Overview
This role entails a Security Engineer focusing on enhancing security protocols within a client's operational technology (OT) environment. The contractor will collaborate with Infrastructure, Cloud, DevOps, Architecture, and Operations teams to implement and improve security controls, ensuring compliance and resilience in the systems.
Responsibilities
- Implement and maintain security tooling including EDR/XDR, SIEM, WAF, firewalls, IDS/IPS, CASB, and vulnerability management platforms.
- Support secure-by-design delivery across cloud, infrastructure, and operational environments.
- Conduct technical security assessments, hardening activities, and remediation work.
- Monitor environments for threats, vulnerabilities, and suspicious activity.
- Support incident response, investigation, and remediation activities.
- Improve security monitoring, alerting, and detection capabilities.
- Automate security tasks and operational processes using scripting and automation tooling.
- Produce runbooks, documentation, and security standards.
Requirements
- Strong hands-on experience with enterprise security tooling and controls.
- Experience across cloud, on-prem, and hybrid environments.
- Knowledge of technologies such as EDR/XDR, SIEM, WAF, IDS/IPS, CASB, and vulnerability scanning tools.
- Strong understanding of networking and infrastructure security principles.
- Experience with scripting/automation using PowerShell, Python, or Bash.
- Familiarity with security frameworks such as NIST, CIS Controls, or ISO27001.
- Strong troubleshooting and incident response capability.
- Excellent communication and stakeholder engagement skills.