Senior IT Security Engineer

About Us

Americold is a global provider of temperature-controlled infrastructure. We partner with farmers and food producers to ensure their perishable and frozen product reaches foods suppliers, restaurants, and your local grocery store without spoilage. Our customers, which include some of the most respected brands in the food industry, rely on our expertise and commitment to safety in order to deliver on their commitments.

What You'll Do

Primary Responsibility: This role is responsible for evaluating, developing, monitoring, and maintaining creative and innovative solutions to protect Americold systems from unauthorized access and information loss. This would include implementing and maintaining information security processes and procedures related to access control (MFA, PAM, SSO, etc.), application security, cloud security, data security (DLP, Encryption, FIM/FAM, SIEM, etc.), endpoint security (AV, HIPS, MDM, Patching, etc.), and network security (firewalls, IPS, NAC, WAF, etc.). Additional duties would include incident response and guiding security standards, processes, and procedures to ensure the security of the overall environment.Essential Functions:•     Performs information security risk assessments of internally developed solutions and cloud-based solutions and services by partnering with business teams to identify secure solutions to business problems.•     Works with the Infrastructure Team to deploy strategic security projects from end-to-end, reviewing network & firewall configurations to implement segmentation.•     Performs security scans and security testing to identify vulnerabilities and proposes solutions to mitigate identified issues by implementing security technology solutions for prevention of unauthorized access and detection of security events, investigating security breaches both actual and possible, and responds accordingly to contain and recover from any security incidents. •     Supports multiple security technologies and platforms both on premise and cloud based by identifying current and potential future vulnerabilities and collaborating with appropriate leaders to identify, recommend, and develop risk remediation plans.•     Deploys new security tools or services and configure with follow-up or oversight by Manager, Information Security and Enterprise Security Architect.•     Evaluates vendor security controls to ensure continued information security and compliance standards; authors and reviews security technology and process standards and policies based on business needs and requirements.

What Experience You Need

Qualifications & Experience:•     5 years demonstrated information technology experience with focus in areas such as systems, network, mobile, and/or application security, designing and implementing information security and network security architectures, or demonstrated experience with administration, design and implementation of security controls including experience in applying methodologies and principles for various levels of security.•     Hands-on experience and proficient with at least two (2) or more security technologies such as cloud security (AWS, Azure, CASB), data security (DLP, Encryption, FIM/FAM, SIEM, etc.), endpoint security (AV, HIPS, MDM, Patching, etc.), network security (firewalls, IPS, NAC, WAF, etc.), access control (MFA, PAM, SSO, etc.), or other relevant technology.•     Bachelor’s Degree (Information Systems, Computer Science, Engineering) or equivalent degree preferred with an information security emphasis preferred, or equivalent relevant experience.

•     Demonstrated knowledge of various industry security standards and organizations necessary to maintain knowledge of current trends, contacts, and security enhancements.•     Familiarity with one (1) or more types of information security frameworks such as ISO 27000 series, CIS Controls, NIST 800-171, or other similar technologies.Physical Requirements & Abilities:The physical demands described below are representative of those that must be met to successfully perform the essential functions of the job. Reasonable accommodation may be made to enable individuals with disabilities to perform the essential functions of the job.•     Must be able to sit for long periods of time, with frequent interruptions, with the ability to maneuver through the process of sitting, getting up and down from chairs, reaching, or bending.•     Must be able to demonstrate manual dexterity with hand and finger movements for typical office work. •     Must be able to verbally communicate, audibly understand and comprehend, and visually identify the important elements of completing assigned tasks.•     May require travel by automobile and airplane.•     May require a visit to facility operations in temperatures at or below freezing.•     May carry loads related to travel and occasionally lift, carry, position, or move objects weighing up to twenty (20) pounds.•     Demonstrated ability to identify and solve problems in a fast-paced environment where deadlines and scopes may change regularly while maintaining accuracy. Demonstrated ability to self-start with little or no direction preferred. •     Must be able to relate to others beyond giving and receiving instructions sufficient to partner with colleagues without exhibiting behavioral extremes.Americold is an Equal Opportunity/Affirmative Action Employer.EOE/AA M/F/D/V DFW.

What Could Set You Apart

• Strong Understanding of Data Discovery and IT/OT Asset Discovery softwares.

What We Offer

Our associates know the answer to the question What’s in it for me? We offer best-in-class benefit programs and continuously work with our associates to ensure that our offerings meet the needs of their health and financial well-being. When you join Americold you join a values-oriented company with a clear mission. We help our customers feed the world.

 

Americold is an Equal Opportunity/Affirmative Action Employer.

EOE/AA M/F/D/V DFW.

Compensation Minimum

Compensation Maximum

Responsibilities:

Primary Responsibility:This role is responsible for evaluating, developing, monitoring, and maintaining creative and innovative solutions to protect Americold systems from unauthorized access and information loss. This would include implementing and maintaining information security processes and procedures related to access control (MFA, PAM, SSO, etc.), application security, cloud security, data security (DLP, Encryption, FIM/FAM, SIEM, etc.), endpoint security (AV, HIPS, MDM, Patching, etc.), and network security (firewalls, IPS, NAC, WAF, etc.). Additional duties would include incident response and guiding security standards, processes, and procedures to ensure the security of the overall environment.Essential Functions:•     Performs information security risk assessments of internally developed solutions and cloud-based solutions and services by partnering with business teams to identify secure solutions to business problems.•     Works with the Infrastructure Team to deploy strategic security projects from end-to-end, reviewing network & firewall configurations to implement segmentation.•     Follows secure best practices, investigating, documenting, and assisting with implementing security best practices for both corporate and warehouse environments, and implementing security technology solutions for prevention of unauthorized access and detection of security events.•     Performs security scans and security testing to identify vulnerabilities and proposes solutions to mitigate identified issues by implementing security technology solutions for prevention of unauthorized access and detection of security events, investigating security breaches both actual and possible, and responds accordingly to contain and recover from any security incidents. •     Supports multiple security technologies and platforms both on premise and cloud based by identifying current and potential future vulnerabilities and collaborating with appropriate leaders to identify, recommend, and develop risk remediation plans.•     Deploys new security tools or services and configure with follow-up or oversight by Manager, Information Security and Enterprise Security Architect.•     Evaluates vendor security controls to ensure continued information security and compliance standards; authors and reviews security technology and process standards and policies based on business needs and requirements.•     Maintains knowledge of current and emerging security, compliance, and technical developments and promotes security best practices via awareness, example, and compliance with policies and regulatory requirements.•     Performs other duties and responsibilities as needed, as assigned, or as requested.