Consumers Energy is Michigan’s largest energy provider, providing natural gas and/or electricity to 6.8 million of the state’s 10 million residents in all 68 Lower Peninsula counties. Consumers Energy knows job number one is to keep the lights on for customers. We are committed to delivering reliable, clean, and affordable energy to our customers 24/7.
Location: This is a hybrid (virtual/onsite) position with required onsite days on Monday, Tuesday and Thursday assigned to the One Energy Plaza Service Center located in Jackson, MI. The selected candidate must be within a commutable distance or willing to relocate (relocation package is available for those that qualify).

KNOWLEDGE/SKILLS/ABILITIES

• Excellent written and verbal communication skills to influence technical and non-technical stakeholders
• Strong leadership and mentoring abilities with a focus on team development
• Demonstrates excellent teamwork and embodies the virtues of being humble, hungry, and people smart Professional Standard
• Expert-level knowledge of security architectures, and defensive strategies
• Subject matter expertise in at least two of the following Security domains Identity Services, Automation, Network Security Services, Security Engineering, Application Security and Penetration Testing, Vulnerability Management
• Advanced troubleshooting skills with the ability to navigate complex systems and resolve critical issues efficiently
• Strategic thinking and decision-making capabilities in high-pressure scenarios

EXPERIENCE & EDUCATION

• Bachelor’s degree in Cyber Security, Computer Science, or Information Technology with 10+ years of hands-on experience in Information technology, cybersecurity, computer networks, or systems engineering [OR]
• Associate’s degree in Cyber Security, Computer Science, or Information Technology with 12+ years of hands-on experience in Information Technology, cybersecurity, computer networks, or systems engineering [OR]
• High school diploma or GED with 14+ years of hands-on experience in Information Technology, cybersecurity, computer networks, or systems engineering
• 4+ years of practical expertise with technologies such as: AAA Services, Active Directory, Application Control, Asset Discovery, Asset Discovery and Inventory Management, Azure AD, CI/CD Platforms, DDOS protection, DLP, Dynamic Application Security Testing (DAST), Email Security, Endpoint Detection and Response, Firewalls, IaC Security, Logging, Multifactor Technologies, NAC, Networking Protocols, Scripting Languages, Secure Code Analysis (SCA), Secure Development Practices, Security Assessment & Testing, Security Configuration Assessment (SCA), SOAR tools, SSO, Static Application Security Testing (SAST), Threat Intelligence, Vulnerability Management, VPN, Web Proxy

GENERAL SUMMARY OF JOB RESPONSIBILITIES

The Senior Principal Security Engineer will support the organization’s most critical security initiatives, serving as a technical expert and strategic leader. This role involves architecting, implementing and operating secure systems, designing scalable defenses, and leading response efforts to mitigate threats and risks. The ideal candidate will demonstrate mastery across one or more security domains, including infrastructure, network, identity, communication with business partners and incident response, while mentoring teams and shaping the future of our security strategy.

ESSENTIAL DUTIES AND RESPONSIBILITIES

• Architect, implement, operate and maintain comprehensive security solutions for systems, networks, and applications, ensuring they are resilient to emerging threats
• Lead and participate in complex incident response and problem solving efforts, coordinating across teams to analyze root causes, mitigate impacts, and implement long-term solutions
• Develop and optimize security controls by implementing technologies and process changes to ensure business objectives are met in line with security requirements
• Evaluate and deploy security tools and platforms in at least one of the following Security domains Identity Services, Automation, Network Security Services, Security Engineering, Application Security and Penetration Testing, Vulnerability Management, to improve visibility, detection, and response capabilities across the organization
• Engage, lead, and/or mentor other Security employees, including associate engineers and career engineers
• Conduct threat modeling and risk assessments to identify vulnerabilities, recommend mitigations, and design controls to address risks effectively
• Collaborate with cross-functional teams, including development, IT, and the business, to embed security best practices throughout the system lifecycle
• Stay informed about emerging threats, vulnerabilities, and technologies, providing strategic recommendations to strengthen the organization’s security posture
• Automate security processes where possible, leveraging scripting and SOAR platforms to enhance efficiency and consistency in incident response and vulnerability management
• Other non-essential duties as assigned or may be necessary