About Us
We are a leading ERP software and solutions provider to dealers and rental companies of heavy equipment. We specialize in working with the construction, mining, forestry, material handling, and agriculture industries. We aim to be the ERP thought leader in our space and a trusted IT advisor to all dealers and rental companies. Today, we have over 700 employee associates, offices on four continents, and customers in over 20 countries. We are privately held, and our headquarters are in beautiful Cary, NC. We seek talented individuals to join our team and help us aggressively grow our North American footprint for our on-premises and 100% cloud-based ERP solutions.
Why work for VitalEdge
We don t just sell technology, we enable transformation that results in broader societal benefits like building homes and critical infrastructure, growing food and delivering all sorts of products we all rely on for daily life. We exist to ultimately equip the world to keep running. We have more than 60 years of combined experience and two industry-leading software suites and associated apps, with which we will drive the market forward. It s an exciting time to work for VitalEdge join us!
Position Overview-
We are seeking a Security Engineer to join our team. The ideal candidate will have a general security operations profile and be responsible for monitoring and responding to security incidents.
Responsibilities
- Monitor security alerts and investigate potential security incidents.
- Analyze security data to identify trends and patterns.
- Respond to security incidents and coordinate with other teams to mitigate threats.
- Conduct security audits and assessments.
- Develop and maintain security documentation and reports.
- Stay informed about the latest security threats and best practices.
Security Monitoring and Threat Detection
- Configure and Utilize SIEM tools (e.g., Microsoft Sentinel or FortiSIEM) to monitor real-time logs and alerts for potential threats across the SaaS platform.
- Configure and manage intrusion detection/prevention systems (IDS/IPS), such as CrowdStrike, for proactive threat identification.
- Analyze network traffic using tools like Wireshark or Zeek to detect anomalies and suspicious activities.
Incident Response and Forensics
- Respond to security incidents using incident response platforms (e.g., CrowdStrike Falcon, Microsoft Defender for Cloud) to investigate malware, phishing, or unauthorized access.
- Conduct forensic analysis with tools like Autopsy or Volatility to trace attack origins and preserve evidence.
- Document and report incident findings using structured templates in tools like Jira or Confluence.
Vulnerability Management
- Perform regular vulnerability scans using tools like Qualys to identify weaknesses in applications, APIs, and infrastructure.
- Prioritize and track remediation efforts in vulnerability management platforms like Qualys or Rapid7 InsightVM.
Cloud Security
- Monitor Azure environments using native tools (e.g., AWS Security Hub, Azure Sentinel, or Microsoft Defender for Cloud).
Application Security
- Review and secure APIs using tools like Postman or OWASP ZAP to mitigate vulnerabilities, such as broken authentication or injection attacks.
Compliance and Policy Enforcement
- Support compliance audits for standards like SOC 2, ISO 27001, and GDPR.
- Enforce security policies using frameworks like NIST CSF or MITRE ATTCK, integrated into tools like Secure Controls Framework (SCF).
Automation and Scripting
- Automate repetitive security tasks (e.g., log parsing, alert triage) using Python, Bash, or PowerShell scripts.
Security Awareness and Collaboration
- Deliver phishing simulations and training using platforms like KnowBe4 to enhance employee security awareness.
Requirements:
- Minimum of 3-5 years of
relevant experience
as a Security Engineer or similar role. - Knowledge of security operations and incident response.
- Knowledge of Active Directory, Networking and Azure is a must.
- Familiarity with security tools and technologies (e.g., SIEM, IDS/IPS).
- Strong analytical and problem-solving skills.
- Excellent communication and teamwork skills.
- Relevant certifications (e.g., CompTIA Security+, GIAC) are a must.
- Experience as part of CISO team is essential.
Note: Please ensure experience is reviewed under total (total IT) + relevant (security domain)
Why Join Us
: - Opportunity to work with a talented and dedicated team.
- Competitive salary and benefits package.
- A culture that values innovation, collaboration, and professional growth.
- The chance to make a significant impact on the companys success and growth.
- Opportunities for career advancement and professional development.
- Commitment to diversity, equity, and inclusion.
VitalEdge is an Equal Opportunity Employer
