Security Engineer-CLT/remote

Apply for this position Please mention DailyRemote when applying
Posted 6 days ago United States Salary undisclosed
Before you apply - make sure the job is legit.

Attempting to apply for jobs might take you off this site to a different website not owned by us. Any consequence as a result for attempting to apply for jobs is strictly at your own risk and we assume no liability.

Job Description

A family of companies and experiences As the leading foodservice and support services company, Compass Group USA is known for our great people, great service and our great results. If you've been hungry and away from home, chances are you've tasted Compass Group's delicious food and experienced our outstanding service. Our 225,000 associates work in award-winning restaurants, corporate cafes, hospitals, schools, arenas, museums, and more in all 50 states. Our reach is constantly expanding to shape the industry and create new opportunities for innovation. Join the Compass family today! great people. great services. great results. Each and every individual plays a key role in the growth and legacy of our company. We know the next big idea can come from anyone. We encourage developing and attracting expertise that differentiates us as a company as we continue to raise the bar. Job Summary Reporting directly to the Deputy Chief Information Security Officer, the Security Engineer will be responsible will be responsible for a combination of security engineering, improving our security controls, automation, build processes, and tools. This position will be held within the CISO Office of Compass Group NA. The Security Engineer will use former security and engineering experience to review reports provided by cloud platforms, a Qualified Security Assessor (QSA), Approved Scanning Vendor (ASV), and Payment Application Qualified Security Assessor (PA-QSA). The Security Engineer will work with internal departments, security vendors, and client IT staff to remediate any findings to ensure ongoing internal security and PCI DSS compliance. Job Responsibilities Create SOAR playbooks and automation tasks. Participate in incident response as required. Provide support with securely building new systems and networks. Perform security assessments of vendor provided PaaS and SaaS solutions. Collaborate with the other IT members to reduce issues discovered in multiple areas including systems, platforms, and physical security controls. Play a significant role in the design and execution of the security operations processes, procedures, and runbooks. Guide/lead mitigation strategies for identified vulnerabilities and threats. Prioritize events using existing tools to correlate data for the purpose of reducing false positives and detecting threats. Work closely with internal departments to "build-in" security as code. Participate in incident response activities as needed. Act as a trusted advisor for security related questions and concerns. Must be able to perform hands-on support for a wide range of Security technologies including, but not limited to: SIEM, IDS/IPS, endpoint protection, content filtering, logical access controls, identity and access management, data loss prevention, content filtering technologies, application firewalls, vulnerability scanners, and forensics software. Perform project leadership tasks on Security initiatives/projects. Document and present findings to leadership and the internal Cyber Security teams for follow up and remediation. Work in a team environment to analyze the findings and help develop procedural strategies for reviewing reports and services. Continually stay abreast of the evolving Security Standards, learn, actively share knowledge, and foster exchange of skills. Perform ad hoc projects as required. Responsibility for any other tasks as directed and at the discretion of management. Job Qualifications At least 3 years of experience in a Security role with a minimum of 2 years in engineering Bachelor's degree in Computer Engineering, Computer Science, Information/Cyber Security, or related work experience required A broad understanding of technologies and concepts such as firewalls, proxies, SIEM, IDS/IPS, endpoint protection, IAM, and cloud Strong understanding of common attack vectors and surfaces and risk mitigation techniques Experience with Microsoft 365 administration, Microsoft Defender, Cisco AMP, Sentinel One, SPLUNK, Zscaler, InsightVM, Cortex XSOAR, CyberArk, and other security technologies. Experience administering and supporting the above security-related toolsets strongly preferred Experience with writing scripts and source control (Python, PowerShell, etc.) Ability to learn and solve problems independently Industry certifications (CISSP, PCI-ISA, CISA, CCSP) Understanding of information systems and highly technical networking infrastructures Knowledge of security hardening standards and vulnerability trends on Windows and Linux servers Experience evaluating the Security infrastructure for medium to large enterprise merchants Experience with integrating security into continuous integration/deployment tools Knowledge of defensive security measures and vulnerability trends Understanding of data protection mechanisms including encryption Strong project management and documentation skills Apply to Compass Group today! Click here to Learn More about the Compass Story Compass Group is an equal opportunity employer. At Compass, we are committed to treating all Applicants and Associates fairly based on their abilities, achievements, and experience without regard to race, national origin, sex, age, disability, veteran status, sexual orientation, gender identity, or any other classification protected by law. Qualified candidates must be able to perform the essential functions of this position satisfactorily with or without a reasonable accommodation. Disclaimer: this job post is not necessarily an exhaustive list of all essential responsibilities, skills, tasks, or requirements associated with this position. While this is intended to be an accurate reflection of the position posted, the Company reserves the right to modify or change the essential functions of the job based on business necessity. Los Angeles applicants: Compass Group will consider for employment qualified applicants with criminal histories in a manner consistent with the requirements of the Los Angeles Fair Chance Initiative for Hiring (Ban the Box ordinance) Positions at this location require a COVID-19 vaccination. Where permitted by law, applicants who are offered a position for this account will be asked about their vaccination status, which must meet minimum business requirements. All religious, medical, or other legally recognized exemptions regarding vaccination status will be considered. Associates at Corporate are offered many fantastic benefits. Medical Dental Vision Life Insurance/ AD Disability Insurance Retirement Plan Paid Time Off Holiday Time Off (varies by site/state) Associate Shopping Program Health and Wellness Programs Discount Marketplace Identity Theft Protection Pet Insurance Commuter Benefits Employee Assistance Program Flexible Spending Accounts (FSAs) Req ID: Compass Corporate MARY DICKSON req_classification Nearest Major Market: Charlotte Job Segment: Food Service, Hospitality