Title: IT Security Engineer
Salary: 150K – 190K
Schedule is on-site: Monday – Friday 8 / 5
No recruiters, direct applicants only.
Job Summary
The IT Security Engineer is responsible for designing, implementing, and maintaining security measures to safeguard the organizations IT assets. They will identify vulnerabilities, protect against threads, and ensure compliance with security policies, procedures and regulations.
Key Responsibilities
Security Design & Implementation:
—Develop and implement security policies, procedures, and controls.
—Design and deploy security solutions such as firewalls, intrusion detection/prevention systems, and encryption technologies.
Vulnerability Management:
—Perform regular vulnerability assessments and penetration testing.
—Review logs and reports to Identify security weaknesses and recommend remediation strategies.
Incident Response:
—Monitor security events and respond to incidents in a timely manner.
—Conduct forensic investigations and create detailed incident reports.
Risk Assessment:
—Assess and analyze risks to the organization’s IT assets.
—Develop strategies to mitigate potential threats and ensure business continuity.
Compliance & Governance:
—Ensure adherence to industry standards and regulations (e.g., CCPA/CPRA, ISO 27001).
—Conduct security audits and provide recommendations for compliance improvements.
Collaboration & Training:
—Work closely with IT team members and others to integrate security into the organization’s systems and processes.
—Provide training and guidance to staff on security best practices and awareness.
Documentation & Reporting:
—Maintain detailed records of security incidents, system configurations, and security policies.
—Prepare security reports for management and stakeholders.
Qualifications:
—Education: Bachelor’s degree in computer science, Information Technology, or a related field.
—Certifications: CISSP, CISM, CEH, or Security+ highly desirable
—Experience: 10+ years of experience in an IT security or similar role
Skills:
—Familiarity with security frameworks i.e. NIST, ISO 27001
—Knowledge of network protocols, encryption and security architectures
—Hands-on experience and proficiency with security systems, firewalls, EDR/XDR, SIEM, and IDS/IPS
Personal Attributes:
—Analytical Thinking: Ability to analyze complex problems, identify root causes, and develop effective solutions.
—Detail-Oriented: Attention to detail and a commitment to maintaining high standards of quality.
—Adaptability/Flexibility: Ability to adapt to changing project requirements and adjust focus as necessary.
This job description is not intended to be all-inclusive, and the employee will also perform other reasonable related business duties as assigned by immediate supervisor and other management as required. This job description does not constitute a written or implied contract of employment.

[https://www.americanassetstrust.com/applicant-privacy] (https://www.americanassetstrust.com/applicant-privacy)

[Applicant Privacy Disclosure – American Assets Trust] (https://www.americanassetstrust.com/applicant-privacy)