Security Operations Engineer

Job Description

Benefit Information:

ABM offers a comprehensive benefits package. For information about ABM's benefits, visit:

ABM 2025 Employee Benefits | Staff & Management

Responsibilities:

Specific job duties or deliverables that the position requires which will also measure performance:

• Manage URL filtering and Data Loss Protection (DLP) with a focus on Artificial Intelligence (AI)
• Coordinate and execute tool maintenance following proper change management processes.
• Participate and lead key areas in the security incident response and investigation processes.
• Develop comprehensive and accurate reports and presentations for both technical and executive audiences.
• Effectively communicate findings and strategy to stakeholders including technical staff, executive leadership, and legal counsel.
• Perform root cause analysis and provide recommendations that will mitigate potential impact.
• Develop scripts, tools, or methodologies to enhance ABM's security tool maintenance
• Maintains the integrity and security of enterprise-wide IT systems and networks.
• Supports security initiatives through both predictive and reactive analysis.
• Drives and implements strategic level security initiatives.
• Manages vendors and other interdependencies to streamline security processes.
• Communicates and escalates complex security issues as required.
• Assists in the optimization of enterprise-wide security efforts.
• Consistently delivers tasks in support of IT strategies, projects, and initiatives.

Required Qualifications:

• Leverages readily available resources to create cost-effective security solutions.
• Ensures full network coverage and accurate reporting on all security tools.
• Identifies, evaluates, and reports security vulnerabilities to prioritize the mitigation of potential threats and minimize the overall attack surface.
• Research emerging cyber security threats and applies necessary countermeasures to maintain a proactive security posture.
• BS or BA in desired field (computer science, information security) and/or 6 years of experience in desired field.
• 3-5 years of experience in the following:
  • DLP
  • URL filtering
  • Artificial Intelligence
• Windows and Linux operating systems and associated scripting languages
• Certifications include CEH, CISSP, Security+, Linux+, GIAC
• Technical security certifications or academic background a plus.
• Strong verbal and non-verbal communication skills
• Able to effectively manage simultaneous security initiatives
• Demonstrates collaboration across interfacing teams and functions
• Strong critical thinking and advanced troubleshooting abilities
• Self-starter that can work efficiently both independently and with teams

Preferred Qualifications:

• Holistic experience in Cloud Security/Technologies, Cryptography, Computer Forensics, Intrusion Detection/Prevention, Information Systems/Network Security, Malware Analysis, and Infrastructure Design.
• Extensive experience with core anti-virus tools/software (e.g. Microsoft Defender ATP, Cisco AMP, CrowdStrike, etc.).
• Understanding alert triaging, vulnerability detection and response, and data integrity.
• Advanced understanding of TCP, UDP, HTTP, IP, and other network protocols.
• Ability to utilize and write scripts that interact with APIs, automate tasks, and assist with alert response.
• Experience in regulated environments (FedRAMP, SOC 2, etc.).
• Knowledge of container technology and how to assess the security posture of images.
• Critical thinking and efficient communicator (i.e. written and verbal).
• Experience identifying, investigating, and responding to complex attacks in hybrid-environments.