Vessco Water

Senior Security Engineer

Vessco Water  •  Chanhassen, MN (Hybrid)  •  4 hours ago
Apply
AI can make mistakes so check important info. Chat history is never stored.

Job Description

*This is a hybrid position based in Chanhassen, MN; candidates must be able to work on-site as required, and relocation assistance is not available.*

We are a family of companies providing innovative water treatment solutions and services to customers across the United States. As one of the nation’s largest full-service water treatment equipment distributors, we support every segment of the water and wastewater treatment industry. Our companies represent industry-leading equipment manufacturers and are recognized as leaders within their respective markets. Together, we offer a comprehensive product portfolio, value-added design support, and aftermarket parts and services to both municipal and industrial customers.

The Senior Security Engineer serves as the technical lead for Vessco Water’s Information Security Program. This role is responsible for the design, implementation, administration, and continuous improvement of security technologies, security operations, vulnerability management processes, and technical security controls across the organization.

The Senior Security Engineer owns key security platforms and serves as the primary technical resource for security engineering, security operations, incident response, and security assessments. This role partners closely with infrastructure, applications, platform companies, business stakeholders, and third-party vendors to protect organizational assets, support acquisition activities, reduce risk, and improve overall security maturity.

This position also provides technical leadership in the secure adoption of emerging technologies, including Artificial Intelligence (AI), helping establish security guardrails, governance practices, and technical controls that enable the business to safely leverage AI capabilities while reducing organizational risk.

KEY DUTIES AND ESSENTIAL FUNCTIONS:

Security Platform Ownership

· Serve as primary administrator and technical owner for enterprise security platforms, including Arctic Wolf, end point EDR, email security technologies, and other security tools.

· Design, implement, and maintain security capabilities within the Microsoft cloud ecosystem, including Microsoft Defender, Microsoft Purview, Microsoft Intune, Microsoft Entra ID, Conditional Access, and related Microsoft security technologies.

· Maintain and optimize security monitoring, detection, and response capabilities.

· Manage security platform configurations, integrations, upgrades, and operational health.

· Evaluate and recommend new security technologies and capabilities.

· Develop and maintain platform standards, procedures, and documentation.

· Leverage automation and AI-enabled capabilities to improve security operations, threat detection, incident response, and overall program effectiveness.

Security Operations and Incident Response

· Monitor, investigate, and coordinate response to security alerts and incidents.

· Act as primary responder for tickets, alerts, and investigations generated by the organization’s third-party Security Operations Center (SOC).

· Perform security analysis to determine root cause, scope, impact, and remediation requirements for security events.

· Coordinate containment, eradication, recovery, and post-incident activities.

· Partner with managed security providers and technology teams to ensure timely remediation of security events.

· Lead vulnerability management activities, including identification, prioritization, tracking, and remediation coordination.

· Validate effectiveness of security controls through testing and review activities.

· Develop operational processes that improve security visibility and response effectiveness.

· Participate in incident response planning, tabletop exercises, and continuous improvement activities.

Security Assessment and Risk Management

· Lead post-acquisition and post-close security assessments for newly acquired companies.

· Develop and execute security integration plans for newly acquired companies, including identity, endpoint protection, email security, logging, vulnerability management, and Microsoft 365 security controls.

· Conduct internal security assessments, technical reviews, and risk evaluations.

· Document findings, recommendations, and remediation plans.

· Track remediation efforts and validate completion of corrective actions.

· Support cybersecurity due diligence activities related to mergers and acquisitions.

· Assess security risks associated with new technologies, applications, cloud services, and AI-enabled solutions.

· Partner with Infrastructure and Enterprise Applications teams to standardize security controls while supporting the organization's operating company model.

Security Engineering

· Design, implement, and maintain technical security controls.

· Support secure architecture and design reviews for infrastructure, cloud, application, and business initiatives.

· Develop automation and process improvements to increase operational efficiency.

· Participate in security-related projects and technology implementations.

· Assist with development and implementation of security standards and technical guidelines.

· Partner with technology teams to embed security requirements into enterprise solutions and operational processes.

