Responsible for safeguarding the confidentiality, integrity, and availability of data, applications, infrastructure, and AI systems across the organization. The Security Engineer leads day-to-day operations of the company’s security tooling across on-premises, cloud, and SaaS environments, drives the identification, investigation, and resolution of security events, and partners with engineering and operations teams to embed security throughout the software development and deployment lifecycle. The role also helps the organization securely adopt, deploy, and govern AI technologies.
Education:
- Bachelor’s degree in Computer Science, Information Security, or a related technical field, OR equivalent professional experience.
- 4+ years of experience in an information security, security engineering, or closely related role.
Experience:
- Working knowledge of common cybersecurity frameworks (NIST CSF, NIST 800‑53, ISO 27001, CIS Controls, MITRE ATT&CK).
- Hands-on experience securing at least one major cloud provider (AWS, Azure, or GCP), including identity, network, and workload controls.
- Experience with vulnerability management, patching, and remediation across servers, endpoints, containers, and cloud workloads.
- Experience integrating security into CI/CD pipelines (SAST, DAST, SCA, secret scanning, IaC scanning).
- Incident response experience, including triage, containment, eradication, recovery, and post-incident review.
- Familiarity with AI/LLM security concepts (prompt injection, data leakage, model and supply-chain risks) and emerging frameworks such as the OWASP LLM Top 10, MITRE ATLAS, and the NIST AI Risk Management Framework.
Licensure, Certification, and/or Registration
- One or more of the following preferred: CISSP, CCSP, Security+, CISM, GIAC (e.g., GSEC, GCIH, CGFA, GCSA), OSCP
- AI/ML security credentials (e.g., AI Security/Governance certifications) a plus
Security Operations & Incident Response
- Monitor and tune in-place security solutions (SIEM, EDR/XDR, SOAR, email security, DLP, CSPM) for efficient and appropriate operation.
- Lead investigations into security incidents escalated beyond Tier 1, including triage, forensic analysis, containment, eradication, and recovery.
- Develop, maintain, and tune detections (e.g., SIEM rules, EDR custom detections) aligned to MITRE ATT&CK and the organization’s threat model.
- Conduct and participate in tabletop exercises, purple-team engagements, and incident management drills at least annually.
- Maintain runbooks and playbooks for common incident types, including cloud, identity, ransomware, and AI/LLM-related incidents.
Vulnerability & Threat Management
- Lead vulnerability remediation across endpoints, servers, cloud workloads, containers, and SaaS applications, working with infrastructure and engineering teams to drive risk down.
- Design and execute vulnerability assessments, penetration tests, red-team exercises, and security audits; manage findings through to closure.
- Maintain hardened, up-to-date baselines (CIS Benchmarks or equivalent) for workstations, servers, cloud resources, containers, and network devices.
- Consume and operationalize threat intelligence to anticipate and defend against new attacks and threat vectors.
Cloud & Infrastructure Security
- Design, implement, and review security controls across cloud environments including IAM, network segmentation, encryption, logging, and posture management (CSPM/CNAPP).
- Advance the organization’s Zero Trust strategy across identity, device, network, application, and data layers.
- Review Infrastructure-as-Code manifests for security misconfigurations; help maintain policy-as-code guardrails.
- Partner with IT and identity teams on IAM, SSO, MFA, privileged access management, and conditional access policies.
Application & Software Supply Chain Security
- Partner with the CISO and engineering leadership to enforce secure coding practices; deliver annual secure-development training, including OWASP Top 10 and OWASP LLM Top 10 content.
- Integrate and tune security testing in CI/CD pipelines: SAST, DAST, SCA, secret scanning, container image scanning, and IaC scanning.
- Establish and maintain software supply chain controls, including SBOM generation, dependency review, and alignment with frameworks such as SLSA.
- Lead threat-modeling sessions for new products, services, and AI-enabled features.
AI Security & Governance
- Help define and enforce policies for the safe adoption and use of AI tools within the organization, including LLM-based assistants, agentic systems, and Model Context Protocol (MCP) or similar tool integrations.
- Assess and mitigate risks specific to AI/ML systems the organization builds or consumes, including prompt injection, jailbreaks, insecure output handling, training-data and model integrity, sensitive-data leakage, and model/identity supply-chain risks.
- Apply AI security frameworks (OWASP LLM Top 10, MITRE ATLAS, NIST AI Risk Management Framework, ISO/IEC 42001 concepts) when evaluating AI vendors, internal AI products, and AI-generated code.
- Review AI-generated code for security vulnerabilities and licensing issues before it reaches production.
- Partner with Legal, Privacy, and Engineering on AI data handling, retention, and disclosure practices.
AI-Augmented Security Operations & Tooling
- Evaluate and deploy AI-assisted security tooling (e.g., LLM-powered alert triage, log summarization, threat-intel enrichment, phishing analysis, AI-assisted code review) to improve analyst productivity and reduce mean time to detect/respond.
- Build lightweight automations and scripts (Python, PowerShell, or similar), leveraging AI coding assistants where appropriate, to streamline detection, response, and reporting workflows.
- Continuously validate the accuracy and safety of AI-driven security tooling and document its operating envelope (where it can and cannot be trusted).
Compliance, Risk & Audit
- Prepare for and respond to internal and external IT audits and risk assessments (GDPR, DORA, PCI DSS, HIPAA, GDPR/CCPA, as applicable).
- Maintain awareness of applicable laws and regulations related to security, data privacy, and AI (including emerging AI regulation).
- Recommend new or enhanced security solutions and assist with their deployment, integration, and configuration in line with the organization’s security standards.
- Maintain up-to-date knowledge of the security industry, including new attack techniques, defensive tooling, and AI-related threats and defenses.
The duties and responsibilities above describe the general nature and level of work performed. They are not intended to be an exhaustive list of all duties and responsibilities that the incumbent may be expected or asked to perform.
- Periodic on-call support for security incidents.
- Other duties as assigned.
- Hands-on experience with modern security tooling: SIEM, EDR/XDR, SOAR, WAF, CSPM/CNAPP, vulnerability management, DLP, email security, and identity-centric controls.
- Working knowledge of cloud-native security and container security.
- Experience with at least one scripting or automation language (Python, PowerShell, Bash, or Go).
- Familiarity with secure software development practices, CI/CD security, and software supply chain risk.
- Working knowledge of identity and access management concepts (SSO, MFA, PAM, Zero Trust).
- Awareness of AI/LLM security risks and frameworks, and practical familiarity with using AI tooling responsibly to support security work.
- Working knowledge of applicable laws and regulations as they relate to security, data privacy, and AI.
- Strong analytical, communication, and documentation skills; able to explain technical risk to non-technical stakeholders.
Salary Range: €65,000 - €110,000 base salary, commensurate with experience.
Additional Information:
Full benefit package including medical, dental, life, vision, company paid short/long term disability, 401(k), tuition assistance and more
Job Posting Disclaimer:
Fortegra has recently been made aware of unauthorized communications regarding career opportunities by individuals not associated with Fortegra or our recruitment team. Fortegra will only contact you from the Fortegra domain address (@fortegra.com). If you receive a message from someone posing as a Fortegra recruiter via text message, WhatsApp, Telegram or other messaging platform, please report it as phishing and block the sender.
Fortegra is not accepting unsolicited resumes from search firms for this position.
Internal Notice: As part of our commitment to talent development, this position is open for internal promotion applications at the time of public posting.
#LI-Onsite
Equal Opportunity Employer
This employer is required to notify all applicants of their rights pursuant to federal employment laws. For further information, please review the Know Your Rights (https://www.eeoc.gov/poster) notice from the Department of Labor.