IT Security Engineer
(Multiple states)
Full Time
Mid Level
PRINCIPLE CHOICE SOLUTIONS
IT Security Engineer
IT Security Engineer
POSITION PURPOSE
The IT Security Engineer plays a critical role in protecting Principle Choice Solutions’ digital assets and ensuring compliance with cybersecurity frameworks such as NIST 800-171. This role is responsible for designing and implementing security controls, monitoring threats and vulnerabilities, and leading initiatives to improve the organization’s security posture. The engineer will also support audit readiness, employee training, and strategic security planning for our Cloud SaaS infrastructure.
ORGANIZATION
This position reports to the IT Security Manager.
ESSENTIAL FUNCTIONS
- Design and implement security controls across cloud and on-premises environments.
- Monitor and configure systems for threats and vulnerabilities with expertise in the following tools: Microsoft Security Suite, Secure Web Gateways, SEIM, and other industry standard security tools.
- Strong knowledge with practical application around CI/CD Pipelines and maintaining security within Infrastructure as code deployments.
- Lead compliance assessments and documentation efforts for NIST 800-171, CMMC, NIST 800-53, and HIPAA frameworks.
- Modify and maintain the current system security plans (SSPs), POA&Ms, and other compliance artifacts.
- Provide security input for procurement and vendor risk assessments.
- Deliver security awareness training and support secure development practices.
- Manage the full lifecycle of security projects—from planning to implementation, including reporting to leadership.
- Stay current on emerging threats, vulnerabilities, and technologies.
- Provide on-call support as needed.
- Perform other duties as assigned.
KNOWLEDGE & EXPERIENCE
- Minimum 5 years of experience in an IT security role.
- Minimum 3 years of experience with secure web gateways and endpoint protection platforms.
- Minimum 3 years practical application with encryption technologies and mobile device security.
- Minimum 2 years working with standardized cybersecurity frameworks such as: NIST 800-171, 800-53, CMMC, HIPAA.
- Excellent communication and documentation skills.
- Ability to analyze risk and present findings to technical and non-technical stakeholders.
- Certification required Microsoft Identity and Access Administrator Associate or Microsoft Azure Security Engineer Associate
- CISSP or CISM highly recommended for this role.
- Must be a U.S. citizen; work sponsorship is not available.
MACHINES & EQUIPMENT
The incumbent must be able to effectively operate the current computer system, telephone system, and other office machines such as a copier.
PHYSICAL REQUIREMENTS
Must be able to lift and carry up to 20 pounds. Must be able to talk, listen, and speak clearly on the telephone.
WORKING CONDITIONS
The incumbent works in an office environment that is not substantially exposed to adverse environmental conditions such as heat, cold, or extreme noise. Routine periods of being on the phone utilizing a headset, sitting and data keying are required. Periodic times working at the office site may be required.
Security and privacy training will be provided as part of this role to protect the confidentiality, integrity, and availability of PCS’ associate and customer data.
The above statements are intended to describe the general nature of work being performed by people assigned to this classification. They are not intended to be construed as an exhaustive list of all responsibilities, duties and skills required of personnel so classified.
Principle Choice Solutions is an equal opportunity employer, and all qualified applicants will receive consideration for employment without regard to race, color, religion, age, sex, parental status, national origin, disability, genetic information, political affiliation, protected veteran status, sexual orientation, gender identity or expression, or any other non-merit-based factors or characteristic protected by federal, state, or local laws.
Apply for this position
Required*