Principal Security Engineer - Rockland Trust
Plymouth, MA 02360
About the Job
JOB SUMMARY:
Reporting to the Manager of Security Engineering, the Principal Security Engineer will provide leadership in the design, implementation, and management of the organization’s security tools and practices to ensure the protection of sensitive data, systems, and applications. This role requires expertise in a broad range of security technologies and tools, including endpoint security, identity governance, firewalls, cloud security, and privileged access management.
In this role, you will oversee technical projects, lead incident response efforts, and recommend strategies to enhance the organization’s overall security posture while aligning with business goals.
This position requires the ability to be on call and available 24x7 as needed to support the organization during security incidents, critical upgrades, or other time-sensitive issues, ensuring continuous protection of the organization’s systems and data.
The Principal Security Engineer also collaborates closely with cross-functional teams, including network engineering, security, IT operations, and compliance, to identify risks, implement proactive solutions, and respond to security threats effectively. This position also plays a pivotal role in mentoring junior security team members and providing guidance on best practices.
RESPONSIBILITIES:
Security Architecture & Engineering:
- Provide technical leadership for the design and implementation of security tools.
- Develop and maintain secure configurations for systems and applications, including firewalls and SIEM solutions.
- Ensure integration and optimal use of identity governance tools and privileged access management tools.
Threat Detection & Response:
- Act as a key player in supporting the organization’s incident response process, identifying and mitigating security incidents via the appropriate tools.
- Oversee the management of email security systems to prevent phishing, spoofing, and other threats.
Cloud & Endpoint Security:
- Lead the implementation of endpoint and cloud security solutions, to secure the organization’s hybrid environment.
- Monitor and manage the security around file transfer systems to ensure data integrity and confidentiality.
Vulnerability Management & Risk Mitigation:
- Administer vulnerability scanning and patch management programs.
- Conduct security risk assessments and recommend remediation strategies to address identified gaps.
Collaboration & Leadership:
- Collaborate with IT, Network, Security and Application teams to develop secure architecture and ensure compliance with security standards.
- Provide training and mentorship to junior security staff, fostering knowledge sharing and growth within the team.
- Partner with stakeholders to ensure all systems align with regulatory and compliance requirements.
Policy & Process Development:
- Contribute to the development and enforcement of security policies, procedures, and standards across the organization.
- Stay updated on emerging threats, technologies, and best practices to continuously enhance the organization’s security measures.
Project Management:
- Oversee security-related projects, ensuring alignment with organizational priorities and on-time delivery.
- Participate in cross-functional initiatives to ensure security considerations are addressed during the planning and implementation phases.
QUALIFICATIONS/REQUIREMENTS:
- Bachelor’s degree in Computer Science, Information Security, or a related field, or equivalent experience in a security-focused role.
- Minimum of 8 years of experience in IT security, including 4 years in a senior or lead role.
- Demonstrated expertise with a variety of security tools and technologies, including endpoint protection, vulnerability management, firewalls, identity management, and data protection solutions.
- Hands-on experience with SIEM tools and endpoint security solutions.
- Strong understanding of cloud security principles and experience with cloud monitoring tools.
- Proficiency in Active Directory and Privileged Access Management solutions.
- Proven track record of leading security incident response and vulnerability management efforts.
- Excellent communication, documentation, and presentation skills.
- Relevant certifications such as CISSP, CISM, CEH, or related credentials are strongly preferred.
ADDITIONAL SKILLS:
- Strong project management and leadership skills, with the ability to oversee multiple concurrent projects.
- Demonstrated ability to communicate effectively with technical and non-technical stakeholders.
- Commitment to staying current with industry trends and emerging threats.
Our goal is to offer our colleagues the most generous benefits package possible. We strive to provide colleagues with a comprehensive benefits package and an environment that supports a healthy work-life balance. Benefits include: Competitive compensation with performance incentive awards, Health Insurance, Dental Insurance, a 401K and DC Plan for your retirement, LTD & Life Insurance, Day Care Reimbursement, Tuition Assistance for graduate and undergraduate programs, an award winning Wellness program and much more!
At Rockland Trust you'll find a respectful and inclusive environment where everyone is given the chance to succeed. We are an equal opportunity employer and all qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, marital status, national origin, disability status, protected veteran status, or any other characteristic protected by law.
Reasonable accommodations may be made to enable individuals with disabilities to perform the essential functions.