Information Security Program Support

· Serve as the technical lead for the Information Security Program.

· Lead the technical evaluation of AI-enabled technologies, ensuring appropriate governance, data protection, access controls, and compliance with organizational security standards.

· Partner with business leaders to enable secure adoption of Microsoft Copilot and other approved AI technologies while mitigating security and privacy risks.

· Identify opportunities to leverage AI capabilities to enhance threat detection, security operations, vulnerability management, and other security functions.

· Partner with business and technology teams to integrate security requirements into operational processes and projects. · Support audit, compliance, and risk management activities.

· Assist with development and maintenance of security policies, standards, and procedures.

· Provide technical security guidance and subject matter expertise across the organization.

SUPERVISORY RESPONSIBILITIES:

· No direct reports.

· May coordinate activities of third-party vendors, consultants, managed security providers, and contract resources.

· Will provide technical leadership and mentoring to team members and project participants.

REQUIRED QUALIFICATIONS:

· Bachelor’s degree in Information Security, Cybersecurity, Information Technology, Computer Science, or related field, or equivalent professional experience.

· 8+ years of experience in cybersecurity, security engineering, security operations, incident response, or related technical security roles.

· Experience administering enterprise security technologies and platforms.

· Experience performing security assessments, vulnerability management, and incident response activities.

· Experience working with Microsoft Azure and Microsoft 365 security technologies, including Microsoft Defender, Microsoft Purview, Microsoft Intune, and Microsoft Entra ID.

· Strong understanding of security principles, frameworks, and industry best practices.

· Strong technical understanding of cybersecurity technologies and controls.

· Knowledge of endpoint protection, email security, vulnerability management, SIEM, identity security, cloud security, and security monitoring technologies.

· Ability to analyze security risks and recommend practical mitigation strategies.

· Strong troubleshooting and problem-solving skills.

· Ability to manage multiple priorities and projects simultaneously.

· Effective written and verbal communication skills.

· Ability to communicate effectively with technical and non-technical stakeholders.

· Strong documentation, organizational, and analytical skills.

· Ability to lead technical investigations and coordinate cross-functional response activities.

PREFERRED QUALIFICATIONS:

· Experience with Arctic Wolf, Sophos, Securence, and Microsoft security technologies.

· Experience securing Microsoft 365 environments in organizations with multiple business entities, acquisitions, or decentralized operating models.

· Experience working with managed security service providers (MSSPs).

· Experience supporting organizations pursuing or maintaining CMMC compliance.

· Security certifications such as CISSP, GIAC, Security+, CySA+, GSEC, Azure Security Engineer Associate, or equivalent.

· Experience with security automation, scripting, and AI-enabled security technologies.

Compensation: $160-180k - dependent on experience and qualifications

PHYSICAL DEMANDS AND WORK ENVIRONMENT:

While performing the duties of this job, the employee is regularly required to sit. The employee frequently is required to talk or hear. The employee is occasionally required to stand and use hands to finger, handle, or feel objects, tools or controls. The employee must occasionally lift and/or move up to 10 pounds. Specific vision abilities required by this job include close vision, distance vision, peripheral vision, depth perception, and the ability to adjust focus. Standard office environment. While performing the duties of this job, the employee is occasionally exposed to fumes or airborne particles. The noise level in the work environment is minimal.

BENEFITS:

  • Health insurance

  • 401(k)

  • Dental insurance

  • Life insurance

  • Paid time off

  • Vision insurance

  • Dog-friendly office!

We are an Equal Opportunity Employer. We are committed to creating an inclusive environment for all employees. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability, protected veteran status, or any other characteristic protected by applicable federal, state, or local laws.

#VesscoWater

#LI-Hybrid

#LI-DL

Vessco Water

About Vessco Water

Vessco Water is a family of companies that brings innovative, synergy based water solutions and services to our customers around the United States. We are one of the largest full-service water treatment equipment distributors in the nation with equipment specialties covering every segment of the water and wastewater treatment industries.

Industry
Consulting & Advisory
Company Size
51-200 employees
Headquarters
Chanhassen, Minnesota
Year Founded
2018
Social Media