Lamb Weston Job - 41060825 | CareerArc
  Search for More Jobs
Get alerts for jobs like this Get jobs like this tweeted to you
Company: Lamb Weston
Location: Kennewick, WA
Career Level: Mid-Senior Level
Industries: Food, Beverage


Job Description Summary

The Sr. Global Security Engineer will be responsible for identifying, designing, implementing, and supporting security solutions that will protect Lamb Weston data, intellectual property, and assets. This role will serve as a critical engineer in identifying, assessing, and mitigation of risks, establishing and implementing proactive and reactive remediation plans, and operationally responding and eliminating issues. This engineer will be responsible for engineering directly or facilitating or driving other LW-wide matrixed security team members in implementing security solutions that possess capabilities in the end2end security value chain categories: Identify, Protect, Detect, Respond, and Recover. Ensures compliance with all LW company Policies, Standards, and Operations Specifications or Procedures.
Current operations are in countries such as the US, Canada, Mexico, China, Australia, Singapore, Argentina, and the list is growing. The position will also work closely with our joint venture partner Lamb Weston Meijer with operations in the UK, Netherlands, and Austria.

Job Description

  • Design engineering, implementation and operational management or oversight as appropriate of security solutions, capabilities, policies and standards
  • Establishing and maintaining policies, standards, and operational practices as appropriate to manage the confidentiality, integrity and availability of assets and data
  • Align security strategies with organizational business objectives, technology goals and IT applications.
  • Serve as the Sr. Technical SME on all information security topics, standards and operating procedures
  • Core member of LW IT Security Operations Center; significant focus on managing the external Managed Security Service Provider (MSSP)
  • With an innovative mind-set, employ new and evolving security strategies to mitigate risk around current and anticipated risks and/or events and incidents.
  • Advance the company's mission to assess, improve and monitor security across the enterprise
  • Work in collaboration with other functions, at minimum: LW IT, HR, Finance, Legal, Internal Audit, ERM, Manufacturing, Supply Chain, and Corporate Security
  • Ensure cybersecurity risk management is baked in by design to identify, Protect/Prevent, Detect, Respond and Recover phases that remediate or mitigate inherent risks to acceptable levels of residual risk
  • Provide regular reporting and assessment of cybersecurity programs to senior IT leaders, enterprise risk teams, and key stakeholders
  • Partner with the business to facilitate cybersecurity risk assessment and risk management processes and empower Leadership to own and accept the level of risk deemed appropriate for their specific risk appetite
  • Provide Engineering as appropriate for all information security functions including threat intelligence, vulnerability management, tools, etc.
  • Manage tools and capabilities around data protection; prevent data from leaving the organization
  • Engineer Enterprise Security Metrics Program and drive continuous improvement
  • Key contributor to defining and implementing LW IT Security's multi-year roadmap and strategies that provide positive impact on LW's business value
  • Drive or contribute to IT Security Awareness & Training
  • Core contributor to the engineering & operationalization of:
    • Incident Response and TableTop Exercises
    • eDiscovery
    • Vulnerability Management to include remediation strategies and patching follow-up
    • Operating System, Services and Application Hardening according to industry standards
  • CIS Guidelines and Hardening for PCs
  • Anti-Virus & EDR End-point Security tools
  • Safe handling of malware, malicious code review and sandboxing
  • Write executive reports and technical reports on findings and vulnerability assessments
  • Follow up with IT teams on security initiatives, configuration improvements and patching
  • Validation of email for users when phishing is suspected, and remediation of phishing risks and threats as identified
  • Facilitates Penetration Tests with external providers and either directly remediates PenTest Findings or drives other LW-wide security team members for them to drive remediations
  • Oversee security of the on prem and cloud infrastructure, serving as the main point of contact for investigating and resolving security-related issues. Develop threat and vulnerability management policies and managed the security analysts that monitored and configured our SIEM (security information & event management).

Job Qualifications

  • Information Security hands-on skills that span all security domains, e.g. endpoint, network, SOC
  • Hands-on experience with endpoint encryption, endpoint protection, anti-virus, security monitoring agents, vulnerability scanning, content analysis and filtering, data loss prevention
  • Experience in a Windows / Linux environment
  • Experience triaging and developing security alerts and response automation, conducting front-line analysis, and providing escalation support.
  • Opensource Security Tools
  • Excellent engineering management and leadership abilities
  • Demonstrated problem-solving and analytical skills
  • Ability to develop positive relationships and negotiate win-win solutions in a cross-company matrixed security approach
  • Excellent verbal and written communication skills
  • Proficient, or able to gain proficiency with, a broad array of security software applications and tools.
  • Familiar with Sandboxing and collecting artifacts for Malware detonation
  • Email Security
  • MS Excel, MS PowerPoint, MS Visio
  • B.A. or B.S. degree in Information Security, Computer Science or similar field or equivalent work experience in the information security field.
  • Must have 7+ years of experience as a hands-on Information Security technical practitioner.
  • Certifications, 2 or more of the following: CISSP, CEH, CHFI, AWS Cloud certifications, CRISC, CISM, CISA
  • Ability for 25% travel

 Apply on company website