BNSF RailwayRemote
Sr/Staff Cybersecurity Engineer (Remote - US)
United States of America
Full Time
3 hours ago
$165,000 - $300,000 USD
H1B Sponsored
Key skills
Data Loss PreventionIncident ResponsePythonJavazScalerMicrosoft PurviewSymantec DLPSplunkData Security PrinciplesEncryptionAccess ControlsGenerative AI SecurityTechnical program leadershipAIGenerative AILeadership
About this role
BNSF Railway is one of the largest U.S. railroads, dedicated to transporting freight across the nation. They are seeking a Sr/Staff Cybersecurity Engineer to lead their Data Loss Prevention program, ensuring the security of digital assets and infrastructure while contributing to the maturity of their security operations.
Responsibilities:
- Own the Stack: Serve as the primary engineer and administrator for our comprehensive data protection ecosystem, ensuring seamless integration across endpoints, network, and cloud perimeters
- Engineering & Threat Hunting: Write custom detection logic and queries to proactively hunt for data exfiltration risks and monitor cloud and on-prem environments
- AI Data Governance: Lead the integration of Data Loss Prevention capabilities to monitor and secure data flows for enterprise AI tools and LLMs
- Cross-Platform Integration: Architect data flows and policy enforcement between Email, Web, Messaging and other data exfiltration channels
- Program Rollout & Optimization: Drive the technical execution of the Data Loss Prevention program
- Incident Escalation: Act as the subject matter expert and top level escalation point for complex data security incidents
- Demonstrate operational excellence by monitoring, troubleshooting, and resolving production issues, including participating in a 24/7 on-call rotation
Requirements:
- Authorized to work in the US
- Minimum 5 years of experience in data loss prevention, incident response or related roles
- Bachelor's degree or higher in computer science, cybersecurity, or related field
- Proficiency in Python or Java for automation, scripting, and tool development
- Hands-on experience with Data Loss Prevention and Incident Response solutions (e.g. zScaler, Microsoft Purview, Symantec DLP, Splunk, etc.)
- Strong understanding of modern enterprise data flows and technology landscape
- Knowledge of data security principles including encryption, DLP, and access controls
- Proven ability to integrate disparate security tools into comprehensive solutions (e.g. automatically correlating events across several DLP solutions or setting up synchronized policies across a portfolio of tools)
- Experience or strong foundational understanding of how to secure data interactions with Generative AI applications and prompt-base systems
- Experience leading comprehensive technical programs
- Ability to translate highly technical data-flow concepts into clear risk assessments for business units and executive leadership
- Ability to work independently and collaboratively in cross-functional teams
- Passion for continuous learning and staying ahead of the threat landscape
- Able to work now and in the future without BNSF's assistance (whether monetary, through sponsorship, or otherwise) in obtaining, maintaining, or extending employment authorization (including H-1B, STEM OPT/CPT, or TN nonimmigrant status)