years previous related work experience

Knowledge, Skills and Abilities

Compliant with Federal International Traffic and Arms Regulations (ITAR) requirements.  Experience in SIEM migrations, management, and monitoring. Experience in EDR/XDR solutions. Prior experience working in organizations to support services provided to internal clients.  Knowledge of security controls of NIST SP 800-53 or of ISO/IEC 27002. Prior experience required in the Information Technology field of IT Security and/or IT Auditing.  Clarity and conciseness in oral and written communications; demonstrated capability to produce effective presentations for delivery to both technical and non-technical audiences.  Strong interpersonal skills to achieve process changes and departmental goals within a matrix organization; ability to communicate and work well with others at all levels of the corporation.  Strong understanding of logging best practices and normalization. Great awareness of cybersecurity trends and hacking techniques. Obtain a working knowledge of the ABS Health, Safety, Quality and Environmental Management System.

It Would Be Nice If You Had:

Cybersecurity related certification preferred (Microsoft security certifications are highly preferred).

Reporting Relationships:

The incumbent reports to a Manager, Director or Executive Level Position. This position does not have any direct reports.

Notice:

This position requires access to information that is subject to control by the Export Administration Regulations and/or the International Traffic in Arms Regulations. Any offer of employment shall be contingent upon the Company’s verification that the candidate is a “U.S. Person” or upon the receipt of all necessary export licenses or authorizations that may be required by U.S. export control laws. “U.S. Persons” are defined as U.S. citizens, U.S. lawful permanent residents (i.e., “green card” holders), or any individual granted protected status under the Immigration and Nationality Act (8 U.S.C. § 1324b(a)(3)), including asylees and refugees.  In the event a candidate refuses or cannot otherwise provide the necessary information for the Company to determine whether such licenses may be required, or for the Company to obtain any required licenses, the Company shall maintain the exclusive right to discontinue the application process and/or withdraw any contingent offer that has been made.