At SpartanNash, relationships matter, and our Corporate team takes that sentiment to heart in the way we work as one totally aligned team, support and respect each other and share the highest standards of excellence. We're always looking for the next great idea or a new way to approach a challenge, and we collaborate and innovate to achieve our goals.
Location:850 76th Street S.W. - Byron Center, Michigan 49315
Job Description:
Position Summary:
The Specialist, Security Engineer will be responsible for leading investigating and working with the required stakeholders to resolve cyber-security incidents escalated by Tier I analysts. The Specialist, Security Engineer will report in to the SOC Manager and is considered a leader on the Security Operations team. The candidate will be required to coordinate with the relevant stakeholders to resolve any cyber-security incidents. The candidate will be leading security incident response, threat hunting, detection engineering and log optimization and across the enterprise.
Here's What You'll Do:
Specialized knowledge/expertise
Negotiate/Communicate difficult concepts to adopt different point of view
Perform security monitoring, analysis, and remediation of escalated security alerts
Conduct all investigations while provide on-going communication with stakeholders and senior leadership
Serves as a liaison between IT, internal departments (including Corporate Security), along with industry peers, law enforcement and other specialists for any Cyber Security incidents
Organizing, participating in, and chair post-incident reviews for presentation to the Chief Information Security Officer (CISO)
Handles and resolves security incidents as defined in the incident response procedures
Facilitates and participates in eDiscovery along with other forensic investigations with internal parties, as well as outsourced vendors
Establish Information Security processes for the team
Oversee the deployment, integration, initial configuration, and tuning of all new security solutions including any enhancements to existing security solutions in accordance with Security and industry Best Practices
Maintain up-to-date knowledge of the IT security industry including awareness of new or revised security solutions, improved security processes and the development of new vulnerabilities, attacks and threat vectors
Ability to perform one or more of the following functions: Malware analysis, Threat Hunting, Vulnerability Scans, Threat Intelligence (including, but not limited to threat briefings)
Planning and execution of Table Top exercises
Train and mentor junior members of the team
Might require supporting incidents outside of regular hours
Be assertive, lead the situation and direct personnel from other teams to respond during a severe security incident
In-depth experience of security incident management processes, technologies, reporting
Minimum of 3 years of demonstrated experience in liaising with middle and senior and management of a large commercial enterprise
Understanding of network security, authentication/authorization, web, application, and databases
Knowledge of NIST, CIS and CSA framework is mandatory
Hands on experience with SIEM, Email security, cloud security, penetration testing tools, and vulnerability scanning
Here's What You'll Need:
Minimum 7 years relevant experience
Certification in area of Forensics, Incident handling, blue team etc.
3+ years as for a Lead for Critical Security Incident Response Team
SpartanNash is a certified Military-Friendly employer. Veterans are encouraged to apply!
We are not able to sponsor work visas for this position.
SpartanNash is proud to take care of the people who take care of our business through our robust and competitive Total Rewards benefits package. Learn more .
SpartanNash is an Equal Opportunity Employer who celebrates diversity and believes employing a diverse workforce is key to our success. We are committed to providing equal employment opportunities to all individuals.
Equal Opportunity Employer – minorities/females/veterans/individuals with disabilities/sexual orientation/gender identity.