Security Engineer

Sargent & Lundy is a leading consulting engineering firm specializing in the power and energy sectors. They are seeking a Security Engineer to help operate and mature their security platforms, data protection capabilities, and Zero Trust architecture, while also contributing to AI security initiatives.

Responsibilities

• Assist with Endpoint Detection and Response (EDR) configuration, policy tuning, and device control management, including exception handling and reporting
• Support Mail Security configuration management (email security policies, spam/phishing controls, DLP rules) and maintain accurate documentation of changes
• Help manage Internet Security configurations and policies (web filtering, SSL inspection, access controls, and user/device policy alignment)
• Contribute to DLP management, including rule tuning, incident review, false-positive reduction, and user outreach
• Maintain and update data repository inventories (file servers, cloud storage, SaaS apps) to support DLP, access reviews, and risk assessments
• Analyze data flows, access patterns, and DLP/endpoint events to identify trends and drive remediation
• Assist in defining and monitoring data classification and protection controls across on-prem and cloud environments
• Support IAM governance activities including user access reviews, role analysis, and exception tracking
• Help manage and monitor Privilege Access Management usage, including access requests, vault hygiene, and reporting
• Participate in efforts to align IAM controls with Zero Trust principles (least privilege, continuous verification, just-in-time access)
• Assist in maintaining cloud security posture (Azure, AWS, or other cloud environments) by reviewing configuration baselines and security findings
• Help document and track decisions from the Architecture and Design Review Board for cloud services and custom applications
• Support Zero Trust governance by helping document policies, control mappings, and implementation status across identity, endpoint, network, and data
• Help operationalize threat intelligence by correlating threat feeds with internal telemetry (CrowdStrike, Zscaler, Mimecast, logs) and assisting in enrichment of alerts
• Participate in incident response activities as an analyst/engineer: data collection, initial triage, impact analysis, documentation, and lessons-learned tracking
• Assist in building reusable playbooks, including data queries, Excel/Power BI templates, and checklists
• Contribute to AI enablement by inventorying AI tools, helping define and document guardrails, and supporting monitoring and reporting on AI-related data access
• Partner with security leadership and data teams to ensure AI solutions enable innovation while protecting sensitive data
• Maintain up-to-date SOPs, configuration standards, and runbooks for supported tools and processes
• Participate in efforts to automate recurring tasks (reporting, reviews, alert triage) using scripts, queries, or low-code tooling where appropriate
• Provide clear, concise summaries of findings, risks, and recommended actions for both technical and non-technical stakeholders

Skills

• Bachelor's degree in computer science, information systems, cybersecurity, data analytics, or a related field; or equivalent practical experience
• 1–3 years of experience in IT, security operations, or data analytics, including internships, co-ops, or relevant project work
• Proven ability to work with large data sets and translate findings into clear, actionable recommendations
• Strong written and verbal communication skills, with the ability to document processes and explain technical concepts to non-technical stakeholders
• Experience with CrowdStrike, Mimecast, Zscaler, DLP platforms, Secret Server, or similar tools in a production environment
• Exposure to security frameworks or best practices (e.g., NIST CSF, ISO 27001, CIS Controls)
• Prior involvement in incident response, security monitoring, or SOC functions
• Familiarity with AI tools, large language models, or data science workflows, particularly as they relate to security and governance
• Basic knowledge of cloud security concepts in Azure (or similar cloud infrastructure)
• Strong proficiency with Microsoft Excel (vLOOKUP/XLOOKUP, INDEX/MATCH, pivot tables, charts, data cleanup)
• Experience building and maintaining Power BI reports and dashboards (data models, measures, filters, visualizations)
• Ability to interpret logs, alerts, and data sets from multiple tools and summarize key insights and recommended actions

Benefits

• Health Plans: Medical, Dental, Vision
• Life & Accident Insurance
• Disability Coverage
• Employee Assistance Program (EAP)
• Back-Up Daycare
• FSA & HSA
• 401(k)
• Pre-Tax Commuter Account
• Merit Scholarship Program
• Employee Discount Program
• Corporate Charitable Giving Program
• Tuition Assistance
• First Professional Licensure Bonus
• Employee Referral Bonus
• Paid Annual Personal/Sick Time (PST)
• Paid Vacation
• Paid Holidays
• Paid Parental Leave
• Paid Bereavement Leave
• Flexible Work Arrangements
• Individuals may also be eligible to participate in our yearly discretionary bonus
• This position offers the flexibility of a hybrid schedule with the expectation of 3 days per week in our downtown Chicago office, and 2 days remote from home.

Company Overview