Marathon TS
Security Engineer
Position Overview:
The Security Engineer will be responsible for designing, implementing, and maintaining security solutions to protect ACL's cloud environment, systems, and data. This role involves collaborating with infrastructure and development teams to integrate security into all stages of the development lifecycle. The Security Engineer will proactively address potential vulnerabilities, automate security controls, and ensure compliance with industry standards and best practices.
Key Responsibilities:
1. Security Architecture and Design Design and Implement Security Solutions: • Architect and implement security solutions across ACL's cloud environment, including identity and access management (IAM), network segmentation, and zero-trust architectures. • Collaborate with infrastructure and development teams to ensure security by design principles are integrated into all systems. Secure Configuration and Hardening: • Develop and enforce secure configurations for cloud services, operating systems, and applications. • Ensure compliance with industry standards, including CIS benchmarks and DISA STIGS. Automation and Integration: • Automate security controls and processes using Infrastructure as Code (IaC) and CI/CD pipelines. • Integrate security tools into development workflows to enable continuous security monitoring and testing.
2. Threat Detection and Incident Response Engineering Build and Maintain Security Monitoring Systems: • Design and configure security monitoring solutions to detect anomalies, unauthorized access attempts, and data exfiltration. • Implement and fine-tune SIEM systems, endpoint detection and response (EDR) solutions, and cloud-native security tools. Incident Response Automation: • Develop playbooks for automated incident detection and response. • Implement automated alerting and remediation workflows to reduce response times.
3. Threat Intelligence and Vulnerability Management Threat Intelligence Integration: • Integrate threat intelligence feeds with security monitoring systems to enhance threat detection and prevention capabilities. • Develop and maintain threat hunting scripts and tools to proactively identify potential threats. Vulnerability Assessment and Management: • Design and conduct vulnerability assessments and penetration testing to identify security weaknesses. • Collaborate with development teams to implement secure coding practices and resolve vulnerabilities.
4. Security Tools Engineering and Maintenance Configuration and Maintenance of Security Tools: • Engineer, configure, and maintain security tools, including SIEM, EDR, Web Application Firewalls (WAF), and cloud-native security solutions. • Perform regular system audits and configurations to maintain security posture and compliance. Tool Integration and Optimization: • Integrate security tools with cloud infrastructure and CI/CD pipelines to provide end-to-end security monitoring and enforcement. • Continuously optimize security tools and processes to reduce false positives and enhance detection accuracy.
5. Cybersecurity Strategy and Research •
Security Innovation and Research: • Research and implement emerging security technologies, protocols, and tools to enhance ACL's security architecture. • Evaluate and recommend new security solutions and technologies to improve cloud security posture. •
Security Policy and Strategy Development: • Develop and implement cybersecurity strategies, standards, and best practices in alignment with industry regulations and compliance requirements. • Conduct security gap analysis and implement controls to mitigate identified risks.
6. Collaboration and Communication •
Cross-functional Collaboration: • Collaborate with DevOps, development, and infrastructure teams to integrate security throughout the application lifecycle. • Provide guidance on secure development practices and conduct security reviews during design and deployment stages. •
Stakeholder Communication: • Communicate complex security issues and risks to technical and non-technical stakeholders clearly and effectively. • Provide security training and awareness programs to internal teams as needed.
Required Skills and Qualifications: Technical Expertise: • In-depth knowledge of cloud security architectures (e.g., AWS, Azure, or GCP). • Proficiency in security automation tools and scripting languages (e.g., Python, PowerShell, Bash). • Experience with security frameworks (e.g., NIST, CIS, DISA STIGS). Professional Experience: • Minimum of 5 years of experience in security engineering, cloud security, or a related field. • Proven experience in implementing and managing security solutions in cloud environments. Certifications (Preferred): • Certified Information Systems Security Professional (CISSP) • Certified Cloud Security Professional (CCSP) • GIAC Certified Incident Handler (GCIH) • AWS Certified Security Specialty or equivalent cloud certification
Marathon TS is committed to the development of a creative, diverse and inclusive work environment. In order to provide equal employment and advancement opportunities to all individuals, employment decisions at Marathon TS will be based on merit, qualifications, and abilities. Marathon TS does not discriminate against any person because of race, color, creed, religion, sex, national origin, disability, age or any other characteristic protected by law (referred to as "protected status ").
