Principal Security Engineer Job Description
Principal security engineer
provides limited support for IT asset management and property control processes in managing inventories of workstations, monitors, and other related IT infrastructure through the customers control systems.
Principal Security Engineer Duties & Responsibilities
To write an effective principal security engineer job description, begin by listing detailed duties, responsibilities and expectations. We have included principal security engineer job description templates that you can modify and use.
Sample responsibilities for this position include:
Take lead in providing consultancy to external projects of larger size
Produce complex, high priority recurring and ad-hoc reports with the purpose of measuring performance and assisting management to improve compliance efforts
Experience with other tools
Designs, codes, tests, debug and documents complex programs
Demonstrates thorough understanding of industry standard technical tools, applications, and procedures
Communicates and mentors other members of the team
Solves problems with highly effective solutions
Advise and consult with internal customers on secure design reviews, risk assessment, threat modeling and fixing vulnerabilities
Proactively identifies security deficiencies and recommends technical solutions
Provide guidance in the development and interpretation of security policies and procedures
Principal Security Engineer Qualifications
Qualifications for a job description may include education, certification, and experience.
Licensing or Certifications for Principal Security Engineer
List any licenses or certifications required by the position: CISSP, CISM, CISA, IAT, GSLC, CASP, IAM, CE, III, AWS
Education for Principal Security Engineer
Typically a job would require a certain level of education.
Employers hiring for the principal security engineer job most commonly would prefer for their future employee to have a relevant degree such as Bachelor's and Primary Degree in Computer Science, Engineering, Technical, Information Technology, Information Security, Technology, Management, Religion, Communication, Project Management
Skills for Principal Security Engineer
Desired skills for principal security engineer include:
Apply
Implement best practices
Information systems and ability to identify
Governance
Asset management
Audits
Change control
Computer crime
IT architecture
IT audit and control
Desired experience for principal security engineer includes:
Hands-on experience administering product Installing and configuring hardware, software
Proven strong communications skills, ability to talk to developers senior technology leaders
Four year degree in Information Security or equivalent work experience
Ability to write high-quality intelligence assessments and briefings for senior-level executives technical staff
Develop and mentor peers and junior team members in security technologies, design best practices and cultivating positive partnerships with customers
Lead security consultant with our Acquisitions and Vendor Risk assessments teams
Principal Security Engineer Examples
1
Principal Security Engineer Job Description
Job Description Example
Our company is searching for experienced candidates for the position of principal security engineer. To join our growing team, please review the list of responsibilities and qualifications.
Responsibilities for principal security engineer
- Technically lead the MSS team
- Work with the Director to develop delivery metrics, product evolution, and operational roadmaps to drive delivery excellence
- Operationally enhance the MSS platform architecture for MSS support operations
- Tune MSS platform for faster detection, improved correlation, reduced false positives, and automated mitigations
- Work on multiple MSS infrastructure – architecture projects
- Work with various levels of upper management from different teams to integrate MSS protection to protect company’s internal assets
- Work with Engineers/Architects from other teams in projects
- Act as highest level escalation point and participate in weekly on-call rotation
- Host weekly team meetings for management and peers
- Assist Product Development teams to introduce MSS product and architecture changes into the production network
Qualifications for principal security engineer
- Experience with AWS, Rackspace, or other public cloud provider building and deploying applications is desirable
- Experience with infrastructure orchestration and configuration management tools
- This position requires the ability to obtain/maintain a Top Secret/SCI with Polygraph
- Bachelor’s degree in Computer Science, Information Assurance, Information Security System Engineering, or related discipline from an accredited college or university or equivalent
- Demonstrated proficiency in layer 2 switching and layer 3 routing
- Demonstrated proficiency in EIGRP
2
Principal Security Engineer Job Description
Job Description Example
Our company is growing rapidly and is hiring for a principal security engineer. To join our growing team, please review the list of responsibilities and qualifications.
Responsibilities for principal security engineer
- Demonstrated success building large scale platforms supporting a large, active user base
- Provide quality and thoughtful feedback on peer design reviews and code reviews
- Contribute to all aspects of our SDLC
- Be a leader by solving tough problems, contributing to the team success and being innovative to keep the bar high for team achievements
- Provide 3rd level support for network security technologies and associated services, including technologies associated with firewalls, forward and reverse proxies, Remote Access, Application delivery controllers, Anti-DDoS, IPS, DNS, DHCP, HTTP(S), RADIUS, NTP, Linux
- Promote key ITIL processes such as Incident Management, Change Management, Problem Management, Configuration Management, Service Level Management, Capacity Management
- Serve as an active member of the incident response team by acting as a technical consultant on information security incident investigations and forensic technical analysis
- Ensure compliance with security policies and other industry standards
- Prioritize and coordinate case-specific response activities, driving timely and appropriate remediation of issues
- Analyze output from security tooling and provide guidance to drive remediation
Qualifications for principal security engineer
- OBackup / Restore / Recovery
- OHigh Availability / Disaster Recovery
- OSystem / application security hardening, auditing, and maintenance
- ONetwork, firewall/ACL
- OSecurity and access controls
- Experience with ITIL practices such as Change Management, Configuration Management, etc…
3
Principal Security Engineer Job Description
Job Description Example
Our growing company is hiring for a principal security engineer. If you are looking for an exciting place to work, please take a look at the list of qualifications below.
