Req-58809 Platform Engineer - Security (Open)

Who we are looking for…

The Campbell's Company is looking for an senior-level Engineer – Information Security to join our critical and highly visible Information Security team.  This position will primarily be responsible for managing the lifecycle and effectiveness of key security tools and processes.  You will work closely with the Architecture and Risk Management teams to ensure that security controls are in place and appropriately managing risk throughout the Information Technology, Operational Technology, and Cloud environments.

What you will do…

Essential responsibilities will include but not be limited to:

• Design, deploy, and integrate security tools and processes
• Design, deploy, integrate Privilege Access Management (PAM) services for Linux and Windows environments
• Experience in developing, testing, and deploying ZeroTrust security strategies focused on identity, device, and network contexts
• Cloud (Azure / AWS) security engineering
• Develop and implement automation strategies tied to both administrative maintenance of the environment, as well as contribute to the overall detection engineering efficiency
• Active Directory security hardening

Job Complexity

• Manage multiple, concurrent project and task assignments, placing proper priorities on tasks and attention to detail to follow through all assignments to completion
• Create and manage the lifecycle of documentation to support the architecture and operations of security systems
• Continuously improve operational playbooks and knowledge transfer material to enable operational support teams to handle increasingly complex tasks to enable Engineering time is focused on the most valuable work
• Serve as an incident escalation point
• Provide thought leadership and communications expertise in the development of policies, standards, procedures, and other communication for the department
• Provide thought leadership on key performance indicators for measuring success objectively
• Integrate existing and new tools and supporting resources into our security intelligence platform, with the goal of deriving actionable data
• Keep current with the latest news and events surrounding cyber threats and security
• Evaluate new technologies and processes that enhance security capabilities

What you bring to the table… (Must Have)

• Bachelor’s degree in a computer science or information technology discipline
• 5+ years of relevant work experience, including:
• 2 years of experience as an Information Security Analyst with experience within at least two of the following disciplines: networking, system hardening, identity and access management, or privileged access management
• 1 year of experience in system or firewall administration
• Deep understanding of Linux identity engineering and administration
• 2 years of experience working with privileged access management platforms across Windows, Linux, network device, and containerized platforms
• Significant experience working with automation scripting leveraging at least 3 of the following: python, PowerShell, API based integrations, and no/low-code workflow automation platforms.
• Strong knowledge of L4-L7 protocols such as SSL, HTTP, DNS, SMTP, and IPsec
• Deep understanding of TCP/IP, computer networking, routing, and switching, and encryption technologies and standards
• Knowledge of identity and access management principles (SSO, MFA, ModernAuth)

It would be great if you have… (Nice to Have)

• CISSP certification is a plus
• Cloud security experience is a plus
• Conceptual understanding of the Cyber Kill Chain and MITRE ATT&CK framework
• Experience with Manufacturing environments is a plus
• Experience with leveraging LLM’s or statistical analysis to drive operational insights
• Strong capacity to understand vectors and the risks associated with them
• Experience with deploying and managing distributed architecture layer 7 firewalls
• Experience with IDS/IPS, penetration and vulnerability testing
• Strong security policy knowledge and experience
• Strong ability to clearly communicate and document complex concepts
• Data protection tools and processes – Data Loss Prevention [DLP], Rights Management Services [RMS], Cloud Access Security Broker [CASB]

More about the job…

• This position reports to the Senior Manager for Security Architecture and Engineering