Senior Lead Engineer - IT Security

Description Job Summary The Security Engineer will assist in implementation, maintaining enterprise security solutions, and work to resolve end user issues to protect organizational assets and ensure compliance. This role focuses on operational configuration and ongoing maintenance for Zscaler, CyberArk Endpoint Privilege Manager (EPM), Microsoft Defender, BitWarden and other security assets in our environment. Key Responsibilities • Operational Setup & Configuration • Assist in maintaining Zscaler cloud proxy agents for secure traffic routing. • Maintain CyberArk EPM policies for least privilege enforcement. • Maintain Microsoft Defender for endpoint protection and threat detection. • Maintain BitWarden password vaulting for secure credential management. • Ongoing Maintenance & Monitoring • Perform health checks, updates, and patching for all security platforms. • Monitor logs, alerts, and performance metrics to maintain compliance. • Troubleshoot and resolve escalated technical issues related to endpoint security. • Design & Architecture • Assist with proof-of-concept configurations and contribute to tool selection. • Compliance & Governance • Assist with adherence to SOC, SOX, ISO, and internal security standards. • Assist with audit readiness and provide evidence for security assessments. • Collaboration & Training • Partner with IT and security teams to maintain solutions into enterprise workflows. • Assist and collaborate with support teams on operational security processes and best practices. • Continuous Improvement • Have an awareness of merging security technologies. • Assist with process optimization and assist in the implementation of compliant solutions.

Required Skills & Qualifications • Bachelor’s degree in Computer Science, Information Security, or related field. • 5+ years of general IT experience • 2+ years of experience in enterprise security engineering roles. • Hands-on experience with: • Zscaler (ZIA/ZPA configuration and policy management) • CyberArk EPM (least privilege enforcement and application control) • Microsoft Defender (endpoint protection, ATP, and threat analytics) • BitWarden or similar password vaulting solutions • Strong understanding of: • Network security principles and secure web gateway technologies • Endpoint hardening and privilege management • Threat detection and incident response processes • Familiarity with compliance frameworks (SOC, SOX, ISO 27001). • Excellent problem-solving and communication skills. Preferred Experience • Certifications such as CISSP, CISM, CEH, or vendor-specific (Zscaler Certified, CyberArk Certified). • Experience in cloud security and zero-trust architecture. • Knowledge of SIEM tools and integration with endpoint security platforms. • Proficiency in scripting (PowerShell) for automation.