Senior Information Security Engineer
Dallas, TX, United States
Southern Glazer's Wine & Spirits Southern Glazer's is the premier beverage distributor for wines, spirits, beer, and non-alcoholic products in the U.S. and Canada. View company page
Open the door to a groundbreaking tech career with an industry leader. Southern Glazer’s Wine & Spirits is North America’s preeminent wine and spirits distributor, as well as a family-owned, privately held company with a 50+ year legacy of success. To create a new era in alcohol beverage sales and service, we’re heavily invested in the most transformative new technologies – and the most brilliant tech professionals. Southern Glazer’s was named by Newsweek as a Most Loved Workplace and is included on the Forbes lists for Largest Private Companies and Best Employers for Diversity.
As a full-time employee, you can choose from a full menu of our Top Shelf Benefits, including comprehensive medical and prescription drug coverage, dental and vision plans, tax-saving Flexible Spending Accounts, disability coverage, life insurance plans, and a 401(k) plan. We also offer tuition reimbursement, a wellness program, parental leave, vacation accrual, paid sick leave, and more.
We offer continuous learning and career growth in a fast-paced environment where you are respected, your voice is heard, and technology is part of our strategy for success. If you’re looking to fill your glass with opportunity, come join our FAMILY.
Overview The Senior Information Security Engineer is responsible for assisting with evaluating, implementing, maintaining, and assessing security solutions and infrastructure. Responsibilities involve conducting threat modeling, pinpointing process inefficiencies, and collaborating with both internal and external teams to resolve challenges identified through incident response, assessments, and penetration testing. Coordinate operational and support activities for enterprise-wide security issues encompassing resource allocation and the management of problems and solutions. Communication skills are a must for this position.
Specialized Skills and Technologies Excellent teaching, problem-solving, communication, and interpersonal skills
A solid understanding of networking, systems, and security related technologies
Able to build and maintain relationships, provide mentorship, and present ideas in an effective manner
Basic knowledge of scripting languages – Python, PowerShell, Bash, etc.
Proven experience responding to incidents in an Enterprise environment
Experience managing endpoint security in an Enterprise environment
Practical experience working with SIEM solutions in an Enterprise environment
Working experience in Linux, Windows, and MacOS is a plus
Strong foundation in performing Incident Response
Able to analyze and respond to threat intelligence data
Knowledge of common attack techniques and tactics used by threat actors
Strong communication and decision-making skills
Strong ability to influence others
Proven ability to analyze and solve problems with excellent attention to detail
Strong team player who can work across multiple functions and disciplines
Primary Responsibilities Evaluates and implements security technologies to fortify organizational defenses and enhance overall security posture
Directs and participates in information security projects and supports team efforts for day-to-day operations
Assists in the investigation of security-related events
Assists with computer forensic and eDiscovery requests as needed
Assists with follow-up on alerts received from user-reported email and security tools
Manages and monitors the EDR solution and responds to threats in the environment
Performs proactive and continuous threat hunting activities to detect and mitigate potential security threats with a focus on maintaining a robust security posture
Designs comprehensive incident response playbooks ensuring well-structured and effective responses to security incidents
Serves as a member of the team and as a mentor to other information security team members as needed
Assesses the current information security program and makes recommendations regarding improvements
Aggressively automates repeated tasks to allow the team to scale with the organization’s growth
Serves as a member of the team in a technical role
Serves as a subject matter expert inside of SGWS and assists with complex issues pertaining to Information Security as needed
Participates in on-call rotation
Preferred Qualifications Certified Information Systems Security Professional (CISSP)
GIAC or Offensive Security Certifications – GPEN, GCIH, GREM, OSCP, etc.
Experience in both red team and blue team operations demonstrating expertise in offensive and defensive security strategies
Experience in Computer Forensics and eDiscovery
Experience with cloud security technologies and platforms
Familiarity with scripting and automation to enhance security operations
Experience with security frameworks and standards
Minimum Qualifications 7 or more years of work experience in IT
3 or more years of experience evaluating, implementing, and managing security solutions in an enterprise environment
2 or more years of experience of utilizing threat intelligence tools and frameworks
2 or more years of hands-on experience with an enterprise SIEM solution
2 or more years of hands-on experience utilizing Email security platforms
2 or more years of utilizing EDR in an enterprise environment with experience in platform management to include deployment and configuration
2 or more years of hands-on experience actively leading and conducting threat hunting operations
Proven experience in managing security incidents and coordinating with internal and external stakeholders
Ability to identify and mitigate potential security threats across diverse environments
Must have a deep understanding of Windows and Linux operating systems
Must be willing to participate in an on-call rotational schedule
Deep understanding of network security, endpoint security, and application security principles
Continually follow the threat landscape to stay on top of the latest vulnerabilities
Ability to work effectively with technical and non-technical personnel in a cross-functional setting
Self-starter/motivated
Strong attention to detail
Strong team player who can work across multiple functions and lead peers
Establishes and communicates clear priorities and sense of direction
A good listener and collaborator who partners closely with others
Ability to communicate complex security concepts in a clear, fluent, and concise manner to both technical, and non-technical audiences
Exceptional written, verbal and presentation communication skills
Agile Delivery Values Openness – Team and stakeholders agree to be open about all work and challenges
Commitment – Personally commit to achieving the goals of the team
Respect – Respect your team members to be capable and independent
Courage – You have courage to do the right thing and work on tough problems
Focus – Everyone focus on the work in the sprint and the goal of the scrum team. Rise and fall as a team
Physical Demands Physical demands include a considerable amount of time sitting and typing/keyboarding, using a computer (e.g., keyboard, mouse, and monitor), or mobile device
Physical demands with activity or condition may occasionally include walking, bending, reaching, standing, squatting, and stooping
May require occasional lifting/lowering, pushing, carrying, or pulling up to 20lbs
EEO Statement Southern Glazer's Wine and Spirits, an Affirmative Action/EEO employer, prohibits discrimination and harassment of any type and provides equal employment opportunities to all employees and applicants for employment without regard to race, color, religion, age, sex, national origin, disability status, genetics, protected veteran status, sexual orientation, gender identity or expression, or any other characteristic protected by federal, state or local laws. This policy applies to all terms and conditions of employment, including recruiting, hiring, placement, promotion, termination, layoff, recall, transfer, leaves of absence, compensation and training. Southern Glazer's Wine and Spirits provides competitive compensation based on estimated performance level consistent with the past relevant experience, knowledge, skills, abilities and education of employees. Unless otherwise expressly stated, any pay ranges posted here are estimates from outside of Southern Glazer's Wine and Spirits and do not reflect Southern Glazer's pay bands or ranges.
Explore more InfoSec / Cybersecurity career opportunities Find even more open roles in Ethical Hacking, Pen Testing, Security Engineering, Threat Research, Vulnerability Management, Cryptography, Digital Forensics and Cyber Security in general - ordered by popularity of job title or skills, toolset and products used - below.
#J-18808-Ljbffr