Information Technology Security Engineer

this roll can sit in Warren NJ or Montgomeryville PA

JOB SUMMARY

We seek a skilled IT Security Engineer to join our team and safeguard our organization’s digital infrastructure. The IT Security Engineer will design, implement, and maintain security measures to protect systems, networks, and data from cyber threats. This role requires a proactive approach to identifying vulnerabilities, responding to incidents, and ensuring compliance with industry standards and best practices.

KEY RESPONSIBILITIES

Develop and implement security protocols, policies, and procedures to protect organizational systems and sensitive data.

Conduct regular security assessments, perform vulnerability scans, and conduct penetration testing using tools such as Rapid7 InsightVM to identify and mitigate risks.

Monitor network traffic and endpoint activity for suspicious behavior using Cortex XDR and respond to security incidents promptly.

Collaborate with IT teams to ensure secure configuration of servers, firewalls, endpoints, and cloud-based systems.

Maintain and update security tools such as Rapid7, Cortex XDR, intrusion detection systems (IDS), antivirus software, and encryption technologies.

Write and optimize queries using Rapid7’s Insight Query Language (IQL) and Cortex XDR’s XQL (XDR Query Language) to investigate threats and analyze security data.

Investigate and analyze security breaches, providing detailed reports and recommendations for prevention.

Stay current on emerging cyber threats, attack techniques, and security technologies to enhance defenses.

Ensure compliance with regulatory requirements and internal security standards.

Train and educate staff on cybersecurity best practices and awareness.

QUALIFICATIONS

Bachelor’s degree in computer science, Information Technology, Cybersecurity, or a related field,or equivalent experience.

Understanding of compliance frameworks (e.g., NIST, ISO 27001).

3+ years of experience in IT security, network administration, server administration, or a similar role.

Skilled in using security tools such as Rapid7 (including InsightVM, InsightIDR, and InsightConnect), Cortex XDR, SIEM platforms, Palo Alto firewalls, Prisma Access, and endpoint protection platforms.

Ability to write automated remediation processes using scripting languages.

Experience writing and utilizing queries in Rapid7 Insight Query Language (IQL) and Cortex XDR Query Language (XQL) for threat hunting and incident analysis.

Strong knowledge of networking protocols (TCP/IP, DNS, HTTP/S) and operating systems (Windows, Linux) and securing these systems.

Experience in Azure cloud security is advantageous.

Relevant certifications are preferred (e.g., CISSP, CEH, CompTIA Security+, OSCP).

Outstanding problem-solving abilities and meticulous attention to detail.

Ability to work under pressure and respond to incidents outside of regular business hours when necessary.

Strong communication skills for collaborating with both technical and non-technical stakeholders.