Energy Jobline ZR
Senior Information Security Engineer in San Francisco
Energy Jobline ZR, San Francisco, California, United States, 94199
Overview
Energy Jobline is the largest and fastest growing global Energy Job Board and Energy Hub. We have an audience reach of over 7 million energy professionals, 400,000+ monthly advertised global energy and engineering jobs, and work with the leading energy companies worldwide. We focus on the Oil & Gas, Renewables, Engineering, Power, and Nuclear markets as well as emerging technologies in EV, Battery, and Fusion. We are committed to ensuring that we offer the most exciting career opportunities from around the world for our jobseekers. Position
Senior Information Security Engineer The Sr Information Security Engineer is responsible for leading and executing information security operations across multiple locations, with a primary focus on incident response, security technologies, change management, and continuous improvement. This role safeguards the organization's digital assets by designing, implementing, and maintaining key processes and technologies such as intrusion detection, malware protection, zero-day threat mitigation, firewalls, internet filtering, and SIEM tools. Location: San Francisco, CA (Hybrid - 3 days on-site) Compensation: This job expects to pay about $120,000 - $135,000 per year plus benefits What You Will Do
Security Operations & Incident Response Assist with 24x7 security operations, ensuring continuous availability and performance of critical security systems. Support aspects of incident response, including detection, escalation, containment, service recovery, and root cause analysis. Tune and configure IDS/IPS, antivirus, firewall, vulnerability management, and application assessment tools to ensure optimal protection and performance. Implement and maintain automated monitoring and logging processes; conduct regular log reviews and threat detection. Manage escalations from the Security Operations Center (SOC) and drive timely resolution of critical issues. Identify, track, and communicate key risks and security concerns using a metrics-based approach. Continuously improve incident response processes, system documentation, monitoring tools, and recovery procedures. Security Technologies & Compliance
Administer and support a range of security tools and technologies including SIEM, intrusion detection/prevention systems, malware protection, encryption, and content filtering. Ensure compliance with internal information security policies and external regulatory frameworks (e.g., NIST, ISO). Develop, maintain, and enforce security documentation, workflows, and access control procedures. Monitor compliance across systems; identify gaps and coordinate remediation with stakeholders. Governance, Metrics & Strategic Planning
Develop and maintain security metrics to inform leadership and guide strategic decisions. Provide input into the organization's overall information security strategy to ensure alignment with business goals. Contribute to the continuous improvement of documentation, monitoring capabilities, automation, and recovery plans. Vendor & Partner Oversight
Manage relationships with third-party security vendors and service providers, ensuring contractual obligations, service quality, and compliance are met. Oversee change management activities related to externally managed security platforms and services. Collaborate with managed service providers (MSPs) to drive operational improvements and automation. Additional Responsibilities
Partner with cross-functional teams to support the deployment and maintenance of security tools and services. Oversee daily security operations and escalate critical issues as appropriate. Support additional information security projects or initiatives as assigned. What You Bring to The Table
Bachelor's Degree in relevant field or other relevant professional experience 4-5+ years of experience in enterprise information security operations, with hands-on expertise in IDS/IPS, SIEM, malware protection, firewalls, and incident response Strong understanding of compliance and risk frameworks: NIST, ISO 27001 Demonstrated experience with security monitoring, threat detection, and forensic analysis. Proven ability to develop, execute, and mature operational security processes and documentation Skilled in managing security vendors and third-party services, including contract and performance oversight Excellent written and verbal communication skills, with the ability to present technical concepts clearly to both technical and non-technical stakeholders Strong attention to detail Proficient in Microsoft Office, web-based collaboration tools, and security platforms CISSP, CISM, CISA, GCIH, CEH or other related information security cert If you are interested in applying for this job please press the Apply Button and follow the application process. Energy Jobline wishes you the very best of luck in your next career move.
#J-18808-Ljbffr
Energy Jobline is the largest and fastest growing global Energy Job Board and Energy Hub. We have an audience reach of over 7 million energy professionals, 400,000+ monthly advertised global energy and engineering jobs, and work with the leading energy companies worldwide. We focus on the Oil & Gas, Renewables, Engineering, Power, and Nuclear markets as well as emerging technologies in EV, Battery, and Fusion. We are committed to ensuring that we offer the most exciting career opportunities from around the world for our jobseekers. Position
Senior Information Security Engineer The Sr Information Security Engineer is responsible for leading and executing information security operations across multiple locations, with a primary focus on incident response, security technologies, change management, and continuous improvement. This role safeguards the organization's digital assets by designing, implementing, and maintaining key processes and technologies such as intrusion detection, malware protection, zero-day threat mitigation, firewalls, internet filtering, and SIEM tools. Location: San Francisco, CA (Hybrid - 3 days on-site) Compensation: This job expects to pay about $120,000 - $135,000 per year plus benefits What You Will Do
Security Operations & Incident Response Assist with 24x7 security operations, ensuring continuous availability and performance of critical security systems. Support aspects of incident response, including detection, escalation, containment, service recovery, and root cause analysis. Tune and configure IDS/IPS, antivirus, firewall, vulnerability management, and application assessment tools to ensure optimal protection and performance. Implement and maintain automated monitoring and logging processes; conduct regular log reviews and threat detection. Manage escalations from the Security Operations Center (SOC) and drive timely resolution of critical issues. Identify, track, and communicate key risks and security concerns using a metrics-based approach. Continuously improve incident response processes, system documentation, monitoring tools, and recovery procedures. Security Technologies & Compliance
Administer and support a range of security tools and technologies including SIEM, intrusion detection/prevention systems, malware protection, encryption, and content filtering. Ensure compliance with internal information security policies and external regulatory frameworks (e.g., NIST, ISO). Develop, maintain, and enforce security documentation, workflows, and access control procedures. Monitor compliance across systems; identify gaps and coordinate remediation with stakeholders. Governance, Metrics & Strategic Planning
Develop and maintain security metrics to inform leadership and guide strategic decisions. Provide input into the organization's overall information security strategy to ensure alignment with business goals. Contribute to the continuous improvement of documentation, monitoring capabilities, automation, and recovery plans. Vendor & Partner Oversight
Manage relationships with third-party security vendors and service providers, ensuring contractual obligations, service quality, and compliance are met. Oversee change management activities related to externally managed security platforms and services. Collaborate with managed service providers (MSPs) to drive operational improvements and automation. Additional Responsibilities
Partner with cross-functional teams to support the deployment and maintenance of security tools and services. Oversee daily security operations and escalate critical issues as appropriate. Support additional information security projects or initiatives as assigned. What You Bring to The Table
Bachelor's Degree in relevant field or other relevant professional experience 4-5+ years of experience in enterprise information security operations, with hands-on expertise in IDS/IPS, SIEM, malware protection, firewalls, and incident response Strong understanding of compliance and risk frameworks: NIST, ISO 27001 Demonstrated experience with security monitoring, threat detection, and forensic analysis. Proven ability to develop, execute, and mature operational security processes and documentation Skilled in managing security vendors and third-party services, including contract and performance oversight Excellent written and verbal communication skills, with the ability to present technical concepts clearly to both technical and non-technical stakeholders Strong attention to detail Proficient in Microsoft Office, web-based collaboration tools, and security platforms CISSP, CISM, CISA, GCIH, CEH or other related information security cert If you are interested in applying for this job please press the Apply Button and follow the application process. Energy Jobline wishes you the very best of luck in your next career move.
#J-18808-Ljbffr