Key Responsibilities:
1. Security Architecture and Design Design and Implement Security Solutions: • Architect and implement security solutions across ACL's cloud environment, including identity and access management (IAM), network segmentation, and zero-trust architectures. • Collaborate with infrastructure and development teams to ensure security by design principles are integrated into all systems. Secure Configuration and Hardening: • Develop and enforce secure configurations for cloud services, operating systems, and applications. • Ensure compliance with industry standards, including CIS benchmarks and DISA STIGS. Automation and Integration: • Automate security controls and processes using Infrastructure as Code (IaC) and CI/CD pipelines. • Integrate security tools into development workflows to enable continuous security monitoring and testing.
2. Threat Detection and Incident Response Engineering Build and Maintain Security Monitoring Systems: • Design and configure security monitoring solutions to detect anomalies, unauthorized access attempts, and data exfiltration. • Implement and fine-tune SIEM systems, endpoint detection and response (EDR) solutions, and cloud-native security tools. Incident Response Automation: • Develop playbooks for automated incident detection and response. • Implement automated alerting and remediation workflows to reduce response times.
3. Threat Intelligence and Vulnerability Management Threat Intelligence Integration: • Integrate threat intelligence feeds with security monitoring systems to enhance threat detection and prevention capabilities. • Develop and maintain threat hunting scripts and tools to proactively identify potential threats. Vulnerability Assessment and Management: • Design and conduct vulnerability assessments and penetration testing to identify security weaknesses. • Collaborate with development teams to implement secure coding practices and resolve vulnerabilities.
4. Security Tools Engineering and Maintenance Configuration and Maintenance of Security Tools: • Engineer, configure, and maintain security tools, including SIEM, EDR, Web Application Firewalls (WAF), and cloud-native security solutions. • Perform regular system audits and configurations to maintain security posture and compliance. Tool Integration and Optimization: • Integrate security tools with cloud infrastructure and CI/CD pipelines to provide end-to-end security monitoring and enforcement. • Continuously optimize security tools and processes to reduce false positives and enhance detection accuracy.
5. Cybersecurity Strategy and Research •
Security Innovation and Research: • Research and implement emerging security technologies, protocols, and tools to enhance ACL's security architecture. • Evaluate and recommend new security solutions and technologies to improve cloud security posture. •
Security Policy and Strategy Development: • Develop and implement cybersecurity strategies, standards, and best practices in alignment with industry regulations and compliance requirements. • Conduct security gap analysis and implement controls to mitigate identified risks.
6. Collaboration and Communication •
Cross-functional Collaboration: • Collaborate with DevOps, development, and infrastructure teams to integrate security throughout the application lifecycle. • Provide guidance on secure development practices and conduct security reviews during design and deployment stages. •
Stakeholder Communication: • Communicate complex security issues and risks to technical and non-technical stakeholders clearly and effectively. • Provide security training and awareness programs to internal teams as needed.
Required Skills and Qualifications: Technical Expertise: • In-depth knowledge of cloud security architectures (e.g., AWS, Azure, or GCP). • Proficiency in security automation tools and scripting languages (e.g., Python, PowerShell, Bash). • Experience with security frameworks (e.g., NIST, CIS, DISA STIGS). Professional Experience: • Minimum of 5 years of experience in security engineering, cloud security, or a related field. • Proven experience in implementing and managing security solutions in cloud environments. Certifications (Preferred): • Certified Information Systems Security Professional (CISSP) • Certified Cloud Security Professional (CCSP) • GIAC Certified Incident Handler (GCIH) • AWS Certified Security Specialty or equivalent cloud certification
Marathon TS is committed to the development of a creative, diverse and inclusive work environment. In order to provide equal employment and advancement opportunities to all individuals, employment decisions at Marathon TS will be based on merit, qualifications, and abilities. Marathon TS does not discriminate against any person because of race, color, creed, religion, sex, national origin, disability, age or any other characteristic protected by law (referred to as "protected status ").