JOB TITLE: Information Security Engineer
JOB TYPE: Direct-Hire
LOCATION: Philadelphia, PA – Hybrid
START DATE: August/September 2026
SHIFT: Monday–Friday, first shift
We are seeking an Information Security Engineer to strengthen and operate a complex enterprise security environment. This hands-on role covers security engineering, monitoring, vulnerability reduction, incident response, identity, endpoint, network, cloud, and data protection technologies.
RESPONSIBILITIES- Deploy, configure, maintain, and enhance security platforms across endpoint, network, cloud, identity, messaging, and data environments.
- Administer security controls such as firewalls, EDR, SIEM, IAM, privileged access, DLP, vulnerability tools, intrusion detection, and zero-trust technologies.
- Review security events, investigate suspicious activity, and respond to confirmed or suspected incidents.
- Support containment, recovery, forensic analysis, root-cause determination, and corrective action following security incidents.
- Manage vulnerability activities from scanning and prioritization through remediation coordination, reporting, and verification.
- Evaluate systems, applications, integrations, and infrastructure changes for security impact and recommend technical improvements.
- Review evolving threats and introduce safeguards or technologies that reduce risk.
- Automate repeatable security tasks, reporting, and response processes through scripting or similar technical methods.
- Lead security projects and provide technical support for broader technology initiatives.
- Maintain procedures, standards, configurations, and supporting materials required for audits and security reviews.
QUALIFICATIONS- At least four years of hands-on experience in security engineering, security operations, SOC work, incident response, digital forensics, or a related area.
- Practical experience deploying, configuring, administering, and improving enterprise security tools and controls.
- Technical depth in at least two areas, including identity, network, cloud, endpoint, vulnerability management, SIEM, data protection, or digital forensics.
- Experience with technologies such as firewalls, EDR, SIEM, IAM, PIM/PAM, DLP, vulnerability scanners, intrusion detection, or zero-trust platforms.
- Experience investigating security events and supporting containment, recovery, root-cause analysis, and remediation.
- Experience managing vulnerability scanning, prioritization, remediation tracking, reporting, and validation.
- Knowledge of networking and security protocols, including TCP/IP, SSH, SSL/TLS, HTTP, GRE, and IPSec.
- Experience with authentication and access technologies such as Active Directory, SAML, SSO, 802.1X, passwordless authentication, PIM, or PAM.
- Knowledge of security standards and frameworks such as NIST CSF, ISO 27001, SOC 2, CIS Controls, or OWASP.
- Bachelor's degree in a related technical discipline or an equivalent combination of education and professional experience.
EOE STATEMENT:
We are an equal opportunity employer. We do not discriminate or allow discrimination on the basis of race, color, religion, creed, sex (including pregnancy, childbirth, breastfeeding, or related medical conditions), age, sexual orientation, gender identity, national origin, ancestry, citizenship, genetic information, registered domestic partner status, marital status, disability, status as a crime victim, protected veteran status, political affiliation, union membership, or any other characteristic protected by law.