Title:  Cyber Security Engineer II

Primary Purpose of Job:

The Cyber Security Engineer II position is responsible for the development and implementation of solutions to defend and protect QuikTrip’s computer systems, information, and networks from intentional or unintentional access, modification, or destruction. This position is responsible for designing, assessing, project planning, documenting, implementation, and ensure the support of cyber security solutions for QuikTrip. This position needs to intently focus on prioritization and always seek improvement of processes and tools. A successful Cyber Security Engineer II will have a multidisciplinary background beyond cyber security, in fields such as client and server systems, networking, and application development. This position must thrive in fast-paced, high-stress situations and is heavily reliant on teamwork.
 

Location: Fully Onsite

Major Functions:
Lead the implementation of technology solutions, as part of a delivery team. – 75% of total job

1. Lead, plan, design, and implement solution designs at a high-quality level in waterfall or agile projects with other IT staff.
2. Maximize automation of processes for provisioning, maintenance and monitoring of solutions designed for minimal impact to operations teams.
3. Consult with users and technical staff to evaluate requirements, recommend designs, provide cost analysis, plan projects and coordinate tasks for installation of cyber security solutions and to ensure industry best practices, standards, and any cyber security and compliance requirements at QuikTrip.
4. Provide procedural and support documentation for transition of solutions to operations and/or end users.
5. Perform administrative tasks as required by QuikTrip policy, procedures, or processes.
6. Fulfill the Technical Lead role in the QuikTrip project processes.

Provide operational support of escalated issues. – 20% of total job

1. Troubleshoot, analyze, and resolve complex cyber security issues and cyber security risks.
2. Resolve problems and communicate solution to customers.
3. Provide guidance and leadership to the Cyber Security Engineering team and the CSOC.
4. Provide high-level technical support and assistance to the CSOC in the resolution of complex issues. Act as a point of escalation.
5. Liaison with vendors, business partners and customers to ensure timely resolution of issues.

Research and recommend technology standards. – 5% of total job

1. Research and stay well-informed on cyber security best practices for configurations and cyber security standards.
2. Work with other Engineering teams to develop hardening/cyber security guidelines.
3. Participate in the evaluation of system and network cyber security and policy configurations and recommend changes as necessary to the Engineering group.

Position in Organization:

Reports to: Infrastructure Engineering Manager

Relationships:

Inside the Company: IT internal staff, QuikTrip management group, and User community at large.
Outside the Company: Hardware and software vendors. Professional cyber security organizations and user groups.

Position Specifications:

Required Education: Associates in relevant field or the equivalent combination of education and experience.
Desired Education: Bachelor’s degree in Cyber Security or a degree in a technology related field. Multiple industry certifications in Cyber Security, Systems Administration, and/or Networking.
Required Experience: Minimum of 4 years of progressive experience with cyber security technology design and administration in large, complex environments, particularly in multi-region retail. Experience in cryptography, network defense, endpoint protection, forensics, data protection, and incident response. Understanding of data center technologies and concepts including services, cyber security, infrastructure design, disaster recovery practices. Experience troubleshooting of IT systems. Experience with compliance standards such as HIPAA, PCI, and SOX.
Desired Experience: Experience in all aspects of cyber security technologies and knowledge in supporting and building large, complex cyber security environments. Experience planning and implementing a technical backlog to drive continuous improvement of technology and practices.
Required Skills: Experience with next generation firewalls, IDS/IPS, network access control, email and web cyber security, digital forensics, endpoint detection and response, vulnerability scanning, data protection, credential vaulting, certificate management, Multi-Factor, access brokering, SIEM, public cloud compliance and cyber security automation and orchestration technologies. Experience in planning and tracking the execution of projects. The ability to communicate effectively to both business and IT staff in a professional manner.
Desired Skills: Working experience with Active Directory and Microsoft and/or Linux OS, networking, identity and access management, wireless networking and cyber security, penetration testing, incident response, and application cyber security methodologies. Understanding of encryption systems and methodology. Experience in scripting or software development.

Additional Criteria: On call 24 hours per day, seven days per week. Must be able to work under pressure and provide guidance to IT management and other engineers during crisis modes. Must have knowledge of many areas and be able to switch between them rapidly. Some travel is required.

This position requires the employee to be available by phone and/or email and/or have accessibility to calendar, contacts, and data while out of the office.

Starting Salary: $103,300-$129,200