For Earth For Life
Telecommute Eligible: Weekly, In-Office is Required for this role. HQ: Grapevine, TX

MINIMUM QUALIFICATIONS

• High School diploma or GED required.
• Bachelor’s degree in information security, computer science, or computer engineering preferred:
• In lieu of a degree at Least 10 years of IT Security Experience specifically with security systems required.
• With a degree at least 7 years of IT Security Experience specifically with security systems required.
• Proficiency in security architecture principles so as to promote and develop new designs and security strategies across all types of infrastructure including cloud, on-prem & cloud-based applications.
• Experience with Microsoft Azure Security operations.
• Thorough understanding of industry standard security tools.
• Technology product engineering experience in Linux and Windows.
• Thorough knowledge of regulatory requirements (i.e., PCI, HIPAA, GLBA, SOX) and security frameworks (e.g., NIST CSF, OWASP, CSA cloud control matrix, MITRE etc.)
• Proficiency in Threat Intelligence and Security Operations processes and procedures.
• Knowledge of application security concepts, static/dynamic security analysis, software composition analysis, secrets management, WAF, RASP and related tools.
• Proficiency with vulnerability management, endpoint security, data protection technologies, SIEM deployments, security analysis and anomaly detections.

PHYSICAL REQUIREMENTS:

Typical office environment.

The Security Engineer will assist Kubota North America (KNA) in delivering secure platforms by providing security services to KNA and its affiliates. This role is primarily responsible for implementing, maintaining, and operating platforms that secure KNA and affiliate technologies and solutions related to the following key areas:

• Endpoint Security
• Network Security
• Cloud Security
• Endpoint and Mobile Device Security

PRINCIPAL ACTIVITIES: This position does the following in accordance with all applicable Federal, State, and local laws / regulations and the Company’s policies, procedures, and guidelines:

• Implement, maintain, and operate security tools including but not limited to SIEM, DLP, EDR, VM, GRC, RASP, IAST, WAF, etc
• Review and prioritize security test results from security tools and propose appropriate remediation measures or mitigation controls.
• Troubleshooting and resolving complex security issues, applying fundamental systems security understanding, skills, expertise, and experience to support the planning, design, development, and implementation of complex systems.
• Work closely with various IT teams to provide guidance on security weaknesses and refine & enhance the security strategy for KNA and affiliate infrastructure.
• Work with KNA architects and IT to define and build the processes necessary to protect KNA and affiliate infrastructure from common threat vectors, OWASP vulnerabilities, and security & compliance misconfigurations in Microsoft Azure and on premise environments.
• Actively engage and foster relationships with security champions on business and IT teams to understand their needs and evangelize security and privacy culture.
• Research and investigate cyber threats and security incidents
• Active participation in ensuring KNA meets industry standard security & privacy compliance standards.
• Build knowledge across the team in how to better secure, monitor, and respond to cybersecurity threats and incidents.
• Maintain current knowledge of security threats and vulnerabilities that could impact products and their technology stack components and help product teams identify solutions that meet security requirements.
• Other duties as assigned by management.