This job listing has expired and the position may no longer be open for hire.

Sr. Security Engineer, Threat and Vulnerability Management at Ferguson Experienced in Newport News, Virginia

Posted in General Business 30+ days ago.

Type: Full-Time

Job Description:

Job Description:

The Security Solution Delivery Team is responsible for implementing security services to the global enterprise.  This spans CyberThreat Prevention, Identity and Access Management, Network, Data, and Application Security.  This specific position is a technical role on the Security Solution Delivery Team that will participate in the implementation of Security related technical solutions.  

Responsible for making moderate to significant improvements of processes and systems, to enhance the performance and experiences of our internal and external customers.  Problems and issues faced are numerous and undefined, and require detailed information gathering, analysis, and investigation to understand challenges and to identify opportunities.  Problems can be difficult and moderately complex, potentially impacting all operating companies.  Solutions are typically drawn from business knowledge, technical understanding, and prior experience.

Security Delivery and Engineering (75%)

  • Serves as technical resource on various initiatives.

  • Establishes and maintains good working relationships with all customers.

  • Interfaces with third party vendors to deliver Security solutions.

  • Understands customer objectives and develops strategies that map to security service offerings.

  • Advocates for new/enhanced Network Security services on behalf of customers.

  • Contributes requirements to technology selection process.

  • Provides technical stewardship for Network Security service offerings.

Security Process Improvement and Organizational Alignment (25%)

  • Document various aspects of Security Service Delivery, in support of Service Management Teams.

  • Identify and lead opportunities to engage, educate, and coordinate other stakeholders, upon which Security and its processes depend.

  • Understand Security and company objectives and develop support strategies and how they map to Security Service Offerings.

Qualifications and Requirements

Prior Experience

Six (6) years or more relevant technical engineering experience and/or Technical background within Information Security or security-related infrastructure, preferably in various Threat and Vulnerability Management technologies such as enterprise firewalls, SIEM, IPS, antimalware, CASB, etc. 

Technical and Professional Skills

  • Ability to organize and prioritize work.

  • Ability to work on cross-functional teams.

  • Ability to work with all levels of the organization: Executives to developers.

  • Application of logic, reasoning, and problem solving.

  • Strong ability to work with time/date deadlines.

  • Ability to efficiently operate computers, tablets and mobile devices. 

  • Applies in-depth advanced knowledge (principles, theories, and concepts) and skills of a specific/specialized technical area within the context of a similar industry or type of organization.

  • Must be self-motivated, proactive, creative, and efficient in identifying issues, understanding and proposing solutions.

  • Has broad experience/understanding of IT operations and service delivery model.

  • Builds and maintains good working relationships.

  • Excellent written, oral, instructional, presentation, and interpersonal skills.

  • Specializes in engineering Threat and Vulnerability Management technologies and processes.

  • Experienced with Windows and Linux operating systems.

  • Demonstrates strong leadership qualities that can be used to guide a project.

  • Possesses ability to efficiently operate computers, tablets, and mobile devices.

  • Has advanced knowledge of Microsoft Office software (Outlook, Word, Excel, PowerPoint, Access, etc.)

  • Certifications not required, but firewall and/or IPS vendor certification, SSCP (Systems Security Certified Practitioner), or CISSP (Certified Information Systems Security Professional) desirable.

  • Improves and/or adapts work methods based on past personal experiences without the benefit of defined procedures and identifies solutions to problems through interpretive skills and analyses.

  • Knowledge and experience using Agile and Waterfall project methodologies.



The Company is an equal opportunity employer as well as a government contractor that shall abide by the requirements of 41 CFR 60-300.5(a), which prohibits discrimination against qualified protected Veterans and the requirements of 41 CFR 60-741.5(A), which prohibits discrimination against qualified individuals on the basis of disability.