Cornerstone OnDemand

We're looking for a Principal IT Engineer – Corporate Security 

Working as part of the IT Engineering team within Cornerstones Corporate IT organization, you will assist in driving the overall security strategy for the platforms and initiatives within this Org. You will partner with Enterprise Information Security, IT Application teams and across the infrastructure teams to define security standards and best practices. You will partner with Infrastructure leads to set prioritization and ensure adoption of these standards across IT teams and guide technical solutions. The ideal candidate for this role is a Security Champion who has experience across Network, Datacenter infrastructure, cloud, application security and familiar with threat modeling, CIS, NIST Standards, with ability to ensure its realization through direct and indirect influence

In this role you will… 

• Engage in system design, engineering, and maintenance to provide technical security guidance across Corporate IT programs and initiatives.
• Identify and mitigate security issues, misconfigurations, and vulnerabilities related to corporate infrastructure, cloud, applications and endpoints.
• Partner with Information Security, Compliance, and Privacy to define logging, alerting, patching, backup, and recovery capabilities and detect, prioritize, remediate issues and threats across infrastructure assets.
• Participate in threat modeling, security incident response, lead incidents, and perform post-incident reviews with engineering teams.
• Develop, evangelize, and monitor the adoption of best security practices.
• Participate in tabletop and security preparedness exercises.
• Build positive relationships with peers across the company to evangelize a strong security culture.
• Partner with Enterprise Information Security to recommend and guide investments to realize best in class security posture.
• Establish architectures and baseline configurations for various security technologies, including anti-malware, EDR, security monitoring, systems security, network security, identity and access management, PKI (Public-Key Infrastructure), deception technologies, DLP (Data Loss Prevention), and web/email content filtering.

You Have What It Takes If You Have… 

• Minimum 10+ years of technology proven experience in infrastructure and security solutions.
• BS Degree in Computer Science, Computer Engineering or equivalent
• Desirable certifications include CISA, CISM, CISSP, GSEC, or similar qualifications.
• Hands-on experience securely designing and building scalable and resilient applications in the cloud (AWS, GCP, Azure) AWS Preferred.
• Proficient in established and emerging cybersecurity architectures and frameworks, such as XDR and Zero Trust.
• Expertise and hands-on experience with Endpoint, Mobile, Server & Container Security, and EDR solutions.
• Experience establishing and managing Zero Trust Network Architecture (ZTNA), Next Gen firewalls, core network and systems security controls
• Expertise with Endpoint Detection and Response (EDR), SIEM (Security Information and Event Management), and Identity Access Management (IAM).
• Experience with technical and security architecture, database architecture, virtualization, software design, development, IP Networking, Linux, Agile, Scrum, java, python, integration, collaboration technologies
• Build reports and dashboards for driving security outcomes.
• Experience with CI/CD pipeline for automated security testing.
• Hands-on experience in AWS Networking Firewall and Security modules
• Extensive knowledge of infrastructure as code (Terraform, CFT, CDK, etc.)
• Proficient in using the principles and practices of project management.