IT Security Engineer
$79k - $104.46kSWCA Environmental Consultants
The IT Security Engineer (HR Title = Technology Infrastructure Engineer - Security) is a core practitioner within the security team, responsible for the day-to-day work that keeps the enterprise protected. This role spans incident response, identity and access management, hardware and software risk assessment, and threat and vulnerability management - requiring technical depth, the ability to think critically about risk in a dynamic environment, and superior communications and business skills to interact with stakeholders at all levels of our organization and subsidiaries. This is a role for someone who takes their craft seriously. The Security Engineer knows that security is not a checklist - it is a continuous practice which relies on learning and improving. They bring curiosity, precision, and a structured approach to investigation and remediation, and they contribute directly to the security posture that protects every firm in the enterprise. Beyond execution, this role is expected to continuously improve how security work is performed - identifying opportunities to reduce manual effort, increase consistency, and scale operations through thoughtful use of automation, integration, and emerging AI-enabled capabilities.
This is a regular (with benefits), salaried, exempt position that can be located near any SWCA office in a hybrid fashion. Highly qualified, remote (= distributed) employees will also be seriously considered. Submitting a cover letter with your resume is strongly encourged.
Application deadline: Our team will begin reviewing applications immediately, and interviews will be scheduled with qualified candidates on a rolling basis. The application process will remain open until we have received a robust pool of qualified candidates. Once we have identified suitable individuals, we may close the application process without prior notice. We appreciate the time and effort invested by all applicants and will carefully consider each submission.
What you will accomplishIncident Response
- Monitors security alerts and events from outsourced MDR service and SIEM, EDR, email and other detection tools; triages, investigates, and responds to security incidents in accordance with standards, policies, best practices, and where applicable, established playbooks.
- Leads or supports incident response activities including containment, eradication, recovery, and post-incident documentation.
- Maintains and improves incident response playbooks, contributes to after-action reviews, lessons-learned processes, and continued improvement.
- Acts as an initial escalation point for security-related support tickets, working through the internal ticketing system to review, prioritize, and coordinate response to issues that require deeper technical investigation, risk evaluation, or security team involvement (Freshservice, ServiceNow, etc.).
Threat & Vulnerability Management
- Operates and maintains the vulnerability scanning program, with outsourced vendor support where applicable, across enterprise systems, cloud environments, and endpoints; tracks findings and coordinates remediation with security and IT teams.
- Monitors threat intelligence feeds and communicates relevant emerging threats, indicators of compromise, and attacker techniques to the security team and leadership.
- Prioritizes and tracks vulnerability remediation by severity, asset criticality, and risk exposure; reports program status and trends to the Security Manager.
Identity & Access Management
- Administers and monitors identity and access controls across the enterprise including Entra ID, remote access authentication, role-based access control, privileged access management, and conditional access policies.
- Conducts regular access reviews and maintains appropriate documentation.
- Supports onboarding and offboarding processes to ensure access is provisioned and deprovisioned accurately and in a timely manner.
Hardware, Software & Technology Risk Assessment
- Evaluates new hardware, software, and cloud services for security risk prior to procurement or deployment; provides risk assessment findings and recommendations to appropriate IT leadership.
- Contributes to vendor security assessments in coordination with the Security & Compliance Manager.
- Maintains a risk register for assessed technologies; tracks remediation commitments and monitors for changes in risk posture over time.
