Principal Security Engineer I
Let’s go create
TITLE: Principal Security Engineer I
LOCATION: Greenwood Village, Colorado
JOB SUMMARY: Responsible for engineering activities that monitor, detect, and alert on potential security threats to the company's telecommunications and signal processing hardware, software, and electrical systems. Work closely with network engineering and technical operations staff on the operation and implementation of existing and new security technologies and tools to improve security operations and service delivery. Tune existing technologies to integrate the latest threat intelligence and develop requirements for new operational counter-measures and their deployment. Serve as the technical network security expert. Lead and coordinate the incident response process for network security operations and communicate event status to leadership. Responsible for running, maturing, and growing the Charter / Spectrum Vulnerability Security Scanning program. Responsible for evolving, expanding, and operating the Spectrum Vulnerability Security activities in the Vulnerability Management team. Provide executive level communication of Vulnerability Management information with system owners, executive stakeholders, and security management. Actively identify, evaluate and implement industry leading application security tools and techniques. Maintain and update application security processes and procedures, mentor other engineering members of the team and validate scan results for accuracy and completeness. Demonstrate application security scanning subject matter expertise across system, application, container, and cloud workloads. Develop and publish KPI’s that monitor the efficacy of the Vulnerability Management activities. Analyze the results of application scans, understand the results, eliminate false positives, and advise coding best practices. Develop best practices for detecting and remediating secrets including API keys and other credentials. Maintain effective processes and procedures for Static and Dynamic code analysis (SAST/DAST), Software Bill of Materials (SBOM), and Software Composition Analysis (SCA). Work with and have a thorough understanding of Web application security concepts, principles and guidelines, such as OWASP. Evaluate the design of Vulnerability Management’s process documentation for including assets in Qualys vulnerability scanning and evaluate the validation of the completeness of asset scanning and out of scope assets. Schedule and run weekly and ad hoc Vulnerability Scans. Coordinate scanning activities with small cross functional teams. Review and work on Vulnerability tickets. Demonstrate expertise in identifying and mitigating critical vulnerabilities. Work with Domain Name Systems (DNS), routing protocols, and cybersecurity technologies, such as firewalls, intrusion detection and prevention system (IPDS), and SEIM solutions. Prevent security exploits, detect security attacks and anomalies, and respond to security incidents and intrusions. Work in network security design, network security architecture, TCP/IP protocols and topology. Work in information security operations, managing information security events and incidents for large and sophisticated networks. Utilize forensic methodologies and best practices to investigate intrusions, preserve evidence, and coordinate a unified security response. Follow industry specifications and standards NIST, CSRIC, Firewalls, and Intrusion. Use Qualys, Tenable, Rapid 7, Veracode, and GitGuardian for vulnerability management.
EDUCATION / REQUIREMENTS: Bachelor's degree in Computer Science, Information Systems, or related field. 5 years of hands-on experience working on a Security Operations team and demonstrating expertise in identifying and mitigating critical vulnerabilities. 5 years of experience: with Domain Name Systems (DNS), routing protocols, and cybersecurity technologies, such as firewalls, intrusion detection and prevention system (IPDS), and SEIM solutions; preventing security exploits, detecting security attacks and anomalies, and responding to security incidents and intrusions; and experience in network security design, network security architecture, TCP/IP protocols and topology. 4 years of experience: in information security operations, managing information security events and incidents for large and sophisticated networks; and utilizing forensic methodologies and best practices to investigate intrusions, preserve evidence, and coordinate a unified security response. 2 years of experience: following industry specifications and standards NIST, CSRIC, Firewalls, and Intrusion; and using Qualys, Tenable, Rapid 7, Veracode, and GitGuardian for vulnerability management.
Salaries depend on geography, experience, and education; negotiations begin at $149,178 per year.
Here, employees don’t just have jobs, they build careers. That’s why we believe in offering a comprehensive pay and benefits package that rewards employees for their contributions to our success, supports all aspects of their well-being, and delivers real value at every stage of life.
A qualified applicant’s criminal history, if any, will be considered in a manner consistent with applicable laws, including local ordinances.
This job posting will remain open until 2025-09-02 09:00 PM (UTC) and will be extended if necessary.
The base pay for this position generally is between $110,800.00 and $196,400.00. The actual compensation offered will carefully consider a wide range of factors, including your skills, qualifications, experience, and location. We comply with local wage minimums and also, certain positions are eligible for additional forms of compensation such as bonuses.
Get to Know Us Charter Communications is known in the United States by our Spectrum brands, including: Spectrum Internet®, TV, Mobile and Voice, Spectrum Networks, Spectrum Business and Spectrum Reach. When you join us, you’re joining a strong community of 95,000 employees working together to serve more than 31 million customers in 41 states and keep them connected to what matters most. Watch this video to learn more.
Who You Are Matters Here We’re committed to growing a workforce that reflects our communities, and providing equal opportunities for employment and advancement. EOE, including disability/vets. Learn about our inclusive culture.
