Information Security Engineer

Qualifications:

• Bachelor’s Degree (or equivalent) in Computer Science, Information Technology, Cyber Security, or related discipline preferred, and/or a minimum of 2-5 years of experience in roles related to cyber security operations and/or DLP operations.
• Experience in administration and engineering with the security technologies for Data Security Governance and Compliance, such as Database Activity Monitoring, Data Loss and Security, Data Security Posture Management, Endpoint Protection, and file and removable media protection, and Security Information and Event Management (SIEM).
• Hands-on experience with automating and securing Linux, Windows, Mac, networking, database, cloud, and middleware technologies.
• Excellent interpersonal, verbal, and written communication skills with the ability to communicate security risk and compliance-related concepts to a technical and non-technical audience.
• Self-starter, team player, and enthusiasm for learning
• Information Security Certification preferred, such as CISSP.
• Must be authorized to work within the United States.

Certain states and localities require employers to post a reasonable estimate of salary range. A reasonable estimate of the current base pay range for this position is $77,600 to $97,000 annually. Actual salary will be based on a variety of factors, including shift, location, experience, skill set, performance, licensure and certification, and business needs. The range for this position in other geographic locations may differ. Certain positions may also be eligible for variable incentive compensation, such as bonuses or commissions, that is not included in the base pay.

The well-being of WWT employees is essential. So, when it comes to our benefits package, WWT has one of the best. We offer the following benefits to all full-time employees:

• Health and Wellbeing: Health, Dental, and Vision Care, Onsite Health Centers, Employee Assistance Program, Wellness program
• Financial Benefits: Competitive pay, Profit Sharing, 401k Plan with Company Matching, Life and Disability Insurance, Tuition Reimbursement
• Paid Time Off: PTO and Sick Leave (starting at 20 days per year) & Holidays (10 per year), Parental Leave, Military Leave, Bereavement
• Additional Perks: Nursing Mothers Benefits, Voluntary Legal, Pet Insurance, Employee Discount Program

We strive to create an environment where all employees are empowered to succeed based on their skills, performance, and dedication. Our goal is to cultivate a culture of belonging that encourages innovation, collaboration, and respect for all team members, ensuring that WWT remains a great place to work for All!

 If you have any questions or concerns about this posting, please email taposting@wwt.com.

#Li-Mp1

Qualifications

Why Wwt?

At World Wide Technology, we work together to make a new world happen. Our important work benefits our clients and partners as much as it does our people and communities across the globe. WWT is dedicated to achieving its mission of creating a profitable growth company that is also a Great Place to Work for All. We achieve this through our world-class culture, generous benefits and by delivering cutting-edge technology solutions for our clients.

Founded in 1990, WWT is a global technology solutions provider leading the AI and Digital Revolution. WWT combines the power of strategy, execution and partnership to accelerate digital transformational outcomes for organizations around the globe. Through its Advanced Technology Center, a collaborative ecosystem of the world's most advanced hardware and software solutions, WWT helps clients and partners conceptualize, test and validate innovative technology solutions for the best business outcomes and then deploys them at scale through its global warehousing, distribution and integration capabilities.

With over 12,000 employees across WWT and Softchoice and more than 60 locations around the world, WWT's culture, built on a set of core values and established leadership philosophies, has been recognized 14 years in a row by Fortune and Great Place to Work® for its unique blend of determination, innovation and creating a great place to work for all.

Want to work with highly motivated individuals on high-performance teams? Join WWT today!

The WWT Information Security (InfoSec) team is currently searching for an InfoSec Engineer to join the Information Security GRC Team. As a member of the team, you will be responsible for developing automations, as well as implementing and maintaining the tools and capabilities used to ensure the security and protection of sensitive data within our organization. You may also assist in identifying and investigating data loss events, insider threat events, collaborating with the Security Operations Center, Legal, Compliance, and Corporate Security teams to mitigate threats, and engaging with senior team members and leaders to perform actions and carry out initiatives in these areas.

RESPONSIBILIITIES (includes but is not limited to):

• Automation of GRC Processes
• Develop and maintain automation scripts, workflows, and integrations for GRC platforms and processes (e.g., policy management, risk assessments, control testing, audit management).
• Identify and implement automation opportunities to streamline manual GRC operations in partnership with Information Security and IT teams.
• Configure, support, and optimize GRC tools (such as Archer, ServiceNow, or similar), including custom modules, dashboards, and reporting.
• Monitor, troubleshoot, and optimize automated GRC workflows to ensure accuracy, reliability, and compliance with regulatory standards (e.g., GDPR, CCPA).
• Leverage scripting, APIs, and low-code/no-code automation platforms to continuously improve GRC processes.
• Develop and maintain automation scripts, workflows, and integrations for GRC platforms and processes (e.g., policy management, risk assessments, control testing, audit management).
• Identify and implement automation opportunities to streamline manual GRC operations in partnership with Information Security and IT teams.
• Configure, support, and optimize GRC tools (such as Archer, ServiceNow, or similar), including custom modules, dashboards, and reporting.
• Monitor, troubleshoot, and optimize automated GRC workflows to ensure accuracy, reliability, and compliance with regulatory standards (e.g., GDPR, CCPA).
• Leverage scripting, APIs, and low-code/no-code automation platforms to continuously improve GRC processes.
• Governance, Documentation, and Stakeholder Enablement
• Document automation designs, processes, and procedures to support audit and compliance requirements.
• Train and support stakeholders on new automated GRC solutions and best practices.
• Stay current with emerging GRC technologies, frameworks, and regulatory requirements to ensure ongoing compliance and innovation.
• Data Loss Prevention (DLP) & Information Protection
• Serve as technical SME for enterprise-wide Data Loss Prevention (DLP) controls, including policy development, procedures, and implementation.
• Deploy, configure, and maintain DLP tools and technologies to monitor, detect, and prevent data leakage or unauthorized transfers.
• Hands-on experience with Data Classification policies and technologies to address data leakage and information protection.
• Security Controls Automation & Monitoring
• Establish and implement critical security controls and secure build standards in collaboration with technology and application owners.
• Facilitate creation of compliance automation and policy-as-code to streamline governance.
• Deploy, configure, and maintain security tools and technologies for monitoring, detecting, and reporting security control configurations
• Document automation designs, processes, and procedures to support audit and compliance requirements.
• Train and support stakeholders on new automated GRC solutions and best practices.
• Stay current with emerging GRC technologies, frameworks, and regulatory requirements to ensure ongoing compliance and innovation.
• Serve as technical SME for enterprise-wide Data Loss Prevention (DLP) controls, including policy development, procedures, and implementation.
• Deploy, configure, and maintain DLP tools and technologies to monitor, detect, and prevent data leakage or unauthorized transfers.
• Hands-on experience with Data Classification policies and technologies to address data leakage and information protection.
• Establish and implement critical security controls and secure build standards in collaboration with technology and application owners.
• Facilitate creation of compliance automation and policy-as-code to streamline governance.
• Deploy, configure, and maintain security tools and technologies for monitoring, detecting, and reporting security control configurations