NiSource
Cloud and Endpoint Security Engineer – Senior
Location:
Columbus, OH
Work Hybrid:
three days on location
Salary:
$110,200 - $165,300, plus 10% annual bonus
At NiSource, our Enterprise Security organization designs, builds, and sustains the advanced defenses that protect our critical infrastructure and customer trust.
The Senior Cybersecurity Engineer – Cloud and Endpoint Security plays a pivotal role in engineering, administering, and optimizing NiSource’s security platforms across endpoint and cloud environments. This role combines hands‑on expertise in CrowdStrike Falcon and cloud security (Azure, AWS, GCP) to deliver unified threat visibility, response automation, and proactive risk reduction across IT and OT assets. The ideal candidate is equally comfortable engineering EDR solutions as they are designing secure cloud controls aligned with Zero Trust and the NIST Cybersecurity Framework (CSF 2.0).
Responsibilities
Engineer, administer, and optimize the CrowdStrike Falcon platform—covering policy tuning, sensor deployment, and health monitoring across enterprise endpoints.
Develop and enhance custom detections, response logic, and playbooks leveraging Falcon Fusion, RTR, and threat intelligence data.
Deploy, configure, and manage cloud security controls and integrations across Azure, AWS, and GCP—ensuring consistent protection across hybrid workloads.
Integrate endpoint and cloud telemetry into SIEM (Splunk) and SOAR platforms for automation, enrichment, and real‑time containment.
Partner with the SOC and Incident Response teams to investigate alerts, correlate cloud and endpoint events, and validate detection efficacy.
Lead efforts to secure endpoint and cloud baselines aligned with CIS, NIST, and NiSource technical specifications.
Drive automation of security processes and metrics reporting using Python, PowerShell, and API‑based integrations.
Evaluate and pilot emerging security technologies, such as Falcon Discover, Identity Protection, or Cloud Workload Protection, to enhance defensive depth.
Collaborate with infrastructure, architecture, and compliance teams to align controls with Zero Trust and regulatory frameworks (e.g., NERC, FERC, CIP).
Support vulnerability and patch management integrations using Falcon Spotlight and cloud‑native tools.
Participate in post‑incident analysis and continuous improvement cycles to strengthen overall security posture.
Minimum Qualifications
5+ years of experience in cybersecurity engineering, endpoint protection, or SOC environments.
3+ years of direct hands‑on experience with CrowdStrike Falcon or a comparable EDR/XDR platform.
3+ years of threat detection engineering, endpoint telemetry, and incident response processes.
Preferred Qualifications
Industry certifications such as CCFA, CCFR, CCSP, GIAC, CompTIA, Azure Certifications, or ISC2.
Familiarity with cloud workload and posture management tools (e.g., Prisma Cloud, Defender for Cloud).
Experience with energy sector regulatory frameworks (NERC, FERC, CIP).
Exposure to outsourced IT or managed service environments.
Experience contributing to incident response and forensics investigations leveraging EDR telemetry.
Familiarity with Splunk, ServiceNow, and SOAR integrations.
Understanding of NIST CSF 2.0, MITRE ATT&CK, and Zero Trust architectures.
Proficiency in scripting and automation using PowerShell, Python, or API integrations.
Disclaimer The preceding description is not designed to be a complete list of all duties and responsibilities required of the position.
Work Authorization Authorized to work in the United States without requiring sponsorship.
Equal Employment Opportunity NiSource is committed to providing equal employment opportunities in each of its companies to all employees and applicants for employment without regard to race, color, religion, national origin or ancestry, veteran status, disability, gender, age, marital status, sexual orientation, gender identity, sex (including pregnancy, lactation, childbirth or related medical conditions), genetic information, citizenship status, or any protected group status as defined by law. Each employee is expected to abide by this principle.
ADA Accommodations If you need a reasonable accommodation to participate in any part of the hiring process or to perform the essential functions of the position, please contact OneHR at $OneHR@nisource.com or 1-888-640-3320.
