Information Security Engineer, Corp IT

Information Security Engineer, Corp IT(Direct Hire)

San Francisco, CA or New York, NY or Austin, TX 

Job Requisition: 7550

Description for Information Security Engineer, Corp IT:

The Information Security Engineer, Corporate IT is responsible for protecting an organization’s digital and physical assets, ensuring secure access, and maintaining a strong security posture across all corporate systems. This role focuses on implementing and enforcing Zero Trust principles, monitoring security threats, responding to incidents, and managing vulnerabilities. The engineer also develops automation for security operations, provides guidance and training to staff, and ensures compliance with internal security policies and regulatory standards. 

Responsibilities for Information Security Engineer, Corp IT:

• Implement and enforce security controls for digital and physical access across corporate systems.
• Monitor security events using EDR, MDR, and SIEM tools, and respond to incidents as they arise.
• Conduct regular vulnerability assessments and coordinate remediation with IT and business teams.
• Develop, maintain, and automate security processes using SOAR, IaC, or scripting tools.
• Design and deliver engaging security awareness training and documentation for all staff.
• Assist internal teams with security-related questions and enforce best practices across the organization.
• Support data loss prevention initiatives and ensure sensitive information is adequately protected.
• Collaborate with governance, risk, and compliance teams to align systems with security policies and regulatory frameworks.

Requirements for Information Security Engineer, Corp IT:

• 7+ years of experience in information security, corporate IT security, or a related field.
• Hands-on experience with modern EDR, MDR, and SIEM platforms.
• Strong understanding of Zero Trust principles, identity governance, and role-based access controls.
• Proven ability to create and deliver security awareness programs for non-technical audiences.
• Experience managing incident response, vulnerability remediation, and threat monitoring.
• Familiarity with data loss prevention, compliance standards (SOC 2, ISO 27001, NIST 800-53, FedRAMP), and hybrid IT environments.
• Scripting or automation skills (Python, PowerShell, Bash) for security task automation.
• Excellent verbal and written communication skills, with the ability to manage security projects independently.