Security Engineer: Job Description

The Mellon Foundation ("Foundation") believes that the arts and humanities are where we express our complex humanity, and we believe that everyone deserves the beauty, transcendence, and freedom to be found there.  Through our grants, we seek to build just communities enriched by meaning and empowered by critical thinking, where ideas and imagination can thrive.  It makes grants in four core program areas (Higher Learning, Arts and Culture, Public Knowledge, and Humanities in Place).  The Foundation seeks a Security Engineer.


The Security Engineer ("SE") will lead technical security operations across the Foundation, reporting to the Information Technology ("IT") Director, who also serves as the Foundation's Information Security Officer.

The Security Engineer is a wide-ranging, hands-on role in securing information assets, providing end-to-end safeguarding of information, and maximizing the resiliency of critical systems to support business needs.  Detecting and responding to incidents is a primary function of the role.

The SE collaborates closely with a diverse and talented team of experts across the IT staff, our partners in Operations and Business Systems, and colleagues and stakeholders across the Foundation.  The ability to communicate effectively with all levels of the business regarding security issues while ensuring that the Foundation's information assets are adequately protected is essential.

Position Details

Responsibilities may include, but will not be limited to the following:

  • Design, implement and maintain advanced security technologies, threat hunting, and provide a frontline response for security incidents.
  • Establish the information security management system (ISMS) as a standard, formal and continuous approach to information security management, enabling secure technology and business processes aligned with business requirements.
  • Continually identify, assess, and reduce Information and Technology related risk within tolerance levels set by the Executive team and articulated by the IT Director.
  • Ensure all information technology equipment is configured and operating according to best practices, Foundation policies, and standards, identifying opportunities to reduce residual risk and areas of non-compliance.
  • Install and configure security measures and countermeasures to defend against cyber intrusions and attacks.
  • Operate, configure, and fine-tune the Security Information and Event Management (SIEM) system.  Analyze various security logs and related security events to determine risk and develop the necessary action plan.
  • Perform periodic event and risk factor analysis to identify new or emerging risk issues and understand the associated internal and external risk factors.
  • Perform third-party security audits and questionnaires, including on-premises, cloud, and SaaS solutions.
  • Optimize and automate security-based processes.
  • Respond to risk promptly to materialized risk events with effective measures to limit the magnitude of loss.
  • Investigate and report all information regarding security breaches and other cyber security incidents.  Develop automated adaptive responses and alerting of detected cybersecurity incidents.
  • Manage vulnerabilities and monitor the infrastructure for security-related events. Provide vulnerability assessments and provide remediation plans.

Required Skills and Experience

The successful candidate should have the following qualifications:

  • 3+ years of professional hand on IT experience in a complex, outsourced, enterprise-level technology infrastructure
  • Experience with a hybrid cloud environment (integrating on-premises technology with hosted cloud environment) is highly preferred
  • At least one certification(s) in following areas: GIAC Certified Incident Handler (GCIH), Certified Information Systems Security Professional (CISSP), CISA: Certified Information Security Auditor, CEH: Certified Ethical Hacker, CISM: Certified Information Security Manager, or CompTIA Security+
  • Experience in the following platforms, systems, applications, and network hardware, including Azure, Windows Server, Active Directory, Exchange, and Office365, Linux/Centos, TCP/IP, firewall and systems security, network and system monitoring/logging, network switching and routing, and Data Loss Prevention (DLP)
  • Strong communications skills (oral and written) with the ability to be accurate, precise, and, whenever possible, succinct in messaging about complex problems to be solved and work to be completed, taking care not to equivocate or use jargon that might confuse the meaning
  • Demonstrate a creative and innovative approach to their work

The Foundation is an equal opportunity employer that offers a competitive salary and excellent working conditions.

Contact Information

To be considered for this position, please submit your resume here.  We will consider each response carefully, but only contact those individuals we feel are most qualified for the position.