Automation, Integration & Continuous Improvement
- Designs, implements, and maintains automation workflows to streamline security operations, particularly in areas such as alert triage, enrichment, response, and vulnerability tracking
- Leverages scripting, APIs, and orchestration tools to reduce manual effort, improve consistency, and increase the speed of response
- Leverages AI and automation to support post-escalation security workflows and operational response activities
- Integrates security tools across the enterprise to enable coordinated response and improved visibility across systems
- Identifies opportunities to improve efficiency and scalability of security processes through engineering and automation-first thinking
Metrics, Reporting & Operational Effectiveness
- Defines, tracks, and reports on key security operations metrics such as response times, alert quality, and remediation performance
- Uses operational data and trends to continuously improve detection coverage, response effectiveness, and overall program maturity
Collaboration
- Works cross-functionally with IT, engineering, and business teams to embed security practices into enterprise systems and processes
- Communicates risks, findings, and recommendations clearly to both technical and non-technical stakeholders
Experience and qualifications for success
Required Qualifications
- Bachelor's degree in Cybersecurity, Information Technology, or a related field. Equivalent experience and certifications considered
- At least three (3) years of hands-on information security experience, with demonstrated involvement in incident response, IAM, or vulnerability management
- Proficiency with SIEM platforms, EDR tools (CrowdStrike, SentinelOne, etc.), and identity security in a Microsoft 365 / Azure environment
- Working knowledge of identity and access management principles and tools (Entra ID, Active Directory, PAM solutions)
Preferred Qualifications
- At least five (5) years of hands-on information security experience, with demonstrated involvement in incident response, IAM, or vulnerability management
- Experience supporting or securing cloud and SaaS environments
- Experience with security automation using scripting and API integrations
- Familiarity with integrating security tools and automating operational workflows
- Exposure to AI/ML or generative AI applications in cybersecurity operations, including the use of AI agents to automate or augment functional responsibilities
- Certification in CompTIA Security+, CySA+, SC-200, or equivalent. CISSP, CEH, GCIH, or other incident response certifications valued.
Knowledge, Skills and Abilities
- Familiarity with vulnerability scanning tools (Tenable, Rapid7 or equivalent)
- Structured, analytical approach to investigation with strong documentation and reporting discipline
- Understanding of common threat frameworks (MITRE ATT&CK) and their application to detection and response
Why Work at SWCA:
SWCA Environmental Consultants is a growing employee-owned firm, providing a full-spectrum of environmental services. Our Vision (the North Star) is to make SWCA the best workplace and industry leader in sustainability, bringing sound science and creative solutions to global environmental challenges while maintaining a dedication to employee-ownership. We live our core values: we collaborate as #OneSWCA; we are #AlwaysLearning , we #NeverSettle, and we #GiveBack.
We are 100% employee-owned , and we build our success together. With offices across the United States, SWCA is one of the largest environmental compliance firms and ranks among Engineering News-Record's Top 200 Environmental Firms . We offer a supportive, team-oriented work environment and competitive wages and benefits, including an 100% employee stock ownership plan (retirement).
At SWCA, we support our team members in developing their careers to make them leaders in their industry. Our Career Landscape initiative is a process and guide designed to help develop chart rewarding career paths for employees at SWCA. We encourage professional conference attendance, internal and external professional development and training programs, education reimbursement, a Science and Leadership Program, and bonuses for publications meeting certain criteria. All regular status employees are eligible to participate in SWCA medical, dental, vision, employee assistance, wellness, life and disability plans, and are eligible to participate in the SWCA 401(k) Profit Sharing Plan and Trust.
SWCA Environmental Consultants is a growing employee-owned firm, providing a full spectrum of environmental services. With offices across the United States, SWCA is one of the largest environmental compliance firms and ranks among Engineering News-Record's Top 200 Environmental Firms.
If you would like to contact SWCA regarding the accessibility of our website or need assistance completing the online application process due to a disability, please email View email address on click.appcast.io or call View phone number on click.appcast.io. This contact information is for disability accommodation requests only. All other inquiries will not receive a response.
EOE - women, minorities, individuals with disabilities and veterans are encouraged to apply.
SWCA is committed to salary equity and salary transparency for all its employees. In alignment with this commitment, SWCA posts good faith pay ranges in all its advertised job postings to promote pay equity and transparency.
An employee in this corporate based position can expect an annual salary of $79,000.00-$104,457.00/year . Actual pay within this range may depend on experience, qualifications, geographic location, client requirements where applicable, and other factors permitted by law. Regular-status employees are also eligible for performance bonuses. Candidates are also encouraged to consider SWCA's Total Rewards package, which includes a competitive benefits package ( forward-thinking workplace flexibility, outstanding corporate culture, award-winning career development, and more.
SWCA continues to invest deeply in career development programs, delivering our award-winning Career Landscape support resources to accelerate the growth of our staff. We recognize the valuable skills and experiences our internal team members bring to SWCA's continued success. Qualified internal candidates are encouraged to apply and will be seriously considered for this position. We believe in promoting from within, where possible, providing our existing employees with compelling opportunities to advance their careers.