#J-18808-Ljbffr
Columbus, OH
Work Hybrid:
three days on location
Salary:
$110,200 - $165,300, plus 10% annual bonus
At NiSource, our Enterprise Security organization designs, builds, and sustains the advanced defenses that protect our critical infrastructure and customer trust.
The Senior Cybersecurity Engineer – Cloud and Endpoint Security plays a pivotal role in engineering, administering, and optimizing NiSource’s security platforms across endpoint and cloud environments. This role combines hands‑on expertise in CrowdStrike Falcon and cloud security (Azure, AWS, GCP) to deliver unified threat visibility, response automation, and proactive risk reduction across IT and OT assets. The ideal candidate is equally comfortable engineering EDR solutions as they are designing secure cloud controls aligned with Zero Trust and the NIST Cybersecurity Framework (CSF 2.0).
Responsibilities
Engineer, administer, and optimize the CrowdStrike Falcon platform—covering policy tuning, sensor deployment, and health monitoring across enterprise endpoints.
Develop and enhance custom detections, response logic, and playbooks leveraging Falcon Fusion, RTR, and threat intelligence data.
Deploy, configure, and manage cloud security controls and integrations across Azure, AWS, and GCP—ensuring consistent protection across hybrid workloads.
Integrate endpoint and cloud telemetry into SIEM (Splunk) and SOAR platforms for automation, enrichment, and real‑time containment.
Partner with the SOC and Incident Response teams to investigate alerts, correlate cloud and endpoint events, and validate detection efficacy.
Lead efforts to secure endpoint and cloud baselines aligned with CIS, NIST, and NiSource technical specifications.
Drive automation of security processes and metrics reporting using Python, PowerShell, and API‑based integrations.
Evaluate and pilot emerging security technologies, such as Falcon Discover, Identity Protection, or Cloud Workload Protection, to enhance defensive depth.
Collaborate with infrastructure, architecture, and compliance teams to align controls with Zero Trust and regulatory frameworks (e.g., NERC, FERC, CIP).
Support vulnerability and patch management integrations using Falcon Spotlight and cloud‑native tools.
Participate in post‑incident analysis and continuous improvement cycles to strengthen overall security posture.
Minimum Qualifications
5+ years of experience in cybersecurity engineering, endpoint protection, or SOC environments.
3+ years of direct hands‑on experience with CrowdStrike Falcon or a comparable EDR/XDR platform.
3+ years of threat detection engineering, endpoint telemetry, and incident response processes.
Preferred Qualifications
Industry certifications such as CCFA, CCFR, CCSP, GIAC, CompTIA, Azure Certifications, or ISC2.
Familiarity with cloud workload and posture management tools (e.g., Prisma Cloud, Defender for Cloud).
Experience with energy sector regulatory frameworks (NERC, FERC, CIP).
Exposure to outsourced IT or managed service environments.
Experience contributing to incident response and forensics investigations leveraging EDR telemetry.
Familiarity with Splunk, ServiceNow, and SOAR integrations.
Understanding of NIST CSF 2.0, MITRE ATT&CK, and Zero Trust architectures.
Proficiency in scripting and automation using PowerShell, Python, or API integrations.
Disclaimer The preceding description is not designed to be a complete list of all duties and responsibilities required of the position.
Work Authorization Authorized to work in the United States without requiring sponsorship.
Equal Employment Opportunity NiSource is committed to providing equal employment opportunities in each of its companies to all employees and applicants for employment without regard to race, color, religion, national origin or ancestry, veteran status, disability, gender, age, marital status, sexual orientation, gender identity, sex (including pregnancy, lactation, childbirth or related medical conditions), genetic information, citizenship status, or any protected group status as defined by law. Each employee is expected to abide by this principle.
ADA Accommodations If you need a reasonable accommodation to participate in any part of the hiring process or to perform the essential functions of the position, please contact OneHR at $OneHR@nisource.com or 1-888-640-3320.
#J-18808-Ljbffr