Apogee Services Inc. Apogee Enterprises, Inc. (NASDAQ: APOG), founded in 1949 and is headquartered in Minneapolis, MN. Apogee is a growing, profitable company with annual revenues approaching $1.4 billion. It provides distinctive metal and glass solutions for enclosing commercial buildings, and glass and acrylic solutions for picture framing and display applications. Brands in the Apogee family include Alumicor, EFCO, Harmon, Linetec, Tru Vue, Tubelite, and Viracon. Position Summary The Information Security Engineer is responsible for design, planning, implementation, and hands-on operation of Apogee Enterprises' cybersecurity defenses. This individual is additionally responsible for maintaining and extending the existing security framework and the creation of policies in concurrence with industry best practices. The Information Security Engineer also participates as a member of the Apogee Security Incident Response Team (SIRT) to identify and resolve potential security incidents. Reporting directly to the Apogee Sr. Director of Cybersecurity and IT Compliance, the incumbent will design and maintain security controls, enhance monitoring, and help to foster a security-first culture across the company. Responsibilities Participate as a member of the Cybersecurity Team in developing, maintaining, and communicating Apogee's security controls and strategies. Own the architecture, management, and tuning of key cybersecurity systems which include: Centralized Logging, Intrusion Detection, Application Vulnerability Scanning, Advanced Endpoint Protection, Firewalls, and SIEM. Support security analysts with event/alert investigation escalation. Conduct risk assessments and develop plans to prioritize findings for remediation. Coordinate and own security-related tasks for mergers and new acquisitions. Act as a liaison to company teams to ensure that security is being adequately addressed throughout the project lifecycle. Assist in third-party vendor management and oversight. Identify, create and maintain security-related documentation. Maintain ongoing knowledge of information security technologies. Participate in Incident Response investigations as a member of the Apogee SIRT, Attend and participate in staff, project and vendor meetings. Attend and participate in after hours and weekend maintenance as necessary. Maintain and ensure confidentiality of company, client, and employee data. Personal Attributes The successful candidate will be expected to be a high-energy, creative and resourceful self-starter who demonstrates technical skills, instincts, and significant capacity for work. They are highly intelligent and enthusiastic with a commitment to excellence. In terms of personal competencies, the successful candidate must be a problem solver and innovator capable of breaking down complex problems into manageable solutions. In addition, they should possess the following competencies: Ethics: Highest level of professional integrity and honesty as well as personal credibility. Results-Oriented: A driver who possesses the ability to take actions and implement effective solutions in a timely manner. Teamwork and Interpersonal Skills: A team player, receptive to ideas from others. Shares information and keeps team members and partners informed. Works effectively with others to identify and resolve issues. Excellent interpersonal skills and a capacity to comprehend and communicate complex concepts with staff of all technical abilities. Problem Solver: Exceptional analytical and problem-solving abilities and an understanding of how to utilize technology to fulfill work requirements. Education & Experience Minimum requirements: 3-5 years' experience in Information Security or a security-related field. Strong demonstrated understanding of systems integration, SaaS/IaaS/PaaS delivery, and networking best practices. Demonstrated understanding of business requirements/drivers and ability to integrate a diverse set of stakeholders into project pla ning and outcomes. Experience with security control implementation and management. Preferred: Bachelor's Degree CISSP Certification, or the willingness and ability to obtain within twelve months. Experience with event analysis and incident response. Knowledge of and experience with common security frameworks such as CIS, NIST, and ISO 27001. Understanding of SOC 1 and 2 control creation and management. #LI-TV1 Apogee and our brands are an equal opportunity employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability, or veteran status or any other characteristic protected by state or federal law. Apogee Enterprises, Inc. is an equal opportunity employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability or veteran status.