Engineer, IT Security (Incident Response)

Overall Job Summary

This position is responsible for the protection of Tractor Supply’s networks, applications, systems, and data through security testing, threat hunting, and control validation.   This position will also support incident response processes. The Security Engineer also provides support for all areas of IT as they strive to develop secure systems

Essential Duties and Responsibilities (Min 5%)

• Work with both internal and external customers to understand business requirements and needs. 
• Perform proactive investigations within the environment to identify suspicious or abnormal behavior
• Deploy automated validations of security controls through both red and blue-team style exercises
• Analyze and reverse engineer malware to determine potential risk and impact
• Assess the impact of vulnerabilities and help evaluate risk based on deployed controls
• Consume threat intelligence, assess against the TSC environment, and provide reports to Leadership with appropriate recommendations
• Perform forensic investigations following appropriate chain of custody
• Mentor junior Team Members on relevant processes, tools, and procedures
• Participate in 24x7 on call rotations. 
• Maintain and manage technical relationships with vendors. 
• Discover current technical standards and best practices (R&D). 
• Deploy patches, updates, and configuration changes. 
• Create and document standards. 
   

Required Qualifications

Experience: 3-5 years enterprise experience in selected technology field. Experience with software development lifecycle (SDLC) methodology. 

Education: Bachelor’s degree from an accredited college or university or. Any suitable combination of education and experience will be considered.  

Professional Certifications: CISSP, , CCSP/CCIE, GIAC, CySA/Pentest+ is preferred. 
 

Preferred knowledge, skills or abilities

• Strong knowledge of networking/distributed computing environment concepts. 
• Strong knowledge of routing and client/server programming. 
• Strong knowledge of firewalls, intrusion detection systems, anti-virus software, data encryption, and other industry-standard techniques and practices. 
• Strong technical knowledge of network, PC, and platform operating systems, including Cisco, Microsoft and Linux. 
• Strong technical writing skills
• Strong experience with EDR, NDR, and other next-generation Security technologies
• Strong experience with Powershell, Python, or similar scripting languages
• Strong experience with SIEM/SOAR technologies
• Strong experience with NIST, CIS, STIG, and other security frameworks
• Proficiency in MS Office Suite. 
   

Working Conditions

Physical Requirements

Disclaimer

This job description represents an overview of the responsibilities for the above referenced position.  It is not intended to represent a comprehensive list of responsibilities.  A team member should perform all duties as assigned by his/ her supervisor.

Company Info