Security Engineer - Hybrid

For over a century, the Workers' Compensation Insurance Rating Bureau of California (WCIRB) has been California's trusted, objective provider of actuarially based information and research, advisory pure premium rates and educational services integral to a healthy workers' compensation system. The WCIRB is a California unincorporated, private, nonprofit association comprised of all companies licensed to transact workers' compensation insurance in California. The operations of the WCIRB are funded primarily by membership fees and assessments; no state money is used to fund its operations. The WCIRB is a stable company and a proven leader in the workers’ compensation insurance industry nationwide. 

Summary 

The IT Security Engineer performs core security functions for the enterprise. The primary function of the role is the day-to-day operations of the in-place security solutions and the identification, investigation, and resolution of security events detected by those systems. Additional tasks may include involvement in the implementation of new security solutions, participation in the creation and or maintenance of policies, standards, baselines, guidelines, and procedures as well as conducting vulnerability audits and assessments. The IT Security Engineer is expected to be fully aware of the enterprise’s security goals as established by its stated policies, procedures, and guidelines and to actively work towards upholding those goals. Microsoft Defender experience is required.

Essential Duties and Responsibilities 

• Participate in the planning and design of enterprise security architecture, under the direction of the Director of Security, where appropriate.
• Participate in the creation of enterprise security documents (policies, standards, baselines, guidelines, and procedures) under the direction of the Director of Security, where appropriate.
• Maintain up-to-date detailed knowledge of the IT security industry including awareness of new or revised security solutions, improved security processes, and the development of new attacks and threat vectors.
• Recommend additional security solutions or enhancements to existing security solutions to improve overall enterprise security.
• Perform the deployment, integration, and initial configuration of all new security solutions and of any enhancements to existing security solutions in accordance with standard operating procedures generically and the enterprise’s security documents specifically.
• Maintain up-to-date baselines for the secure configuration and operations of all in-place devices, whether they be under direct control (i.e. security tools) or not (e.g. workstations, servers, network devices).
• Maintain operational configurations of all in-place security solutions as per the established baselines.
• Monitor all in-place security solutions for efficient and appropriate operations.
• Deliver training and phishing simulations for the enterprise’s security awareness training program.
• Review logs and reports of all in-place devices, whether they be under direct control (i.e. security tools) or not (e.g. workstations, servers, network devices). Interpret the implications of that activity and devise plans for appropriate resolution.
• Participate in investigations into problematic activity, evaluate and assess trends
• Participate in the design and execution of vulnerability assessments, penetration tests, and security audits.
• Provide on-call support.

Education & Experience 

• Bachelor of Science Degree (including completed courses in relevant areas such as computer science, computer languages, etc.) or equivalent combination of education and progressive, related experience supplemented with courses and seminars in relevant subject matters.
• Certification in one or more of the following (Strong Plus):
  • CompTIA Security
  • CompTIA PenTest
  • GIAC Security Certifications
  • Microsoft Security Certifications
  • (ISC)2 SSCP
  • (ISC)2 CISSP
• 5 years of extensive experience with threat hunting and security forensics.
• 3 years of experience with Microsoft Defender Security Stack (XDR, MDR, Endpoint, Identity, Cloud Apps, Office 365, Sentinel)
• 3 years of experience with Identity Management (Entra ID, Active Directory, Conditional Access)
• Working experience with Intune and Group Policies (GPO) configuration management
• Working experience with MFA infrastructure (Microsoft and Duo)
• Working technical knowledge of Windows OS hardening, perimeter security, firewall services, web application firewalls. PAN knowledge a plus
• Strong technical knowledge of cloud computing standards (Azure preferred)
• Strong understanding of IP, TCP/IP, and other network administration protocols.
• Strong understanding of security training needs
• Familiarity with NIST, CIS, PCI, DSS standards

Perks & Benefits
Our employees enjoy a state of the art, energy-efficient, open work environment that nurtures collaboration and creativity. At the WCIRB, we go the extra mile to keep our employees happy and healthy. 

Proud to be recognized as a Plan Sponsor of the Year finalist for our commitment to retirement readiness through strong 401k and pension offerings.

Some of our perks include: 

• Hybrid work environment (40% onsite 60% remote)
• Medical, dental and vision benefits
• Competitive PTO Program
• Wellness benefits 
• 401K and pension plan
• Social activities
• Community volunteer involvement
  

WCIRB is an equal opportunity employer committed to an inclusive workplace that fosters belonging. All qualified applicants will receive consideration for employment without regards to race, color, religion, sex, sexual orientation, gender identity, national origin, disability status, protected veteran status, age, genetic information, or any other basis prohibited by law. We also consider qualified applicants with criminal histories consistent with applicable federal, state and local law.

The successful candidate will reside in California and will work from our headquarters in San Francisco at least 40% of the time. We are NOT able to pay for relocation costs for candidates or to sponsor or take over sponsorship of an employment Visa at this time. Thank you for your interest in the WCIRB!