Spectrum Brands utilizes a Shared Services model that enables resources to be leveraged across the organization. The Shared Services team is made up of information technology, human resources, indirect sourcing, finance & accounting professionals that support all business units. Shared services teams are headquartered in Middleton, Wisconsin but have members across the country.
The Security Engineer is responsible for implementing security best practices to protect Spectrum Brands critical data, and infrastructure across multiple platforms globally. The Security Engineer will help establish and drive the decision-making for security event management practice. The Security Engineer will also own and manage the Incident Response Plan and all related response activities, and drive incident recovery. This is a multi-faceted role within the security engineering function of our organization and entails broad scope of activities including cross functional and internal customer consultation. The Security Engineer will help establish and drive the decision-making for infrastructure, network, platform and application security architecture design and implement solutions to difficult engineering and security problems. The role identifies assets and assess risks, threats, and vulnerabilities in accordance with accepted business and regulations to ensure security design integrity, availability, and confidentiality compliance. This position supports Spectrum Brands' global divisions.
Primary Duties & Responsibilities
Service Delivery - 40%
Provide leadership to deploy, monitor, test and tune security event management processes and systems to provide optimal security and performance.
Lead, manage and mature IRP and process; integrate monitoring, response and vulnerability activities.
Ensure design and deploy state-of-art technology to meet the business needs and interface with business units regarding technical planning and network issues.
Provide support and lead email security activities.
Develop security migrations plans, research solutions to security technical issues, and provide security technical leadership and guidance during the engineering design and build phase.
Provide automation scripts that help identifies issues on a regular basis.
Utilize best practices and risk tolerances frameworks.
Perform system testing and recommend remediation efforts for system vulnerabilities.
Operational Delivery - 30%
Monitor security controls, audit applications and processes and detect for possible security incidents.
Monitor for potential threats, identification of trends, and assessment of system vulnerabilities.
Investigate current cyber security threats and provide IT leadership with timely communication updates.
Establish and drive the decision-making for infrastructure and application security architecture design and implement solutions to difficult engineering and security problems.
Drive the use of security tools to analyze, assess, and prioritize resolution based on the potential impact.
Develop enterprise security solutions to meet business goals and support IT counterparts around the globe.
Work with teammates and the larger security community to maintain and improve security tools that align and facilitate modern security best practices.
Enforce all company policies and procedures.
Organizational Growth - 30%
Plan, research, design, and implement elements of information security hardware and software technologies.
Research, recommend and develop security and risk mitigation solutions
Prepare documentation, including department policies and procedures, business notifications, and security alerts.
Education and Experience Profile
Minimum associate degree in CS or equivalent, Bachelors preferred
5+ years of relevant experience with a combination of functional technical experience with aspects of major enterprise business systems and related technologies.
3+ years of experience working with Incident Response function including IR/BCP and DR planning.
3+ years of experience working with SIEM
Experience working with and deploying security event management systems.
Solid foundation in infrastructure security, network security, authentication, and security protocols
Additional experience in a combination of the following:
Microsoft (Azure) Sentinel / Log Analytics Workspace
Incident response, triage, incident analysis and remediation.
In-depth understanding of security event analysis and intrusion detection / protection
Experience with M365 EOP or CISCO CES
Email security standards, to include DMARC, SPF and DKIM
Cloud Security (Azure/AWS/GCP)
Endpoint Security with EDR capabilities (Cisco AMP, MS Defender, etc.)
Microsoft Active Directory (AD)/Azure Active Directory (AAD)
PowerShell and/or Python scripting
System hardening concepts and techniques
Security certification (Security+, CCNA Security/Cyber Ops, Azure AWS Security, GSEC, CISSP, etc.)
Additional preference / consideration given to:
Compliance audit participation (ex: SOC2 Type2, ISO27001, etc.)
M365 Security and Compliance Center
Network defense / Network Security
Vulnerability scanning and management
PCI-DSS, NIST, CIS
OT (Operational Technology) Security Experience (IoT, MES)
Implement security solutions and automation to proactively detect security risks and threats for internal systems
Highly collaborative work to identify security gaps and integrate security into business processes
Ability to perform risk assessments across multiple global business units and systems.
Must maintain high level of confidentiality and professionalism.
Possesses a developed knowledge of general business processes/operations
Ability to communicate clear deliverables and timeline for projects
Able to work both independently and as part of a team
Excellent verbal and written communications skills with the ability to effectively interact with business stakeholders
Strong attention to detail, problem-solving, and analytical skills
Ability to proficiently translate business questions or problems into adaptive reporting solutions
Proven ability to manage multiple projects with varying degree of responsibility; must have effective time management and delegation skills.
Must be able to analyze complex data, situations and develop range of solutions.
Strong interpersonal communication skills with an emphasis in being able to manage different personality styles and cultural differentiation required.
Position has the ability to be remote.