IT Security Engineer

MRC Global serves the oil and gas industry across the upstream, midstream and downstream sectors as well as the chemical and gas distribution market sectors worldwide.

Overview

The Security Engineer will play a pivotal role in designing, implementing, and maintaining security measures using Microsoft solutions to protect our IT infrastructure. This role's expertise in Microsoft Sentinel, Microsoft Defender, and Microsoft Threat Detection Integration (MDTI) will be crucial in monitoring, detecting, and responding to security incidents. The Security Engineer will also leverage coding skills to automate security workflows and improve the efficiency of security operations.

Key Duties & Responsibilities

The Role's responsibilities include, but are not limited to:

• Microsoft Sentinel: Design, configure, and optimize Microsoft Sentinel for security monitoring and incident response, ensuring its integration with other security tools and systems.
• Microsoft Defender: Implement and manage Microsoft Defender for Endpoint, Identity, and Cloud to ensure comprehensive protection across our environment.
• MDTI: Deploy and configure Microsoft Defender Threat Intelligence (MDTI) integration solutions to strengthen our threat detection capabilities and incident response procedures.
• Security Monitoring & Incident Response: Continuously monitor security events, analyze logs, and develop threat detection rules using Sentinel and Defender to proactively identify risks.
• Automation & Scripting: Automate repetitive tasks using PowerShell, Python, or other scripting languages to streamline workflows, improve efficiency, and enhance the response time to security events.
• Security Code Development: Develop custom scripts, integrations, and tools using languages like Python, PowerShell, and C# to enhance security monitoring, alerting, and response capabilities.
• Collaboration: Work closely with internal teams, including network engineers, system administrators, and IT support, to maintain a robust security posture.
• Documentation & Reporting: Maintain up-to-date documentation of security configurations, incident response procedures, and security incidents for review and audit purposes.
• Risk Assessment: Conduct risk assessments and vulnerability management in coordination with other teams to ensure proactive security measures are in place.
• Training & Awareness: Assist in training staff on security best practices, Microsoft security products, and incident response procedures.

Required Experience

• Proven experience (3+ years) working as a Security Engineer with expertise in Microsoft security products.
• Experience with Microsoft Defender Threat Intelligence integration (MDTI) and other security solutions.
• Expertise in coding/scripting languages such as PowerShell, Python, and C# and Azure Logic Apps to automate tasks, create custom integrations, and develop security tools.

Preferred Experience

• Relevant certifications such as Microsoft Certified: Security, Compliance, and Identity Fundamentals, Microsoft Certified: Azure Security Engineer Associate, or Certified Information Systems Security Professional (CISSP).
• Experience with Azure Active Directory (AAD), Azure Security Center, or similar Microsoft cloud security products.
• Familiarity with network security protocols and tools such as firewalls, IDS/IPS, and VPNs.
• Experience in incident response and forensic analysis in an enterprise environment.
• Bachelor's degree in computer science, Information Technology, or a related field is preferred.

Skills & Abilities

• Proficiency in Microsoft Sentinel (deployment, configuration, rule creation, etc.).
• Strong knowledge of Microsoft Defender (Defender for Endpoint, Identity, Cloud) and its integration with other security systems.
• Familiarity with SIEM tools, security automation, and incident response workflows.
• Strong analytical skills with the ability to correlate security data from multiple sources and identify trends.
• Possess an understanding of network security, firewalls, VPNs, and intrusion detection/prevention systems.
• Knowledge of cloud security best-practices, particularly in Microsoft Azure.
• Ability to stay updated on the latest cybersecurity threats and trends.

• Excellent problem-solving abilities.
• Ability to effectively multi-task, prioritize and execute tasks in a high-pressure environment.
• Ability to present ideas in business-friendly and user-friendly language.
• Ability to analyze related indicators, information, data and reports to determine appropriate recommendations.
• Ability to work independently and also to work effectively with others.
• Skilled in exercising initiative, judgement and critical thinking and able to express recommendations and operational or strategic risk or threat advice to senior level managers and executives.

Working Conditions

• Most work is performed at a desk or in front of a computer.
• Able to sit/stand for long periods of time.
• For position-specific details regarding the physical and mental demands and working conditions, contact Human Resources.
• Reasonable accommodation may be made to enable individuals to perform essential functions.

Qualified applicants will receive consideration for employment without regard to race, color, religion, sex, national origin, sexual orientation, gender identity, disability or protected veteran status.

California Employee Data Collection Notice