Job Details

We are seeking a Senior Information Security Engineer / Analyst with more than six years of experience safeguarding enterprise systems and data. The ideal candidate will have advanced expertise in firewalls, IPS/IDS, vulnerability management, incident response, risk and security assessments, and scripting (PowerShell, Python, VB Script). This role requires hands-on leadership in SIEM, SOC tools, cloud security, Zero Trust Network Access (ZTNA), and compliance with industry frameworks such as NIST, CIS, and SOC 2.
Key Responsibilities

Lead administration of firewalls, IPS/IDS, SIEM platforms, and SOC tools.

Oversee vulnerability management programs and ensure timely remediation.

Direct incident response activities, including investigation, containment, and lessons learned.

Perform and supervise risk assessments and security assessments.

Design and implement Zero Trust Network Access (ZTNA) models.

Manage cloud security controls, encryption technologies, and key management.

Develop and enforce change management and configuration management practices.

Script automation for monitoring, remediation, and reporting using PowerShell, Python, or VB Script.

Ensure compliance with NIST, CIS, and SOC 2 frameworks.

Provide mentorship to junior analysts and collaborate with business leaders on security strategy.

Mandatory Skills

Advanced expertise in firewalls, IPS/IDS, vulnerability management, and remediation.

Strong hands-on experience with incident response, risk assessment, and security assessment.

Proficiency with scripting (PowerShell, Python, VB Script) for automation.

Experience with DevOps security practices.

Strong knowledge of SIEM platforms, SOC tools, and log management.

Expertise in cloud security, encryption methods, and secure architecture.

Proven knowledge of compliance frameworks: NIST, CIS, SOC 2.

Practical experience implementing ZTNA in enterprise environments.

Desirable Skills

Leadership experience managing or guiding Security Operations Center (SOC) teams/tools.

Familiarity with threat intelligence platforms and advanced detection techniques.

Knowledge of penetration testing, red team/blue team operations.

Experience with disaster recovery and business continuity planning from a security perspective.

Ability to develop security roadmaps and influence enterprise security strategy.

Strong communication and leadership skills to engage both technical and executive stakeholders.

Department Technology Role Client Locations Chicago Remote status Hybrid