PulteGroup, Inc. is seeking a Security Engineer responsible for designing, implementing, and maintaining security controls to protect the organization from cyber threats. The role involves collaborating on IT and security projects, identifying vulnerabilities, and enhancing the company’s security posture.
Understands and implements company’s information security strategy.
Identifies potential security risks and vulnerabilities and develops strategies to mitigate those risks.
Stays up to date with emerging threats and technologies in the field of cybersecurity and applies knowledge gained to improve the organization’s security posture.
Identifies, defines, and documents system security requirements and recommends solutions.
Configures, troubleshoots, and maintains security software, tools, and services including cloud security, vulnerability management, email security, security information and event monitoring (SIEM) tools, and endpoint protection.
Develops, executes, and tracks the performance of security controls and measures to protect data and information systems.
Installs and configures tools and software that monitor systems and networks for security breaches and intrusions.
Develops scripts, tools, and procedures to automate scans, assessments, and other monitoring and discovery activities.
Evaluates and makes recommendations for process and tool optimization.
Uses strong knowledge of attack techniques to develop and implement detection capabilities for indicators of compromise.
Monitors systems for irregular behavior and sets up preventive measures.
Performs forensic analysis and escalation for identified threats.
Evaluates vulnerabilities published by third party vendors or other media, assesses risk to the company and determines best course of action.
Educates and trains staff on information security. Advocates security and secure practices.
Participates in Information Security team on-call as assigned (after hours, weekends, holidays) or when security events require immediate response.
Performs other duties as assigned.
Qualification
Required
Cloud Security concepts, tools, and policies
Identity and Access Management
Security Information and Event Management (SIEM)
Endpoint Protection tools
Next Gen Firewalls, Network security & IPS
Cybersecurity Frameworks (NIST, ISO)
Privileged Access Management
Vulnerability Management
Requires practical knowledge of area typically obtained through advanced education combined with experience.
Typically requires a university degree or equivalent experience and minimum 2-4 years of prior relevant experience.
