​First Quality, a growing family-owned group of manufacturing companies, is seeking an Information Security Engineer to provide technical leadership and expertise to protect the confidentiality, availability, and integrity of its information assets. This role is highly focused on implementing security standards, managing vulnerability attack surface, and maintaining security tools.

• ​Location: Remote (US PA Home Office, working from the Eastern Time Zone).
• ​Experience: Minimum 2 years of experience running security solutions on network/security engineering/security operations.
• ​Focus: Leading the vulnerability management program, serving as the SME for security tools (CASB, EPP, Vulnerability Scanning Suite), implementing security standards for projects, and ensuring effective incident response.
• ​Key Technology Preference: Experience working with Palo Alto Firewalls Suite (certification highly preferred).

​Primary Responsibilities: Leadership, Tools, and Risk Mitigation

​The engineer drives technical security standards and resilience across the enterprise.

• ​Technical Leadership: Provide technical engineering security expertise for company-wide projects, implementing security standards and baselines, and researching advancements in security technologies.
• ​Vulnerability Management: Lead the vulnerability management program, working closely with the patching team to limit the attack surface.
• ​Security Tool SME: Be or become the lead SME for various security tools including CASB, the Vulnerability Scanning Suite, and EPP, to maintain and improve their functionality.
• ​Incident Response: Ensure guiding procedures for incident response (CIRT) are in place, effective, and validated periodically.
• ​Security Solutions: Investigate, recommend, and assist with implementing security solutions that provide detection, prevention, containment, and deterrence mechanisms (e.g., identity management, access control, intrusion prevention).
• ​Reporting: Track, generate, and provide effective reporting; recommend and implement an effective event correlation solution to analyze security tool output.

​Required Qualifications and Skills

• ​Experience: Minimum 2 years of experience in security engineering/operations.
• ​Networking & Protocols: Comprehensive knowledge of network architectures, equipment, and designs. Working knowledge of WANs, LANs, internet, intranets, and network protocols (VPN, TLS, SSH, SFTP, TCP/IP).
• ​Security Controls Knowledge: Knowledge of IT security controls including firewalls, SIEM, NAC, CASB, DLP, IPS/IDS, encryption, tokenization, and XDR/EDR tools.
• ​Vulnerability: Knowledge of vulnerability scanners and how to successfully implement and maintain an enterprise patching program.
• ​Cloud & Firewalls: Experience with cloud security solutions. Experience with Palo Alto Firewalls Suite (certification highly preferred).
• ​Soft Skills: Proven abilities to analyze security risks, provide remediation recommendations, and create comprehensive security documentation.