We are seeking an experienced Security Engineer to join our dynamic cybersecurity team at Crescent Energy. As a Senior Security Engineer, you will play a crucial role in safeguarding our organization's digital assets, infrastructure, and data from security threats and vulnerabilities. This is a hands-on technical role that requires a deep understanding of cybersecurity best practices, threat detection and mitigation, and a strong commitment to keeping our systems secure.
Essential Duties and Responsibilities:
-
Security Architecture: Collaborate with cross-functional teams to design and implement robust security solutions, ensuring the confidentiality, integrity, and availability of our systems and data.
-
Vulnerability Management: Conduct regular security assessments, vulnerability scans, and penetration testing to identify and address security weaknesses.
-
Incident Response: Collaborate with team on incident response efforts, including investigating security incidents, coordinating with relevant stakeholders, and implementing remediation measures.
-
Security Awareness: Promote a culture of security awareness throughout the organization by conducting training sessions, creating awareness campaigns, and keeping the team updated on emerging threats.
-
Security Policies and Procedures: Assist with development and enforcement of security policies, standards, and procedures to ensure compliance with industry regulations and best practices.
-
Security Monitoring: Assist with implementing and managing security monitoring tools and systems to detect and respond to security incidents in real-time.
-
Security Research: Stay up to date with the latest security trends, SEC requirements, vulnerabilities, and technologies to continuously improve the organization's security posture.
-
Collaboration: Collaborate with IT/OT teams, DevOps, and other stakeholders to integrate security into the development and deployment processes.
-
Afterhours: After hours availability required as needed.
Knowledge, Skills & Abilities:
- Experience with security technologies
- In-depth knowledge of network security, endpoint security, and cloud security.
- Excellent communication and interpersonal skills, with the ability to work effectively in a team environment.
- Strong understanding of security compliance standards such as NIST, or CIS.
- Strong problem-solving skills and the ability to make decisions under pressure.
Education and Experience:
- Bachelor’s degree in computer science, Information Security, or a related field. Master's degree or relevant certifications (e.g., CISSP, CISM, CEH) is preferred.
- Proven experience in a Senior Security Engineer or similar role with at least 8 years of hands-on experience in cybersecurity.
- Experience with security assessment tools, penetration testing, and vulnerability management.