Security Engineer

Posted:
12/5/2024, 3:58:08 AM

Location(s):
Minnesota, United States ⋅ Minneapolis, Minnesota, United States

Experience Level(s):
Mid Level ⋅ Senior

Field(s):
IT & Security

Graco manufactures and markets premium equipment to move, measure, control, dispense and spray a wide variety of fluid and powder materials. What does that mean? Well, we pump peanut butter into your jar, and the oil in your car. We glue the soles of your shoes, the glass in your windows and the screen on your phone. We spray the finish on your vehicle, coatings on your pills, the paint on your house and texture on your walls. Graco is part of your daily life.

The Security Engineer will be responsible for designing, operating and optimizing the Cybersecurity Architecture and Engineering strategy. You will support the vision for Cybersecurity, collaborating with peers and leaders to develop and evaluate cybersecurity capabilities to support enterprise IT, operational technology (OT), and external customer enablement. You will manage the IT/OT convergence within the global enterprise network, maintaining controls and technology to provide an acceptable level of risk for the transforming business. Furthermore, you will collaborate in design and implementation security architecture methods and spans multiple disciplines and domains including network and security architecture, applications security, endpoint security, cloud security and OT security. 
 

What You Will Do at Graco

Strategy and Design

  • Design and develop a robust cybersecurity architecture that encompasses all IT and OT systems within the organization.

  • Design and build advanced threat prevention infrastructure tailored to our Hybrid environment, ensuring scalability and resilience.

  • Analyze intricate problem statements and diverse use cases to develop & implement robust Cyber Security solutions that address our organizational needs. Develop re-usable patterns that can be implemented by Infrastructure and Application teams.

Security Operations and Threat Management

  • Integrate various security tools and technologies to create a cohesive and efficient threat prevention ecosystem.

  • Develop automation scripts and tools to enhance threat detection and prevention processes, reducing manual intervention.

  • Assist with the Vulnerability Management program, including aggregation, prioritization, and remediation activities with an eye toward permanent fixes.

  • Participate in incident response tests, continuously improve procedures to efficiently address security incidents. Coordinate with relevant stakeholders to investigate incidents, contain threats, and implement corrective actions.

Governance and Policy

  • Implement and enforce security policies, standards, and procedures across all layers of the Hybrid infrastructure.

  • Participate in regular risk assessments to identify vulnerabilities and potential threats to our manufacturing processes, systems, and data.

Collaboration and Continuous Improvement

  • Work closely with DevOps, software engineering, IT, and compliance teams to integrate security best practices to advance our cybersecurity capability.

  • Evaluate and enhance existing security measures, staying abreast of the latest cybersecurity trends and technologies.

  • Develop and automate processes to recover from cybersecurity eventualities.

  • Evaluate cybersecurity products and manage relationships with third-party cybersecurity vendors, develop PoC and evaluation criteria.

What You Will Bring to Graco

  • Bachelor's degree in Computer Science, Information Technology or related field.

  • 5+ years of experience in Cybersecurity engineering.

  • Proficient in infrastructure and digital technologies including enterprise networking, server and database platforms, middleware technologies, email/messaging, cloud-based technologies (I.e. SaaS, PaaS, IaaS).

  • Hands-on experience and security knowledge of one or more operating systems: Windows, Linux, AIX, macOS.

  • Experience with at least one scripting/programming language: PowerShell, Shell Scripting, Python, etc.

  • Experience in implementation and managing endpoint capabilities like Crowdstrike, SentinelOne, Defender, Cisco EDR/XDR and SIEM/SOAR technology.

  • Experience / familiarity with frameworks, publications, and certifications including NIST CSF, NIST SP 800 series, SOC2, ISO 27001.

Accelerators

  • Master’s degree in related field.

  • Professional Certifications in CISSP.

  • Expertise with Cloud Security concepts such as CSPM, CASB.

  • Experience in Application Security capabilities such as SAST, DAST, IAST, RASP.

  • Experience with DLP tools and technologies and their integration with network and office productivity platforms.

  • Experience in securing AI and LLM usage/integration both in products as well within Security.

  • Experience / familiarity with OT technologies and Security framework.

  • Global industrial manufacturing experience and knowledge.

At Graco, you truly make a difference. Your unique talents contribute to our organizational growth and future. Not only do you make a difference, but Graco’s culture empowers employees to create their own career path. Whether you choose to advance within your current department or explore new opportunities in different divisions, you have the ability to build your future. Our managers are here to provide support and guidance as you continue to grow within your career.

Graco has excellent opportunities available to individuals who want to be part of a fast-moving, growing company that is committed to quality, innovation and solving fluid handling problems for our customers. Graco is proud to be named a Best Place to Work by Fortune Magazine in 2016, 2018, 2019, 2021 & 2022. Graco offers attractive compensation, benefits and career development opportunities. Graco’s comprehensive benefits include medical, dental, stock purchase plan, 401(k), tuition reimbursement and more.

Our company uses E-Verify to confirm the employment and eligibility of all newly hired employees. To learn more about E-Verify, including your rights and responsibilities, please visit www.dhs.gov/E-Verify.