- ...IT Security Engineer with YARA experience/YARA Security Engineer Charlotte, NC/Phoenix, AZ (Hybrid, Onsite 3 days per week) 6-month contract - could extend or convert Requirements: ~3+ years of Security Engineering experience ~2+ years of...SuggestedContract workWork experience placement3 days per week
$92k - $120k
...Full time Remote Type: Job Family Group: Information Technology Job Description Summary: The Senior IT Security Engineer is responsible for planning, deploying, administering, and maintaining security platforms and technologies to protect the organization...SuggestedFull timeWork experience placementWork at officeRemote workWork from homeFlexible hours2 days per week- ...Overview: Security Architect with Dev Background Must Have Technical/Functional Skills Architecture Decision Records (ADRs)... ...specific credentials (e.g., NIST AI RMF, MIT AI Ethics, Azure AI Engineer). - Demonstrable experience with secure implementation of...Suggested
$134.22k
...Maximus is hiring a Security Solutions Architect to serve as a key technical security partner across AIA (AI Accelerator), Enterprise... ...years of experience in information technology '- Security Engineering or Security Architecture experience in a FEDERALLY focused environment...SuggestedContract workWork experience placementRemote work$97.14k - $190.5k
...way the world moves? Enterprise Technology is looking for a Security Engineer within Enterprise Platform Engineering and Operations group to... ..., this is the opportunity for you. Join us and challenge your IT expertise and analytical skills to help create vehicles that are...SuggestedImmediate startRemote workFree visaFlexible hours$97.25k - $142.5k
...compensation. Job Type Unclassified Department Enterprise Technology About the Position As a Senior Network Security Engineer, you will provide expert-level engineering and operational support for the organization's enterprise network and security infrastructure...Work at officeRemote work$110k - $135k
...About the Role: Implements, administers, and/or monitors bank security systems and solutions that encompass perimeter defense, security operations, identity and access management, and incident response. Systems and processes may include, but are not limited to: firewalls...$112k - $130k
...Senior Security EngineerRemote - United StatesJR013945 At Ensono, our Purpose is to be a relentless ally, disrupting the status quo... ...CURIOSITY, PASSION Role Summary The Senior Information Security Engineer is responsible for designing, implementing, and maintaining...Full timeTemporary workRemote workWork from homeFlexible hours- ...Job Title: Network Security Engineer Location: Phoenix, AZ 85012 Mode : Contract (6+ Months) - Onsite Rate - $45/hr. on W2 Job... ..., risk analysis and compliance testing. Knowledge of IT Security technologies, Operating Systems, Database, routing and...Contract workWork experience placementRemote work
- ...structured, compliance-driven environments - Familiarity with network security concepts, including firewalls, access control, and traffic... ...exposure to vulnerability management, compliance tracking, or IT security support functions - Basic understanding of network infrastructure...Minimum wageContract workTemporary workWork experience placementRemote work
- ...candidate will bring at least 3 years of hands‑on experience in security operations and a strong understanding of enterprise cybersecurity... ...(e.g., SOC 2, PCI‑DSS). Work closely with cross‑functional IT and business teams to strengthen security posture. Stay current...Contract work3 days per week
- ...Job Title: Information Cyber Security Analyst (Security Operations Center) Position Overview We are seeking an Information Cyber... ...information security experience (or equivalent) ~2-5 years of IT experience in a technical role ~ Strong understanding of computer...Shift work
- ...Description/Comment: Our Opportunity: Client's Security & Technology Operations organization is... ...scripts. • Work closely with DevOps, IT, and other security teams to ensure... ...Specialty, Microsoft Certified: Azure Security Engineer Associate, CCSK, CCSP, Cloud Security...Work at officeRemote workShift work3 days per week
$102.17k
...country. Job Description Join the Trinnex Security Team as a Senior Cyber Security Analyst,... ...evolving threats. You will work closely with engineering and development teams to safeguard... ...infrastructure and applications. Partner with IT and software development teams to...H1b$87.7k - $164k
...Within Information Security we blend risk strategy, digital identity, cyber defense, application... ...server owners, system custodians, and IT contacts to pursue security incident... ...in Computer Science, Information Systems, Engineering or a related field 5+ years experience in...Summer holidayLocal areaFlexible hours$40 per hour
A leading AI training company is seeking experienced cybersecurity professionals to evaluate AI-generated security content and solve technical problems. In this role, you will work directly with advanced AI models to enhance their accuracy and ensure they understand real...Hourly payRemote workFlexible hours$95.86k - $208.27k
...hacking certifications not required but preferred; GIAC Web Application Penetration Tester (GWAPT), Council for Registered Ethical Security Testers (CREST), Offensive Security Web Expert (OSWE), Offensive Security Web Assessor (OSWA) Ability to travel as required...H1bLocal area- ...Cloud Security Engineer Phoenix, AZ Fulltime Must Have Technical/Functional Skills • Hands-on experience performing security assessments of GCP environments. • Strong practical knowledge of core GCP services, including IAM, VPC, Compute...Full time
- ...Cyber Security / Information Technology Specialist, Phoenix, AZ This Cyber Security / Information Technology Specialist position is... ...teaching in higher education. - Minimum of 5 years of full-time, IT professional, field and/or lab experience. - Evidence of...Full time
- ...Cybersecurity Analyst Anywhere Type: Contract-to-Hire Category: Security Industry: Government Workplace Type: Remote Reference... ...readiness and compliance reviews. Mentor cybersecurity and IT staff and help mature processes and frameworks. Partner with...Hourly payPermanent employmentContract workLocal areaRemote work
- Job Description Technology is the driving force behind our product. We’re looking for brilliant people to join our team. Apply now!
