CDW is partnering with a client to fill a new Security Engineer opportunity. This role is responsible for leading key elements of the cybersecurity program and enhancing the organization’s security posture while managing security operations and incident response.
Responsibilities:
- Serve as the primary point of contact for the SOC, guiding alert response strategies, escalation handling, and incident reviews
- Oversee the configuration, optimization, and performance of key cybersecurity platforms (EDR, SIEM, email security, vulnerability management, etc.)
- Develop and track key cybersecurity performance metrics and contribute to internal risk reporting and trend analysis
- Contribute to security risk assessments and track remediation activities across business units
- Maintain and support incident preparedness efforts, including documentation and occasional tabletop exercises. Coordinate after-action reviews as needed
- Drive global security governance efforts, including oversight of product security and connected technologies (IoT), and provide guidance across cross-functional teams
- Maintain and evolve internal security policies, operational playbooks, and technical standards
- Collaborate with IT and business teams to ensure secure architecture, system hardening, and alignment with security best practices
- Participate in the evaluation, selection, and onboarding of new security tools and vendors
- Supervise and mentor cybersecurity team members, providing technical guidance and professional development
- Support internal audit, compliance, and regulatory readiness activities
- Evaluate and monitor security controls of third-party partners and service providers to ensure alignment with security standards
- Help cultivate a culture of security awareness and accountability across the organization
Requirements:
- Minimum of 5 years in cybersecurity or information security, including at least 2 years in a technical management role
- Familiarity with managing SOC operations
- Strong knowledge of security frameworks such as NIST CSF, ISO 27001, CMMC, and familiarity with threat modeling tools such as MITRE ATT&CK
- Relevant cybersecurity certifications such as CISSP, GSEC, or CISM
- In-depth understanding of regulatory compliance requirements such as GDPR, PCIDSS, and CMMC
- Strong knowledge of networks, server and cloud infrastructures, on-premises and cloud-based identity platforms, and application services, including SaaS apps like Microsoft 365
- Experience with security architecture, risk management, vulnerability management, and incident response
- Strong communication skills for cross-functional collaboration and reporting
- Ability to synthesize technical data into actionable plans
- Certifications from virtualization, cloud services, security, and network vendors are a plus