Principal Security Engineer

The principal security engineer is responsible for leading the design, implementation, and maintenance of robust security architectures and frameworks to protect Echo’s critical assets, systems, and data. The role demands deep expertise in cybersecurity technologies, risk management, and compliance. The Principal Security Engineer serves as a leader in security, working closely with the Director of Information Security and cross-functional teams including Technology Operations, Engineering, and Technology Sourcing to define and enforce security policies and best practices.
The successful candidate will play a pivotal role in identifying potential security risks, responding to security incidents, and ensuring the organization is prepared to counter emerging threats. Additionally, they will mentor and guide more junior team members, foster collaboration within the security team, and provide key inputs in developing and refining security strategies to meet the evolving threat landscape.

Duties and Responsibilities

• Lead by example in guarding the confidentiality, integrity, and availability of Echo’s critical technology services.
• Lead enhancement of security architecture by ensuring proper implementation, maintenance and validation of essential controls across the Echo landscape including perimeter, identity, endpoint, application, data, and cloud components.
• Guide the maintenance, enhancement, and enforcement of cybersecurity policies, standards, and frameworks. 
• Design and enhance security metrics and reporting systems to communicate security posture and progress in closing gaps.
• Scope and conduct red-team exercises (internal or 3rd party engagement) to assure security posture of critical assets.   Implement remediation plans to address gaps.
• Enhance email security measures to continue detecting and preventing phishing attacks, reinforcing a secure communication environment and protecting users from email-based threats.  Leverage existing tools, while identifying and assessing emerging tools for use in an optimized future-state.
• Provide oversight on firewall and network device configurations, ensuring alignment with policies and industry best practices. Lead regular zero-based rules reviews to maintain optimal, policy-compliant network security configurations.
• Provide technical expertise and guidance for core incident response activities, working with team, logging tools, and SOC provider to ensure an effective response. 
• Propose and support use-cases for automated incident response protocols.
• Proactively identify and address potential threats through regular monitoring, log analysis, and strategic service segmentation. Collaborate with external partners to share threat intel and maintain a robust playbook for tactical responses.
• Maintain and enhance Echo’s SIEM capabilities, ensuring the effectiveness of IDS/IPS, NADS, and continuous security monitoring and alerting systems.
• Ensure cloud security is seamlessly integrated into the overall security strategy and operations.
• Evaluate and deploy advanced detection tools to cloud-native environments.
• Champion cloud security initiatives that align with organizational goals, enhancing resilience across both on-premises and cloud environments. 
• Support regulatory compliance audits, data governance activities, and DLP controls.  
• Advocate for MDM policies, secure data disposal, and future-proofing remote access modalities.
• Strengthen external connection security and align data protection programs with recovery objectives 

Required Skills

• Understanding of secure coding practices, vulnerability assessments, common software vulnerabilities, and frameworks for communicating the same.
• A meticulous approach to identifying vulnerabilities and flaws in systems and code.
• Deep knowledge of network protocols, firewalls, VPNs, and intrusion detection/prevention systems.
• Knowledge of encryption suites, key management, and secure comms protocols.
• Experience in identifying, prioritizing, and mitigating enterprise security threats.
• Experience in securing cloud infrastructure and services in production, at scale.
• Knowledge of digital forensics tools and tactics.
• Familiarity with ethical hacking testing tools and techniques.
• Ability to detect, prioritize, analyze, and respond to security incidents effectively.
• Ability to assess and prioritize security risks in alignment with business goals.
• Skills in analyzing logs and other data to detect anomalies and potential threats.
• Ability to build and execute plans that include security and other tech resources.
• Ability to communicate security issues to stakeholders of at various levels in org.
• Experience working with cross-functional teams to implement security controls.
• Experience training, teaching, and providing mentorship on security best practices.
• Strong decision-making skills, under pressure and with incomplete information.
• Ability to advocate for security needs and influence leadership to support initiatives.
• A forward-looking perspective to anticipate and address emerging security threats.
• Knowledge of standards including ISO/IEC 27001, NIST, and CIS.  Ability to support audits to ensure compliance with legal and regulatory requirements.

Preferred Skills

Advanced domain certifications that demonstrate expertise and leadership in a variety of cybersecurity domains are preferred.  Examples include:   ISC2 (CISSP, CCSP), CISM, CISA, SANS / GIAC (GSE, GSLC, GCIH, GCIA, GPEN), DRII (CBCP), OSCP, CEH, AWS (Solutions Arch, SysOps Admin, Advanced Networking, Security). 

Echo Global Logistics is a leading provider of technology-enabled transportation management services. As a third-party logistics provider, we simplify transportation management for our clients and carriers, handling crucial tasks so they can focus on what they do best. From coast to coast, dock to dock, and across all major transportation modes, Echo connects businesses that need to ship their products with carriers who transport goods quickly, securely, and cost-effectively.

Work environment/physical demands summary:

This job operates in an office environment or remote and uses a computer, telephone and other office equipment as needed to perform duties. The noise level in the work environment is typical of that of an office with an open seating floor plan. The employee may encounter frequent interruptions throughout the workday. The employee is regularly required to sit, talk, or hear.

#Remote

#LI-SE1

Benefits

For more information about our benefit offerings, please visit our careers page at https://www.echo.com/company/careers.

Compensation