Cybersecurity Engineer
Kimball Electronics
Job Description
The Cybersecurity Engineer will report to the Cybersecurity Director and will have global responsibilities for existing and new cybersecurity systems and network related items s in support of our cybersecurity program and related strategies. This position will be remote or located at the Kimball Electronics World Headquarters located in Jasper, Indiana with travel to all sites as needed.
- There is no sponsorship being offered for this position.
Kimball Electronics is committed to working with and providing access and reasonable accommodation to applicants with mental and/or physical disabilities. If you think you may require accommodations for any part of the recruitment process, please send a request to [email protected] . All requests for accommodations are treated discreetly and confidentially, as practical and permitted by law.
The successful candidate must be an individual who is disciplined and self-motivated. He or she will possess demonstrated leadership, excellent communication skills, is able to conduct work using accepted time/project management skills, is a person who is equally successful working individually or within a team environment, and always demonstrates a positive attitude. Candidates must demonstrate the ability to effectively interpret business requirements into technical specifications. We are a global company, and our employees embrace the diversity of people and cultures from around the world.
Role Requirements
This position will require a combination of technical work and leadership experience, academic credentials, and exceptional integrity of character, including but not limited to:
- Must be a US Citizen and holds, or is able to obtain, a valid US passport.
- Pass an extensive background check.
- Possess a bachelor’s degree earned in the field of Information Technology or Cybersecurity from an accredited university or college; or has a significant amount of related work experience require for the role.
- Thoroughly understands MS Windows OS, Active Directory, Windows Security, the OSI model, and the fundamentals of security applications and technologies.
- Experienced in MDR or XDR technologies.
- Proficient with Microsoft security tools and solutions such as DLP functionality, Conditional Access, Defender, Exchange Online Protection and Purview.
- Familiarity with Security Information and Event Management (SIEM) tools.
- Intermediate knowledge of network segmentation including VLAN and DMZs.
- Expertise in vulnerability management, prevention, and remediation.
- Experience with incident response planning and management.
- Experience with Disaster Recovery planning and testing.
- Ability to understand and interpret the business, legal and regulatory requirements involving cybersecurity and related information technologies.
- Has familiarity working with various aspects of information security management systems such as ISO 27001, NIST, SANS Critical 20, COBIT, SOC 2, etc.
- Certification to CISSP, CISM, CISA and/or other Information Security credentials is a plus.
Key Performance Objectives
Short Term (0 to 6 months) KPOs:
- Learn and adapt to the Cybersecurity team processes in incident detection and management, incident prevention mechanisms, and network operations.
- Support cybersecurity operations monitoring within the IT Support Team
- Develop understanding of documented cybersecurity operations procedures, policies, and work instructions.
- Become familiar with CrowdStrike and the Microsoft suite of security tools including Sentinel, Microsoft Defender, Exchange Online Protection, and Purview.
- Learn Kimball network and computing systems architecture, network design principles and standards and look for opportunities for improvement.
- Begin to develop a long-term vision for the use of security technologies with the KEI environment.
- Demonstrate competence of the KEI business and IT organization.
- Conduct security related risk assessments and support cybersecurity operations related to incident logging, and investigation.
- Participate in IT Operations and/or Computing Infrastructure projects with an emphasis on cybersecurity related responsibilities.
- Begin to review and discover assets with our OT environment and define areas of improvement.
- Begin to look for ways to automate repetitive tasks within the security realm and to assist with vulnerability management.
- Participate and contribute to the Cybersecurity Council Meetings.
- Participate in cybersecurity awareness and promotion throughout the organization.
- Demonstrate understanding of the ISO 27001 Standard and KEI Cybersecurity Management System.
Midterm (6 to 18 months) KPOs:
- Strengthen and build relationships with Unit IT leads and IT members.
- Partner with Unit IT leads to conduct and lead cybersecurity risk assessments with an network security mindset.
- Assist in the management and development of Cybersecurity and IT Operations projects including project leadership and management responsibilities.
- Assist in formalizing and supporting a cybersecurity strategy.
- Execute changes in, and thoroughly manage CrowdStrike and the Microsoft suite of security tools including Sentinel, Microsoft Defender, Exchange Online Protection, and Purview.
- Assist in the implementation of OT environment security measures that will prevent possible seucrity related events and uniform network segmentation across Business Units.
- Review and assess the impact of network related security changes.
- Review and assess the impact of changes resulting from vulnerability management and prevention.
- Master the concepts, policies, and practices of the KEI Information Security Management System.
- Provide input on cybersecurity systems procedures, processes, and documentation management, with an emphasis on with network security items.
- Develop corrective and predictive actions for enhancing the effectiveness of existing cybersecurity systems.
- Automate cybersecurity prevention techniques and event responses.
- Continue to support cybersecurity awareness throughout the global organization
- Participate in the development of annual cybersecurity awareness training updates and program curriculum.
Long Term (> 18 months) KPOs:
- Fully competent in evaluating network related security changes and requests.
- Highly skilled in CrowdStrike and the Microsoft suite of security tools including Sentinel, Microsoft Defender, Exchange Online Protection, and Purview
- Assist in the development and implementation of supporting cybersecurity analytics and related documentation.
- Evaluate and assess lifecycle management requirements supporting systems in the Cybersecurity Operations Roadmap; Develop business cases for improvements, replacements, and retirements.
- Research, develop and propose new or improved cybersecurity strategies by evaluating and analyzing business requirements for cyber-related threats, systems or process vulnerabilities, remediation actions and controls development and overall risk management effectiveness.
- Continue to implement security improvement across the global network including the OT environment and implement solutions that foster a global standardization of technology, processes, and procedures.
As a global company, we value a culture of curiosity, diversity of thought, and innovation from our employees, customers, and partners. Kimball Electronics is committed to a diverse and inclusive work environment where all employees’ differences are celebrated and supported, and everyone feels safe to bring their authentic selves to work. Kimball Electronics is an Equal Opportunity Employer. All qualified applicants will receive consideration for employment without regard to race, color, ancestry, religion, sex, national orientation, sexual orientation, age, marital status, disability, gender identity, gender expression, Veteran status, or any other classification protected by federal, state, or local law. We strive to create a workplace where every voice is heard, and every idea is respected.
The estimated gross base annual salary range for this role is $90000-$120000 per year in New York, California, Washington, Colorado, and Rhode Island. Actual compensation may vary and is dependent on various factors, including a candidate’s work location, qualifications, experience, and competencies. Base annual salary is one component of Kimball Electronics’ total rewards and competitive benefits package, which may include 401(k), paid time off, learning and development opportunities, and comprehensive health and wellness benefits. Salary history is not used in compensation package decisions. Kimball Electronics utilizes market pay data to determine compensation, so posted compensation ranges are subject to change as new market data becomes available.