$105.79k - $141.05k
...AI‑powered world, connecting people, data, and applications through our expansive fiber network and connected ecosystem. We enable secure, high‑performance connectivity across cloud, edge, and AI workloads for enterprises, governments, and communities. At Lumen, you’ll...Full timeTemporary workRemote work$110k - $140k
...We are seeking a highly skilled Network Engineer to join our Managed Service Provider (MSP... ...switches and wireless solutions, and Fortinet security appliances, hybrid connectivity (... ...and change logs. Collaborate with client IT teams, vendors, and internal stakeholders...Remote workFlexible hoursAfternoon shift$84.91k - $113.91k
...Overview Your Future. Secured. ISC2 is a force for good. As the world’s leading nonprofit member organization for cybersecurity professionals... ...successes. Learn more. Position Summary The AI Security Engineer is responsible for identifying, assessing, and mitigating...Work experience placementWork at officeRemote workNight shift- ...accelerate technical skills and move toward engineering‑level capability. What You’ll Do Install... ...fixed wireless ISP systems Firewalls and security appliances VoIP platforms Network... ...better) 1–3 years of technical experience (IT, telecom, networking, or similar) Strong...Traineeship
- ...Job Title: Architect III - Security Architect Location: Block 23 What you'll do: As a Security Architect, you’ll be a key... ...your domain. You will work closely with business, product, and IT teams to ensure designs are secure, compliant, and reliable, while...
- ...11-western states with regional offices in Reno, NV; Phoenix, AZ; Los Angeles, CA; Richmond, CA; Salt Lake City, UT. As a Project Engineer, you will be working in one of these market sectors: Commercial Buildings (healthcare, higher education, mission critical, and retail...Full timeFor contractorsWork at officeLocal areaImmediate start
- ...Job Description Job Description One Step Secure I/T is an MSP providing the latest in managed services and cybersecurity. We’... ...contributions matter, you’ll feel right at home here. The Security Engineer 2 at One Step Data, Inc., designs, implements, and maintains...
- ...in Phoenix AZ. Our direct client has an opening for a Security Engineer 1323 Please send us your rate and resume. This... ...frameworks (e.g., NIST, HITRUST, COBIT, COSO, and ISO) to drive IT privacy and regulatory compliance. Manage and organize the...Remote workShift work
$88.9k - $160.1k
...Do you have a passion for network engineering technologies? Are you looking for the freedom to innovate and help shape the next generation... ...fabrics. Your work will ensure scalability, reliability, and security across a multi-vendor environment. As a Network Engineer II...Work experience placementWork at office
Do you want to receive more vacancies?
Subscribe and receive similar vacancies to IT Security Engineer. Be the first to apply!
- IT security engineer Phoenix, AZ
- sr security engineer Phoenix, AZ
- information technology security engineer Phoenix, AZ
- endpoint security engineer Phoenix, AZ
- application security engineer Phoenix, AZ
- senior application security engineer Phoenix, AZ
- aws cloud security engineer Phoenix, AZ
- security engineer Phoenix, AZ
- senior security operations engineer Phoenix, AZ
- senior cloud security engineer Phoenix, AZ




