Security Engineer in Rolling Meadows, IL at MYR Group Inc.

Date Posted: 2/12/2021

Job Snapshot

Job Description

Company Overview

With roots dating to 1891 and approximately 7,100 employees, MYR Group Inc. subsidiaries provide large-scale electrical construction services throughout the U.S. and western Canada. Throughout our history, we have delivered some of the largest electrical infrastructure and notable commercial and industrial projects, and have been consistently recognized as one of the top five specialty electrical contracting firms by Engineering News-Record.

The Security Engineer helps shape, plan, and carry out an organization’s information security strategy. Acting as technology implementer, incident responder, and business interface, the Security Engineer is a bridge between technology and diverse business functions to ensure the confidentiality, integrity, and availability of the information assets of the MYR Group, Inc family of companies.

Duties

MYR Group is looking for a bright, experienced threat hunter to defend and continuously improve Enterprise defenses while maintaining up to date on attack vectors and the techniques of threat actors. The Security Engineer responds to security issues in applications and systems, identifies, evaluates and remediates threats, and works with others to complete larger scope changes in a planned, deliberate manner.

Daily

  • Individually implement, and/or coordinate the activities of others to remediate vulnerabilities and detected threats.
  • Collaborates with network, infrastructure, application, and other security staff in implementing consistent security safeguards and controls throughout the organization including firewalls, VPNs, and other solutions
  • Monitors and evaluates organizational security posture
  • Coordinates with other security staff and provides second-level support for security operations
  • Provides technical support to system owners to propose mitigation and remediation solutions to identified vulnerability and security issues.

Weekly / Monthly

  • Actively participates in periodic security reviews. Manages remediation activities.
  • Tracks and reports overall organizational security health
  • Ensures compliance with the organization’s information security policies and procedures among employees, contractors, and other third parties and refers problems to appropriate department managers or administrators
  • Supports and increases organizational information security awareness through education programs and communications

As occurs

  • Leads or coordinates breach response activities: assesses scope, escalates and communicates issues upstream as appropriate
  • Performs or provides direction and guidance to other staff in performing configuration changes to network or security devices
  • Participates in the evaluation process of subcontractors, vendors, suppliers and partners.

Annually / Rarely

  • Participate in the organization’s disaster recovery and business continuity exercises
  • Evaluates and helps shape the organizational security program, policies, standards, and compliance actions
  • Initiates and manages third party vulnerability assessments, evaluates the assessments for validity, and develops strategies and solutions to improve organizational security posture

Job Requirements

Experience, Education, and Skills Requirements

Bachelor degree or equivalent experience in Computer Science, Computer Security, Networking, or related discipline. Minimum 8 years technical experience managing enterprise technologies in a business environment of greater than 1000 end users.

Required Knowledge and Skills

  • Expert knowledge of Windows Server, Active Directory, GPO, DNS, DHCP, RADIUS, Citrix and Windows Remote Desktop environments, WSUS, MECM
  • Excellent analytical ability, consultative skills, strong judgment and the ability to work effectively in a collaborative, cross-functional, multi-disciplinary, team environment
  • A Cloud mindset
  • Ability to characterize vulnerabilities and threats and provide remediation advice. Familiarity with classes of vulnerabilities, appropriate remediation, and industry-standard classification schemes (CVE, CVSS, CPE).
  • Expert understanding of enterprise network architecture and solutions, including switching, Firewalls, Routing, LAN/WAN design, SIP and VPN technologies.
  • At least one professional Security certification: CISSP, CISA, CISM, GSEC, GIAC, etc. or the ability to acquire within 6 months.
  • Ability to communicate with authority, tact, brevity, sensitivity, and clarity
  • Prior experience successfully securing the Office 365 environment

Preferred consideration will be given to candidates with experience with:

  • Current or prior Industry Technical Certification – MCSA, MCSE, CCNA, CCNP, Network+, etc.
  • SIEM experience: (AlienVault, LogRhythm), experience with email security systems: (ProofPoint, Cisco ESA/CES)
  • Network vulnerability management, penetration testing, and incident response.
  • Disaster Recovery, Business Continuity and other applicable data replication services
  • Structured change management, security compliance environments
  • Familiarity with applicable regulations, frameworks and methodologies: HIPAA, PCI, NERC-CIP, SOC-II, SSAE-16, NIST 800-53; COBIT, SOX, GLBA, FIPS, or others.
  • Basic familiarity with other solutions: JD Edwards E1, SolarWinds, Varonis, Forescout

Employee Benefits

  • Weekly pay via direct deposit
  • Comprehensive benefits package
    • Medical, dental, & vision
      • $15 weekly premium for employee only & employee plus family coverage
      • Low deductibles and out-of-pocket maximums
    • Flexible spending accounts
    • Company-paid short and long-term disability
    • Company-paid life and accidental death & dismemberment
    • Supplemental life and accidental death & dismemberment
    • Critical illness & accident plans
    • Identity theft protection
    • Group legal
    • Auto & homeowners
  • Generous 401(k) Plan
    • 100% match up to 6%; immediate vesting
    • Annual profit-sharing potential
  • Paid time off
    • Vacation
      • Tiered increases based on tenure with the company
    • Holidays (8 per year)
    • Sick time (as applicable)
  • Superior educational assistance program

Competitive salary commensurate with experience ($90,000-$120,000). Posted salary ranges are made in good faith. MYR Group reserves the right to adjust ranges depending on the qualifications of the selected candidate. Participation in the Company bonus programs for each plan year are subject to management recommendation and internal committee review.

Apply at: www.myrgroup.com. If you require an accommodation to complete the online application, please call our Employment Hotline at 1-855-635-1321.

MYR Group Inc. and its subsidiaries are Equal Opportunity Employers. Employment decisions are made without regard to race, color, religion, national or ethnic origin, sex, sexual orientation, gender identity or expression, age, disability, protected veteran status, or other characteristics protected by law.

To all recruitment agencies, MYR Group and its subsidiary companies do not accept agency resumes unless they are from an approved vendor and submitted through our Third-Party Recruiter Portal. Please do not forward resumes to our jobs alias, company employees, or any other company location. MYR Group nor its subsidiary companies are responsible for any fees related to unsolicited resumes.