Sr IT Security Engineer

The Sr. Security Engineer is responsible for designing, implementing, hardening, and supporting enterprise security capabilities that protect company systems, platforms, and information assets. This role blends hands-on security engineering with operational execution across cloud security, security operations, incident support, and AI security use cases.

The position partners with engineering, cloud platform, application, data/AI, and operations teams to reduce risk, improve detection and response outcomes, and support audit and control expectations. As a senior-level role, this position also contributes technical leadership through documentation, standardization, mentoring, and continuous improvement.

• →

  Design, implement, and continuously improve secure configurations and guardrails across enterprise and cloud environments, including identity and access controls, network protections, encryption, secrets management, logging, and platform hardening.

• →

  Engineer, administer, and support enterprise security technologies spanning endpoint security, vulnerability management, SIEM/logging, identity management, monitoring, detection, and cryptographic controls.

• →

  Drive remediation of security findings by prioritizing critical and high-risk issues, validating corrective actions, and improving repeatable control patterns.

• →

  Build, operate, and enhance security operations capabilities, including detection engineering, SIEM/SOAR workflows, alert triage, investigation support, incident response playbooks, and operational runbooks.

• →

  Conduct or support incident investigations, root-cause analysis, containment and eradication activities, and lessons-learned follow-through.

• →

  Participate in the on-call support rotation for security incidents, provide technical support during active investigations and response activities, and contribute to post-incident remediation and continuous improvement.

• →

  Develop and maintain technical documentation, engineering standards, implementation procedures, and evidence-quality artifacts to support operational consistency and audit readiness.

• →

  Partner with engineering, cloud, application, and AI/ML stakeholders to implement scalable security controls and secure-by-default patterns.

• →

  Perform technical assessments and proof-of-concept evaluations of new security solutions and recommend changes to procedures, standards, or tooling where appropriate.

• →

  Implement practical security controls for AI-enabled systems and workflows, including governance, access controls, monitoring, and risk reduction for model and application use cases.

• →

  Participate in audits, control reviews, and security assessments; support evidence collection, traceability, and remediation tracking.

• →

  Mentor less experienced engineers and contribute to technical leadership across the team.

• →

  Perform other duties as assigned and understand and adhere to all corporate policies, including the ACI Code of Business Conduct and Ethics.

• Bachelor’s degree in Computer Science, Information Systems, Cybersecurity, MIS, or related field; equivalent practical experience may be considered.

• 5+ years of experience in security engineering and/or security operations with demonstrated hands-on delivery.

• Strong working knowledge of security fundamentals across identity and access management, encryption, network security, secure logging/telemetry, configuration hardening, and vulnerability/risk remediation.

• Experience implementing and supporting security controls in at least one major cloud environment; direct experience across both AWS and Azure is strongly preferred.

• Demonstrated experience with security operations processes and tooling, such as SIEM/SOAR, detection engineering, alert triage, incident support, security scanning, or operational playbooks.

• Demonstrated ability to translate security findings into practical engineering improvements, documentation, and measurable operational outcomes.

• Experience developing technical documentation, standards, and runbooks for repeatable operational execution.

• Strong communication skills and the ability to work effectively with both technical and non-technical stakeholders.

• Ability to work independently on complex assignments with limited day-to-day supervision.

• Experience with regulated or audited environments and supporting evidence traceability or control mapping.

• Experience with automation and scripting in Python, PowerShell, Bash, Go, Ansible, or similar tooling.

• Experience with policy-as-code, infrastructure-as-code security gates, or continuous compliance patterns.

• Experience with container, Kubernetes, or workload identity security.

• Experience with threat hunting, post-incident remediation, and engineering-driven control improvements.

• Familiarity with AI/LLM application security, threat modeling, secure evaluation/testing, and governance approaches.

• Advanced knowledge of security standards and frameworks.

• Experience mentoring junior team members.

• Relevant certifications are strongly preferred. Candidates should demonstrate credible competency across cloud security, cybersecurity operations, and AI / application security through a combination of certifications and directly relevant experience.

• Standard work environment.

• Majority of time spent on PC.

• Participation in an on-call rotation is required to support incident response, escalations, and urgent security events.

• Travel may be required on a limited basis.