Responsibilities for principal security engineer
- Guides junior and senior engineers as they work with various teams on projects and support staff in the development of functional and technical specifications and requirements
- Designs systems and methodologies to meet current and anticipated future user and industry standards
- Conduct meetings with each project's junior and senior programmers to discuss status, communicate technical directives, and monitor progress
- Evaluates current or proposed security projects and provides feedback on feasibility
- Approves project plans and implementation schedules and oversees their implementation
- Constantly monitor current projects to identify potential efficiencies and improvements
- Perform complete cross system assessments to identify potential vulnerabilities and attack vectors
- Code, debug and test security systems of all difficulty levels
- Assists in selection of both junior and senior technical resources
- Stay current with malware and other endpoint vulnerabilities and drive their remediation through policy changes and other actions
Qualifications for principal security engineer
- Must have experience implementing and supporting IPS/IDS/URLF solutions
- Infoblox experience a plus
- Aruba experience a plus
- Proactively improves the customer experience
- Continually searches for ways to improve the customer experience and remove barriers
- Assesses customer experience continuously and makes recommendations to improve it
4
Principal Security Engineer Job Description
Job Description Example
Our company is looking for a principal security engineer. To join our growing team, please review the list of responsibilities and qualifications.
Responsibilities for principal security engineer
- The Product Security Engineer will participate in a full medical system development life cycle and adhere to a quality management system
- Must be able to identify cybersecurity threats and perform analysis based on threat vectors and identified vulnerabilities and build solutions to reduce the risk level
- Must possess the skills to automate solutions using various scripting tools used in remote deployments
- Collaborate with Product, Operations and Engineering organizations to understand requirements and develop specifications around project initiatives
- Research new security technologies and adopt suitable best practices to solve industry obstacles and security threats
- Engineer and implement new solutions in the Advanced Engineering lab, creating proof of concepts for new technologies
- Guide secure coding practices and processes
- Guide secure architecture and secure product designs
- Lead secure web applications delivery via industry leading AppSec practices
- Support customers, development teams, and PSG in technical analysis of tool outputs
Qualifications for principal security engineer
- Creates opportunities for candid two-way communication
- Tailors communication style to appropriate audiences
- Adapts communication style to fit the needs of the audience
- Uses a wide variety of communication tools, , phone, email, webinar, face-to-face meetings, to ensure understanding
- Is effective delivering formal presentations
- Windows authentication protocols (Kerberos, NTLM..), the differences between them, methods to exploit them
5
Principal Security Engineer Job Description
Job Description Example
Our company is growing rapidly and is looking for a principal security engineer. We appreciate you taking the time to review the list of qualifications and to apply for the position. If you don’t fill all of the qualifications, you may still be considered depending on your level of experience.
Responsibilities for principal security engineer
- Experience in the development and configuration of implementing whitelisting methodologies for edge/host security controls
- DevOps and scripting skills
- Working knowledge / experience in a scripting language (Python, Ruby, Bash)
- Ability to gather and analyze information (network packet capture and log data)
- Experience in config/mgmt of feeds into event aggregation and correlation systems (e.g., RSA Security Analytics, Splunk, ArcSight)
- Expertise/mastery in at least one Operating System
- Architecture, develop and document industry best practices to support company initiatives while meeting performance and availability requirements
- Work with multiple hybrid cloud environment plus Internal and external IT environment
- As a member of the Cyber Security Architects you will be responsible for the security aspects of the design throughout a project lifecycle and accountable for security solutions integrity with the relevant to cloud plus Internal and external IT environments and integration with them
- Manage and update the InfoSec risk model, and in coordination with other IT teams, establish plans to securely manage the cyber risks associated with business activities and technical implementations
Qualifications for principal security engineer
- Web Content Filtering Fault isolation and remediation
- Capacity management, planning, and reporting
- Threat assessment and management
- Analysis of security logs
- Thorough knowledge of WAN, LAN and wireless network technology
- Solid understanding of TCP/IP in addition to well-known ports and protocols