SECURITY ENGINEER, SENIOR in Boulder, Colorado | The GEO Group
Company Description
BI is one of the leading technology companies in Boulder, Colorado and the largest provider of innovative electronic monitoring solutions in the United States. We excel at proving technological solutions to over 1,000 agencies nationwide and allowing those agencies to fulfill their missions without worrying about the technical complexities.
Role Description
The Senior Security Engineer, is a technical role and engineering team lead, responsible for ensuring the confidentiality, integrity, and availability of BI Inc. computer systems. This individual leads security engineering technical activities and ensures the successful designs, deployments and monitoring of security tools and services. This role provides subject matter expertise, advice and guidance to deliver and support IT systems throughout the organization.
Minimum Requirements:
- Bachelor’s Degree in Information Systems, Computer Science or related field or equivalent experience.
- At least five years’ experience in IT
- At least four years’ experience in Cybersecurity
- US citizenship required.
- Ability to receive client’s approval to work on contract required.
- Must live in the US 3 of the last 5 years (military and study abroad included).
- Security-related certifications, CISSP or ability to obtain within six months of hire.
- Proficiency in security engineering, computer & network security, authentication, security protocols, and applied cryptography.
- In-depth knowledge of cloud computing platforms and ability to secure them.
- In-depth knowledge of network and security principles, systems, hardware.
- In-depth knowledge of encryption and secure communications.
- In-depth knowledge of TCP/IP, DNS, and networking systems.
- In-depth knowledge of UNIX/Linux, Windows Server, and PaaS/SaaS Applications.
- Strong adherence to processes and accountability to mitigate risk.
- Demonstrates integrity, good judgement, honesty, reliability, and strong work ethic.
- Commitment to lifelong learning and skill development, with a willingness to share knowledge with others.
- Dedication to providing excellent customer service to internal stakeholders and colleagues.
- Ability to work effectively as a part of a collaborative team, championing a culture of shared responsibility for cybersecurity.
- Ability to work with computers and the necessary software typically used by the department.
Primary Duties & Responsiblities
- Leads the effort and take charge of Information Security stack; SIEM, XDR, Vulnerability Management, IAM, Email Security, and more to align with contractual requirements and business objectives.
- Assists the compliance team to ensure BI adheres to applicable laws and regulations and select security frameworks such as FISMA, FedRAMP, DHS 4300A, SOX, PCI-DSS, and other frameworks based on contractual or business requirements.
- Drives the Vulnerability Management program with a risk-based approach to achieve compliance with security policies and reduce risk to the organization.
- Aids internal team members on security-related issues and champion alignment with organizational security objectives.
- Supports the Change Control process by reviewing submitted changes and providing risk analysis to the Change Advisory Board and other stakeholders.
- Leads the creation, prioritization, and execution of security projects, ensuring timely completion and alignment with organizational goals.
- Ensures work is documented thoroughly, kept current, and aligns with security policies and procedures.
- Conducts audits in alignment with the compliance team and provides metrics and reports as needed to support leadership.
- Contributes to the development of internal security testing and monitoring processes, educating stakeholders on evolving risk and security technologies.
- Collaborates with leadership and other departments throughout the company to identify and address security risk, promoting a proactive approach to risk management.
- Ensures the knowledge and understanding of how security integrates into the business.
- Conducts threat hunting and monitor activities for potential security risks that could impact BI
- Takes appropriate actions based on identified Indicators of Attack (IoAs) and Indications of Compromise (IoCs).
- Stays abreast of emerging technologies and trends, and shares knowledge and insights with team members, other departments, and leadership.
- Drives a culture of inter-team development, continuous improvement, and upskilling of team members and colleagues.
- Collaborates with the compliance team to address compliance mandates and contractual obligations through policy development and process improvement.
- Performs other duties as assigned.
This is a hybrid role, and is on-site Tue-Thur.
Pay Range: $125,000 - $140,000
Great benefits
- 15 holidays per year
- 15 PTO days per year
- 401k + match
- ESPP after 1 year
- Healthcare
- more