Talent.com
serp_jobs.error_messages.no_longer_accepting
Senior Engineer IT Information Security

Senior Engineer IT Information Security

TaylorMadeCarlsbad, CA, US
job_description.job_card.variable_days_ago
serp_jobs.job_preview.job_type
  • serp_jobs.job_card.full_time
job_description.job_card.job_description

Sr Engineer Information Security & Compliance

Sr Engineer Information Security & Compliance is responsible for supporting and providing direction to the information security and compliance programs as well as internal controls related to information security and associated regulatory requirements. This position is an information security and related security controls subject matter expert and works closely with Information Security leadership, IT peers, and business partners to help ensure information security goals are met and security controls are operating as intended. This role helps to ensure continuous compliance with enterprise information security policies, standards, and procedures as well as protect the confidentiality, integrity, and availability of information assets.

Essential Functions and Key Responsibilities

Security Engineering & Operations

  • Support the goals of the information security program and help carry out information security strategy
  • Support the implementation and administration of information security tools and services, including SIEM, EDR, firewalls, vulnerability scanners, and IAM systems
  • Design, configure, and manage secure infrastructure and applications across on-prem and cloud environments (preferably Azure / M365 and OCI).
  • Lead vulnerability management efforts and remediation follow-up across systems and applications
  • Investigate and develop technical solutions and automation to improve security operations and reduce manual effort
  • Monitor, triage, and respond to security alerts and incidents; lead incident response efforts and maintain documentation

Governance, Risk & Compliance (GRC)

  • Support the organization's compliance with internal policies and external requirements (e.g., GDPR, PCI, ISO 27001).
  • Lead or support security-related audits, assessments, and evidence collection for internal and external stakeholders
  • Develop and report on meaningful and actionable information security metrics that support strategy
  • Write comprehensive reports including assessment-based findings, outcomes, and propositions for further system security enhancement
  • Help maintain and improve the information security policy framework, standard operating procedures, and internal controls
  • Coordinate and oversee work performed by vendors including all contracted professional services
  • Conduct or support third-party security reviews and vendor risk assessments as needed

    • Security Awareness & Collaboration

  • Develop and deliver security awareness training and communications for employees
  • Act as information security subject matter expert including mentoring and cross-functional advising
  • Collaborate with cross-functional teams on secure architecture, project reviews, and IT initiatives

    • Knowledge and Skills Requirements

  • Strong understanding of core security technologies : firewalls, endpoint protection, SIEM, DLP, vulnerability scanners, identity and access management, etc.
  • Technical proficiency with Windows, Linux, and networking concepts; scripting or automation (e.g., PowerShell, Python) a plus.
  • Expertise in designing secure networks, systems and application architectures
  • Familiarity with cloud security principles and tools (Microsoft Azure, Microsoft 365)
  • Experience with regulatory and compliance requirements (e.g., ISO 27001, SOC 2, GDPR, PCI, NIST CSF)
  • Knowledge of common cyberattack vectors, threat detection, and mitigation strategies
  • Strong written and verbal communication skills in English; ability to convey technical content to non-technical stakeholders
  • Self-motivated and able to work independently in a dynamic and distributed team environment

    • Education, Work Experience, and Professional Certifications

  • Bachelor's degree in Computer Science, Information Security, or a related field OR equivalent experience
  • Minimum 5 years of experience in Information Security
  • Professional certifications (e.g., CISSP, CISM, CEH, GIAC, or similar) preferred
  • Experience working in a global organization with third-party service providers is a plus

    • Work Environment / Physical Requirements

  • Standard office conditions with extensive computer use
  • May require occasional extended hours to support critical issues
  • Ability to work effectively in an environment with frequent interruptions and shifting priorities
  • Light physical effort; may involve lifting / moving lightweight materials occasionally

    • TaylorMade is a performance driven organization and our total rewards approach to compensation is designed to support this. We consider many factors in determining base compensation, including position scope, job related knowledge, education, skills, experience, and work location. The expected annual base pay range for this position is $125,000 - $140,000. Additional benefits, such as health & wellness, performance bonuses, product discounts, holidays, paid time off, etc. may also be offered in accordance with our plans.

    TaylorMade Golf Company is an equal opportunity employer. All qualified applicants receive consideration for employment without regard to race, religious creed, color, national origin or ancestry, physical or mental disability, medical condition, genetic information, marital status, sex, pregnancy, gender, gender identity, gender expression, age, sexual orientation, military and veteran status or any other basis protected by federal, state or local law, ordinance, or regulation.

    serp_jobs.job_alerts.create_a_job

    Information Security Engineer • Carlsbad, CA, US