Information Security Engineer

Our Information Security team is seeking an Information Security Engineer to join our growing team in Worcester, MA; Windsor, CT; or remote work arrangement.    This is a full time, exempt role.   POSITION OVERVIEW:   We are seeking a highly skilled and motivated Information Security Engineer to join our team. You will be responsible for identifying, analyzing, and mitigating security vulnerabilities within the infrastructure.    You will work closely with the security team to ensure that systems and applications are secure and compliant with industry standards. Your role will involve conducting regular vulnerability assessments, analyzing security data, and driving vulnerability remediation.   IN THIS ROLE, YOU WILL: Analyze and interpret vulnerability scan results to identify potential security risks. Collaborate with IT and security teams to remediate identified vulnerabilities. Monitor and track vulnerability remediation efforts, providing regular status updates. Develop and maintain documentation related to vulnerability management processes. Stay current with the latest security threats, vulnerabilities, and mitigation techniques. Assist in the development and implementation of security standards and procedures. Provide support during security incidents and investigations. Prepare detailed reports and presentations on vulnerability findings and remediation efforts. Utilize ServiceNow for tracking and managing tasks. Develop dashboards for continuous vulnerability monitoring.   WHAT YOU NEED TO APPLY: 4-year/Bachelor's degree or equivalent work experience (4 years of experience in lieu of Bachelor's) (Minimum Required) 3 years of IT Security experience, in areas such as security operations, incident analysis, incident handling, and vulnerability management or testing, log analysis, intrusion detection that directly relates to the responsibilities of this position. (required) Must be eligible to work in the US without requiring sponsorship now or in the future (ie. green card holder or US citizen) Familiarity with SLAs, metrics, and KPIs reporting. Strong problem-solving skills and attention to detail. Experience in managing security projects, including planning, execution, and monitoring. Strong organizational skills, and the ability to prioritize tasks effectively. Effectively communicate security concepts to non-technical stakeholders. Analyze large datasets to identify trends and anomalies related to vulnerability data. Validate vulnerability data for accuracy. Proven experience in procedure development and documentation.   EXTRA POINTS FOR:  Experience with securing cloud environments (e.g., AWS, Azure, Google Cloud). Proficiency in conducting risk assessments and developing risk mitigation strategies. Proficiency in scripting languages (e.g., Python, Bash) for automating security tasks. Proven experience in creating and managing Power BI dashboards. Experience in application security, including secure coding and code review. Experience in configuration management and compliance monitoring.