Information Security Engineer

The Information Security Engineer is responsible for implementing and supporting security technologies and controls that protect the organization's IT infrastructure, systems, and data. This role plays a hands-on part in improving the overall security posture by contributing to the deployment, operation, and maintenance of security solutions. Working together with management and senior team members, the Information Security Engineer assists in executing security strategies, supporting compliance requirements, and mitigating risks across the enterprise. This position provides technical expertise to security operations, contributes to security engineering initiatives, and escalates complex issues when necessary. The Information Security Engineer supports all Kraft Group companies and locations.

1. Design, deploy, and manage security solutions in alignment with security policies and business needs.
2. Assist in conducting risk assessments, security reviews, and gap analyses for compliance with standards such as NIST, CIS, ISO 27001, HIPAA, and GDPR.
3. Participate in vulnerability management lifecycle-monitoring alerts, identifying risks, and implementing remediation activities.
4. Manage and operate enterprise security tools including Tenable, CrowdStrike, NG-SIEM, Cisco FirePower, NetSpi, CyberArk and Zscaler.
5. Assist with firewall rule reviews, applying least privilege and zero-trust principles, and managing change workflows.
6. Administer and enhance Privileged Access Management (PAM) solutions, including implementing Just-In-Time (JIT) access, credential rotation, session monitoring, and least-privilege controls using CyberArk or similar technologies.
7. Respond to security incidents, performing triage, containment, documentation, and escalation in coordination with senior team members.
8. Analyze security event logs and correlate data to identify threats and recommend improvements based on threat intelligence.
9. Support penetration testing efforts by collaborating with third-party testers, reviewing findings, and assisting in remediation.
10. Contribute to user awareness programs by promoting security best practices and supporting education initiatives across the organization.
11. Collaborate with IT teams to guide and influence security best practices in operations, infrastructure, and application development.
12. Assist in internal and external audit activities, including documenting controls, tracking exceptions, and managing remediation plans.
13. Create and maintain security dashboards and reports to communicate trends, vulnerabilities, and risk metrics to leadership.
14. Stay informed of evolving security threats, technologies, and industry developments to improve security measures.
15. Work with IT and development teams to ensure security is integrated into design and implementation processes.
16. Special projects and assignments as business dictates.
17. Responsible for the creation, maintenance and control of all personally identifiable information or any other information protected by Confidentiality and Privacy Standards see Mass Regulations on Personal Identity Regulations and HIPAA.

• This position has no supervisory responsibilities

• Bachelor's degree in Cybersecurity, Computer Science, or Information Systems preferred.
• 4-6 years of experience in cybersecurity architecture, security engineering, or related fields, with a track record of implementing security solutions.
• Strong understanding of Defense-in-Depth, Zero-Trust Security Models, and Compensating Controls.
• Experience in security design and implementation for Enterprise Platforms and Operating Systems (Windows, Unix/ Linux).
• Familiarity with network security concepts, firewalls, and enterprise security controls (Cisco iOS & NX-OS, Aruba OS, Extreme XOS).
• Experience with Enterprise NGFW platforms (Cisco FTD) and advanced threat detection tools.
• Familiarity with regulatory compliance frameworks such as CIS, CISA, NIST, ISO 27001, ISO 27002, HIPAA, GDPR.
• Ability to support cross-functional security projects and provide security guidance to IT teams.
• Strong analytical and problem-solving skills with a focus on security risk mitigation.
• Strong communication and documentation skills for reporting security risks and solutions to stakeholders.

• Reasonable accommodations may be made to enable individuals with disabilities to perform the essential functions.

• Participate in after-hours on-call escalations and in Stadium event coverage rotations
• The noise level in the work environment is usually moderate.
• Fast-paced office environment.

• Certified Information Systems Security Professional (CISSP) or similar certifications preferred

Please note this job description is not designed to cover or contain a comprehensive listing of activities, duties or responsibilities that are required of the employee for this job. Duties, responsibilities, and activities may change at any time with or without notice.

This company is an equal opportunity employer. We evaluate qualified applicants without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability, veteran status, and other legally protected characteristics.

#LI-KG