Job Description

About the Company

Work Model:  Hybrid - 2 days onsite

         Hours:  Flexible (core hours are 10 AM - 3 PM EST)

Our client is a nationally recognized software company that supports educators worldwide. Great opportunity to join a collaborative, cohesive team that is passionate about the industry they serve.  Due to an internal promotion, our client is looking to backfill their sole IT Security Engineer role.


*4 weeks paid time off & 11 paid holidays
*Low cost medical plans
*Generous 401K plan

About the Job

Description

We are seeking a highly motivated and detail-oriented IT Security Engineer to help design, implement, and maintain the systems and processes that protect our client's information and technology assets. In this tactical role, you will be responsible for strengthening their cybersecurity posture through technical controls, monitoring, incident response, and ongoing risk mitigation.

Key Responsibilities

Infrastructure Security

• Configure and maintain firewalls, intrusion detection/prevention systems (IDS/IPS), endpoint protection, MFA, and VPN systems.
• Implement secure configurations across servers, workstations, and cloud environments (e.g., Microsoft 365, Azure/AWS).
• Manage access controls, privileged account management, and network segmentation.

Security Monitoring & Incident Response

• Monitor SIEM tools and logs to identify and respond to security incidents.
• Investigate alerts and suspicious behavior; assist with containment, remediation, and documentation.
• Lead or support incident response efforts in collaboration with IT and third-party vendors.

Vulnerability Management

• Conduct regular vulnerability scans and assist with patch management and remediation planning.
• Maintain asset inventory and ensure security baselines are applied and enforced.
• Document exceptions, workarounds, and compensating controls as needed.

Policy Enforcement & Compliance Support

• Support the enforcement of cybersecurity policies and procedures.
• Assist with compliance audits (SOC 2, HIPAA, FERPA, etc.) by providing technical evidence and documentation.
• Maintain and update security documentation, including runbooks and incident logs.

Vendor & Tool Management

• Evaluate and manage security technologies (e.g., EDR, email filtering, DLP).
• Collaborate with vendors, managed service providers (MSPs/MSSPs), and internal stakeholders to strengthen defenses.
• Assist with third-party risk assessments and integration reviews.

Qualifications

Required:

• 3+ years of hands-on experience in IT security, network engineering, or system administration with a strong security focus.
• Working knowledge of:
• Firewalls, IDS/IPS, VPNs, endpoint protection.
• SIEM platforms and log analysis.
• Vulnerability scanning tools (e.g., Nessus, Qualys).
• Windows and Linux systems; Active Directory and Group Policy.
• Familiarity with incident response, phishing mitigation, and malware triage.
• Experience with scripting (PowerShell, Bash, or Python).

Preferred:

• Associate’s or Bachelor’s degree in Cybersecurity, Computer Science, Information Systems, or related field.
• Certifications such as Security+, CySA+, CEH, or in-progress CISSP or CISM.
• Exposure to compliance standards (NIST CSF, CIS Controls, SOC 2, HIPAA).