Sr. Security Engineer

FDH Aero is a trusted global supply chain partner for aerospace and defense companies. With more than 55 years of experience, it specializes in c-class components that include hardware, electrical, chemical, and consumable products and services for global OEM and aftermarket customers. At FDH Aero, we understand that the strength of our brand comes from our people, and our culture empowers every team member to contribute and grow. As a global team, our culture is rooted in five (5) core values that begin with the words We are and include: service-first, respectful, amplifiers, open-minded and accountable.

FDH Aero is headquartered in Commerce, California, and has operations across the Americas, EMEA and APAC. FDH Aero has locations in 14 countries across the globe, with more than 1,200 best-in-industry employees and over 650,000 square feet of inventory space.

For more information, please visit the FDH Aero website.

We are seeking an experienced and highly skilled Senior Security Engineer to design, implement, and maintain robust security solutions that protect our organization's critical systems and data. As a key member of our security team, you will play a pivotal role in ensuring the confidentiality, integrity, and availability of our IT infrastructure. This is a critical role in our organization, and the successful candidate will be responsible for ensuring the security and resilience of our IT infrastructure. The ideal candidate will have a strong technical background, excellent problem-solving skills, and a passion for staying ahead of the curve in the ever-evolving world of cybersecurity.

Responsibilities:

• Implement and monitor security tools, ensuring optimal configuration and performance
• Manage and monitor security tools and solutions, such as SIEM, SOAR, vulnerability scanners, and penetration testing tools
• Evaluate and recommend new security tools to enhance the organization's security posture. Vulnerability Management
• Address detected vulnerabilities promptly and devise strategic remediation plans
• Conduct regular vulnerability scans using tools like Nessus, Qualys, or Rapid7 to identify and mitigate risks
• Analyze vulnerability scan results and prioritize remediation efforts based on risk. Incident Response and Investigation
• Lead incident response efforts and coordinate organizational response strategies using tools like Splunk, ELK, or Sumo Logic
• Conduct thorough investigations into security incidents and events using forensic tools and techniques
• Analyze logs, network traffic, and other data to identify the root cause of incidents. Security Monitoring and Alerting
• Implement and configure SIEM tools like Splunk, QRadar, or ArcSight to monitor security events and generate alerts
• Tune SIEM rules and correlation engines to minimize false positives and ensure effective detection of threats
• Collaborate with the Engineering and Ops teams to respond to security alerts and investigate potential incidents. Penetration Testing and Red Teaming
• Conduct regular penetration tests using tools like Metasploit, Kali Linux, or Cobalt Strike to identify vulnerabilities and assess the effectiveness of security controls
• Perform red team exercises to simulate real-world attack scenarios and test the organization's ability to detect and respond to threats
• Analyze the results of penetration tests and red team exercises to identify areas for improvement and develop remediation plans
• Develop scripts and automation tools using languages like Python, Bash, or PowerShell to streamline security tasks and processes
• Automate vulnerability scanning, patch management, and configuration management using tools like Ansible, Puppet, or Chef
• Develop custom scripts and tools to enhance the functionality of security solutions and integrate them with other systems
• Other duties as assigned

Basic Qualifications:

• Bachelor's degree in information technology, computer science, or a related field.
• Preferred certifications: SSCP, CompTIA Security+, CISSP, GIAC.
• At least 10 years of experience in information security and technology.
• Familiarity with security frameworks and standards (CMMC, CIS, NIST).
• Experience with SIEM and SOAR technologies.
• Proficiency with cloud security in SaaS/IaaS/PaaS environments, particularly Azure.
• Expertise in endpoint security, secure web gateways, and application firewalls.
• Strong foundation in IT operations and continuous improvement practices.
• Advanced knowledge of network security and protocol analysis.
• Strong understanding of IDS/IPS, penetration, and vulnerability testing.
• Experience with Azure Government Cloud Community (GCC) High and FedRAMP is a plus.
• Strong programming and scripting skills (e.g., Python, Bash, PowerShell) for automating security tasks and developing custom solutions.
• Comfortable with some of the most widely used open-source security tools like Nmap, Wireshark, OWASP ZAP, Metasploit, Burp Suite, OpenSCAP, sqlmap, Scapy CrackStation, Aircrack-ng, Jok3r, etc.

FDH Aero is an Equal Opportunity Employer and all qualified applicants will receive consideration for employment without regard to race, color, religion, sex, national origin, sexual orientation, gender identity, disability status, protected veteran status, or any other characteristic protected by law.