Senior Security Engineer

Senior Security Engineer – Houston, Texas
We are seeking a Senior Security Engineer to help protect critical enterprise and operational environments by designing, implementing, and operating robust, defense-in-depth security controls. This role is ideal for a hands-on, self-directed security engineer who thrives in complex environments, partners closely with IT and the business, and takes ownership of security outcomes.

As a Senior Security Engineer, you will:

• Operate in a self-directed environment, delivering consistent results with minimal daily supervision.
• Design, configure, integrate, and maintain enterprise security controls and tooling.
• Audit system and security configurations to ensure alignment with best practices and compliance standards.
• Proactively identify threats and vulnerabilities and drive the vulnerability management lifecycle.
• Manage and monitor security technologies including NGFWs, IDS/IPS, EDR/XDR, SIEM, DLP, IAM, and cryptography systems.
• Review and analyze logs to detect suspicious activity and recommend remediation actions.
• Support incident response, including containment, remediation, and post-incident analysis.
• Participate in penetration testing and security control assessments.
• Apply security patches, fixes, and recovery procedures during incidents or control failures
• Develop and maintain security policies, procedures, metrics, and KPIs.
• Partner with business stakeholders to understand requirements and deliver practical, business-aligned security solutions.
• Support internal and external audits, including regulatory and compliance reviews.
• Participate in an on-call rotation and occasional travel as required.

What You Bring
Required Qualifications

• One industry certification (e.g., CISSP or CCSP).
• 10+ years of IT / systems engineering experience with 5–7+ years in cybersecurity.
• Strong understanding of security control environments (access control, authentication, logging, encryption, integrity).

Hands-on experience with:

• DLP, NAC, SASE, NGFW, EDR/XDR, SIEM, IAM, Identity Providers.
• Threat hunting, vulnerability management, and incident response.
• Cloud security (AWS and/or Azure).
• Working knowledge of IAM protocols and standards (OAuth, OIDC, SAML, SCIM).
• Experience designing and implementing RBAC and ABAC.
• Strong grounding in NIST, ISO 27001/27002, CIS, SOC, CCM.
• Ability to lead security initiatives and collaborate across IT, vendors, and business teams.

Preferred Experience

• CyberArk (EPM, Privilege Cloud).
• CrowdStrike Falcon.
• Okta, Entra ID (Azure AD), AWS Identity Center.
• AWS Security Hub, GuardDuty, Inspector.
• Experience supporting NERC CIP compliance and associated documentation.

Why This Role?

• Work on mission-critical infrastructure that powers enterprise operations.
• Collaborative, inclusive, and respectful culture.
• Strong focus on safety, innovation, and operational excellence.
• Competitive compensation and comprehensive benefits, including:
• Medical, dental, vision, and life insurance.
• 401(k) with company participation.
• Generous vacation and sick time.