IT Security Engineer (Hartford County)

115-125k / Hartford CT / Hybrid Role / Security & Complaince We are seeking a Security Engineer with strong technical expertise and a focus on compliance to join our team. The ideal candidate will be responsible for designing, implementing, and maintaining security solutions while ensuring that our systems and processes meet industry standards and regulatory requirements. This role bridges hands-on security engineering with compliance oversight, supporting both technical operations and audit readiness. Key Responsibilities Design, implement, and maintain security tools, systems, and infrastructure. Support compliance initiatives, ensuring alignment with frameworks such as ISO 27001, NIST, SOC 2, HIPAA, or PCI-DSS. Collaborate with internal teams to ensure security controls are implemented and maintained across systems, networks, and applications. Perform risk assessments, vulnerability management, and remediation planning. Develop and maintain security documentation, policies, and standard operating procedures. Assist with audit preparation and evidence gathering for external and internal reviews. Monitor and analyze security alerts, responding to incidents in line with established processes. Provide guidance on secure design and compliance requirements for new systems and projects. Stay up to date with evolving security threats, tools, and compliance requirements. Qualifications 35 years of experience as a Security Engineer or similar role. Strong knowledge of network, system, and application security. Experience with compliance frameworks (ISO, NIST, SOC 2, HIPAA, PCI-DSS, etc.). Hands-on experience with security tools (SIEM, IDS/IPS, endpoint protection, vulnerability management, firewalls). Familiarity with cloud security (AWS, Azure, or GCP). Strong understanding of risk management, access control, and encryption. Excellent documentation, communication, and cross-team collaboration skills. Preferred Skills (Nice to Have) Relevant certifications (CISSP, CISM, CISA, Security+, CCSP). Experience supporting compliance audits or certification processes. Knowledge of DevSecOps practices and automation tools. Familiarity with privacy regulations (GDPR, CCPA).