Principal Security Engineer

3 days ago

Apply Now

Receive Emails with Similar Jobs

Echo Global Logistics

WebsiteLinkedInAll Job Openings

3PL • Technology-enabled transportation management • Managed Transportation • Less-than-truckload (LTL) • Truckload

1001 - 5000

Description

• The principal security engineer is responsible for leading the design, implementation, and maintenance of robust security architectures and frameworks to protect Echo’s critical assets, systems, and data. • The role demands deep expertise in cybersecurity technologies, risk management, and compliance. • The Principal Security Engineer serves as a leader in security, working closely with the Director of Information Security and cross-functional teams including Technology Operations, Engineering, and Technology Sourcing to define and enforce security policies and best practices. • The successful candidate will play a pivotal role in identifying potential security risks, responding to security incidents, and ensuring the organization is prepared to counter emerging threats. • Additionally, they will mentor and guide more junior team members, foster collaboration within the security team, and provide key inputs in developing and refining security strategies to meet the evolving threat landscape.

Requirements

• Understanding of secure coding practices, vulnerability assessments, common software vulnerabilities, and frameworks for communicating the same. • A meticulous approach to identifying vulnerabilities and flaws in systems and code. • Deep knowledge of network protocols, firewalls, VPNs, and intrusion detection/prevention systems. • Knowledge of encryption suites, key management, and secure comms protocols. • Experience in identifying, prioritizing, and mitigating enterprise security threats. • Experience in securing cloud infrastructure and services in production, at scale. • Knowledge of digital forensics tools and tactics. • Familiarity with ethical hacking testing tools and techniques. • Ability to detect, prioritize, analyze, and respond to security incidents effectively. • Ability to assess and prioritize security risks in alignment with business goals. • Skills in analyzing logs and other data to detect anomalies and potential threats. • Ability to build and execute plans that include security and other tech resources. • Ability to communicate security issues to stakeholders of at various levels in org. • Experience working with cross-functional teams to implement security controls. • Experience training, teaching, and providing mentorship on security best practices. • Strong decision-making skills, under pressure and with incomplete information. • Ability to advocate for security needs and influence leadership to support initiatives. • A forward-looking perspective to anticipate and address emerging security threats. • Knowledge of standards including ISO/IEC 27001, NIST, and CIS. • Ability to support audits to ensure compliance with legal and regulatory requirements.