Senior Security Engineer – Cloud

by | Nov 3, 2021 | Uncategorized

Employer: KinderCare

About KinderCare Education®

KinderCare Education operates more than 1,380 early learning centers, and more than 560 Champions sites, supported by a corporate team of nearly 600 headquarters employees in Portland, Oregon. In 2019, KinderCare Education earned their third Gallup Great Workplace Award – one of only 39 companies worldwide to win this award.

  • In neighborhoods with ourKinderCare®Learning Centersthat offer early childhood education and child care for children six weeks to 12 years old
  • At work through KinderCare Education at Work™, family benefits for employers including on-site and near-site early learning centers and back-up care for last-minute child care
  • In local schools with ourChampions®before and after-school programs.

Job Summary:

KinderCare Education is searching for an influential, energetic team member for its Information Security organization. In this role, you will have a unique opportunity to help plan and implement KCE’s security strategy. You will be the administrator of security tools such as CrowdStrike, Tenable and Splunk, as well assist with implementation of new security tools. This role will also ensure the proper security controls are in place and verify through monitoring. As well, they will work closely with our MSP to manage our Security Info Event Management platform, tune monitoring and alerting, and respond to events.

You are the ideal team member if you are passionate about strengthening security by working cross-functionally to identify and correct vulnerabilities in the company’s security systems, solutions, and programs while recommending specific measures that can improve the company’s overall security posture. As KinderCare’s Security Engineer, you are part of the team responsible for maintaining and monitoring our security systems; you will work with your peers to secure both online and on-premise systems, weeding through metrics and data to filter out suspicious activity, and finding and mitigating risk.

Other key skills will include attention to detail, focus on data quality, familiarity with IT General Controls, COBIT5, ISO, CIS or NIST. The Security Engineer role will report directly to the head of Information Security.

Key responsibilities include:

  • Work with business units to identify security requirements.
  • Collaborate on critical IT projects to ensure that security issues are addressed throughout the project life cycle.
  • Work with IT department and members of the information security team to identify, select, and implement technical controls.
  • Develop security processes and procedures and supports service-level agreements (SLAs) to ensure that security controls are managed and maintained.
  • Evaluate, recommend, and implement information-security-related hardware and software, including developing business cases for security investments.
  • Provide systems administration on security tools to ensure proper security practices.
  • Research threats and vulnerabilities and take appropriate action to mitigate threats and remediate vulnerabilities.
  • Lead and facilitate the execution of the Vulnerability Management program.
  • Collate key security metrics, including incident and event data.
  • Assist in the coordination and completion of Information Security operations, monitoring, alerting and remediation.
  • Advise systems administrators on normal and exception-based processing of security authorization requests.
  • Provide second- and third-level support and analysis during and after a security event.
  • Assist system administrators and IT staff in the resolution of reported security events.
  • Participate in security investigations and compliance reviews, as requested by internal or external auditors.
  • Other duties as determined by management.

Qualifications

Key desired skills and experience:

  • Bachelor’s degree required.
  • 5 – 7 years in IT Security; 3 – 5 years systems administration.
  • Experience working with COBIT5 preferred. Knowledge of ISO27001 or NIST or other security Framework required. Preferred certification: CISSP CISM
  • Demonstrated experience developing ideas and executing on project plans
  • Success working cross-functionally with diverse teams
  • Ability to proactively take information and make recommendations on next steps
  • Superior organizational skills
  • Ability to work effectively under pressure and tight deadlines
  • Willingness to be flexible in schedule and duties
  • Ability to build and foster strong working relationships
  • Demonstrated experience developing ideas and executing on project plans
  • Excellent written and oral communication skills including a high level of attention to detail

Key desired strengths:

  • Ability to proactively take information and make recommendations on next steps
  • Superior organizational skills
  • Ability to work effectively under pressure and tight deadlines
  • Willingness to be flexible in schedule and duties
  • Ability to build and foster strong working relationships
  • Proficient computer skills required, with extensive knowledge of all Microsoft applications (Word, Excel, PowerPoint, Access, Outlook)

APPLY HERE