Badger Infrastructure Solutions

Apply for this job

Information Security Engineer (Finance)



Job Description

The Information Security Engineer role is critical to protecting the organization's data, systems, and infrastructure from evolving security threats. The Information Security Engineer ensures proactive defense through system management, vulnerability assessment, and incident response. By implementing and managing robust security solutions, this position helps safeguard business continuity and maintain regulatory compliance.

The compensation for this role will be commensurate based on education and/or experience.

What You Will Be Doing

  • Deploys, manages, and optimizes enterprise-wide security tools and platforms (ISPM, IAM, IGA, PAM, EDR/XDR, SIEM, DLP, vulnerability management, etc.).
  • Conducts vulnerability assessments and leads remediation efforts across systems, networks, and cloud services.
  • Monitors for threats, investigate incidents, and performs forensic analysis using tools such as Rapid7 and Microsoft Defender XDR.
  • Supports compliance with regulatory and internal frameworks, including SOX, NIST CSF, and PCI-DSS.
  • Leads evidence collection and documentation for internal investigations or audits in coordination with HR and Legal.
  • Provides security guidance for IT projects and application development to ensure best practices are followed.
  • Creates and delivers security awareness training and phishing simulations using platforms such as KnowBe4.
  • Stays informed on emerging threats and recommends new security technologies or process improvements.
  • Champions a security-first culture and act as a mentor to others in the organization.
  • Performs other duties as assigned to support team and organizational objectives.

What We Are Looking For
  • A degree in Information Technology, Cybersecurity, Computer Science, or a related field is not required, but may be considered in combination with professional experience to meet the overall qualifications.
  • Certification(s) preferred. Microsoft (SC-100/200/300/400, AZ-500), (ISC)2, ISACA, SANS/GIAC,
  • 5+ years in an Information Technology role, including 2+ years in an Information Security role.
  • Preferred technical qualifications: M365 Administration, M365 Defender, Microsoft Purview, Microsoft Azure, Microsoft Orchestrator, Rapid 7 IDR, Rapid 7 VM, Sophos EDR/XDR, KnowBe4 Training Platform, Abnormal AI, PowerShell.
  • Familiarity with regulatory/compliance standards (SOX, NIST CSF, PCI-DSS).
  • Demonstrated ability to write scripts (e.g., PowerShell) for automation and response.
  • Strong troubleshooting, analytical, and problem-solving skills.
  • Demonstrated ability to take initiative, be action-oriented, and drive results independently.
  • A self-motivated approach with strong ownership and accountability for work.
  • Technical proficiency coupled with a growth mindset and eagerness to continuously learn.
  • On-site presence required during normal business hours for collaboration and secure access.

What You Will Get In Return

  • Generous salary and bonus program(s)
  • Low-cost Medical, Dental, and Vision insurance
  • Retirement plan with employer matching contributions
  • Attractive vacation programs
  • Inclusive Group Life Insurance
  • Supportive Employee Assistance Program (EAP) that allows for covered behavioral health visits
  • Rewarding employee referral program
  • Valuable employee training program(s)

Responsibilities

The Information Security Engineer role is critical to protecting the organization's data, systems, and infrastructure from evolving security threats. The Information Security Engineer ensures proactive defense through system management, vulnerability assessment, and incident response. By implementing and managing robust security solutions, this position helps safeguard business continuity and maintain regulatory compliance.

The compensation for this role will be commensurate based on education and/or experience.

What You Will Be Doing

  • Deploys, manages, and optimizes enterprise-wide security tools and platforms (ISPM, IAM, IGA, PAM, EDR/XDR, SIEM, DLP, vulnerability management, etc.).
  • Conducts vulnerability assessments and leads remediation efforts across systems, networks, and cloud services.
  • Monitors for threats, investigate incidents, and performs forensic analysis using tools such as Rapid7 and Microsoft Defender XDR.
  • Supports compliance with regulatory and internal frameworks, including SOX, NIST CSF, and PCI-DSS.
  • Leads evidence collection and documentation for internal investigations or audits in coordination with HR and Legal.
  • Provides security guidance for IT projects and application development to ensure best practices are followed.
  • Creates and delivers security awareness training and phishing simulations using platforms such as KnowBe4.
  • Stays informed on emerging threats and recommends new security technologies or process improvements.
  • Champions a security-first culture and act as a mentor to others in the organization.
  • Performs other duties as assigned to support team and organizational objectives.

What We Are Looking For
  • A degree in Information Technology, Cybersecurity, Computer Science, or a related field is not required, but may be considered in combination with professional experience to meet the overall qualifications.
  • Certification(s) preferred. Microsoft (SC-100/200/300/400, AZ-500), (ISC)2, ISACA, SANS/GIAC,
  • 5+ years in an Information Technology role, including 2+ years in an Information Security role.
  • Preferred technical qualifications: M365 Administration, M365 Defender, Microsoft Purview, Microsoft Azure, Microsoft Orchestrator, Rapid 7 IDR, Rapid 7 VM, Sophos EDR/XDR, KnowBe4 Training Platform, Abnormal AI, PowerShell.
  • Familiarity with regulatory/compliance standards (SOX, NIST CSF, PCI-DSS).
  • Demonstrated ability to write scripts (e.g., PowerShell) for automation and response.
  • Strong troubleshooting, analytical, and problem-solving skills.
  • Demonstrated ability to take initiative, be action-oriented, and drive results independently.
  • A self-motivated approach with strong ownership and accountability for work.
  • Technical proficiency coupled with a growth mindset and eagerness to continuously learn.
  • On-site presence required during normal business hours for collaboration and secure access.

What You Will Get In Return

  • Generous salary and bonus program(s)
  • Low-cost Medical, Dental, and Vision insurance
  • Retirement plan with employer matching contributions
  • Attractive vacation programs
  • Inclusive Group Life Insurance
  • Supportive Employee Assistance Program (EAP) that allows for covered behavioral health visits
  • Rewarding employee referral program
  • Valuable employee training program(s)
Apply
Apply Here done