Senior Engineer, Cybersecurity

The Senior Engineer, Cybersecurity provides advanced technical and engineering expertise to support the design, integration, and implementation of cybersecurity solutions across the BIC enterprise. This role partners closely with IT Security, Infrastructure, DevOps, and Application teams to deliver guidance, Tier‑3 engineering support, platform integrations, and security enhancement recommendations.

The Senior Engineer translates security strategy, risk assessments, and regulatory requirements into practical, scalable security engineering and implementation guidance, enabling BIC to strengthen its cybersecurity posture while supporting the business objectives. The role defines security outcomes and deliverables, and ensures solutions are implemented as designed, achieve intended risk‑reduction objectives, and are operationally sustainable post‑deployment. This includes producing engineering artifacts, supporting solution rollout, validating control objectives, and recommending enhancements based on post‑implementation.

Security Engineering Advisory & Design Support

• • Provide engineering guidance and reference designs across identity, endpoint, cloud, network, data, and application security domains
  • Support project teams by conducting secure engineering and design reviews for high‑risk or business‑critical initiatives (e.g., SAP enhancements, cloud migrations, third‑party integrations)
  • Advise system and application owners on security design tradeoffs, control placement, and engineering considerations
  • Serve as an escalation point for complex security design or integration challenges
  • Recommend enhancements to security technologies, controls, policies, and standard operating procedures to continuously strengthen the organization’s security posture

Zero Trust Identity & Access Architecture Enablement

• • Support identity and access security initiatives by advising on Zero Trust access patterns, conditional and privileged access strategies, and device trust models
  • Provide implementation guidance to identity, endpoint, and infrastructure teams related to Multifactor Authentication (MFA) expansion, Mobile Device Management (MDM) compliance, and secure Bring Your Own Device (BYOD) approaches
  • Recommend enhancements to identify solutions that improve resilience, access security, and visibility

Vulnerability Management & Control Integration Advisory

• • Support vulnerability management activities by advising on tool integration, risk‑based prioritization approaches, and remediation workflows
  • Assist technology owners in evaluating technical mitigations, compensating controls, and residual risk
  • Recommend improvements based on vulnerability trends, threat intelligence, and engineering analysis
  • Validate that approved remediation strategies and compensating controls are effectively implemented post‑deployment

Secure Software Development & Platform Security Advisory

• • Partner with the Manager, Security DevOps Engineer, to provide engineering‑level guidance for secure software development initiatives
  • Advise on security control integration within Continuous Integration/Conditional Deployment (CI/CD) pipelines, cloud platforms, and development workflows
  • Recommend security enhancements that reduce risk while minimizing impact to development velocity

Risk, Compliance, & Framework Implementation Support

• • Translate security assessments, risk findings, and framework requirements (e.g., NIST CSF, ISO 27000 series) into technical implementation guidance and phased improvement recommendations
  • Support audit and assessment activities by providing engineering artifacts, technical explanations, and implementation evidence
  • Advise leadership and project teams on security design considerations in regulated or high‑risk environments
  • Support post‑implementation reviews to confirm control objectives are met and provide recommendations where outcomes fall short

Mentorship & Knowledge Sharing

• • Mentor security analysts and engineers on advanced security concepts, thinking, and engineering best practices
  • Develop technical standards, design documentation, and implement playbooks to promote consistency and maturity across security initiatives

Education Level

• • Bachelor's degree (or equivalent experience) in Computer Science, Cybersecurity, Information Systems, or related field.
  • Master's degree (or equivalent experience) in Cybersecurity, Information Systems, or related field Preferred

Experience Level 

• • 7+ years of experience providing senior‑level cybersecurity architecture or engineering support in enterprise environment
  • 7+ years of experience advising on the design, implementation, and integration of enterprise cybersecurity technologies across multiple domains (e.g., identity, endpoint, cloud, application, and infrastructure security)
  • 5+ years of experience translating security strategy, framework requirements (e.g., NIST CSF), and risk findings into practical security designs and implementation guidance
  • 5+ years of experience operating as a technical advisor and escalation point (Tier‑3) for complex security design, integration, or implementation challenges
  • 5+ years of experience working in complex enterprise or regulated environments, supporting multiple technology and business stakeholders

Licenses & Certifications

• • CISSP, CISM, or comparable certifications
  • Microsoft Security or Azure Security certifications Preferred

Software/Technical Skills

• • Knowledge of:
    • Identity and access management technologies
    • Endpoint and device security concepts
    • Vulnerability management tools and security frameworks
    • Zero Trust Identity & Access Architecture
    • SIEM/SOAR and XDR platforms
    • Scripting or automation (e.g., PowerShell, Python) Preferred

Other Skills/Knowledge/Abilities 

• • Strong written and verbal communication skills
  • Ability to influence and collaborate across technical and non-technical teams 
  • Strong analytical, engineering, and problem-solving skills 
  • Ability to manage multiple initiatives and priorities concurrently

This role will be a hybrid role. Subject to business needs, employees may work remotely up to two days per week. Assigned office days will be determined by your manager. #LI-Hybrid

Base Salary

• • The targeted base salary range for this position is $125,000 - $145,000 per year.
  • Base salary is determined by the education, experience, knowledge, skills, and abilities of the successful candidate, as well as factors such as internal equity, cost of labor in the hiring location, and alignment with market data.

Additional Compensation

• • This position is eligible for a 5% bonus at 100% of target, with the opportunity to achieve above 100% dependent on company performance and in alignment with company bonus plans.
  • Bonus awards are discretionary and contingent upon individual performance as well as Brother achieving its corporate objectives, in accordance with the applicable bonus plan in effect.