Sr. Security Engineer​/Incident Response Lead

HELP US BRING THE GIFT OF HEALTH TO LIFE. Working at Pharmavite is an experience like no other. With a focus on complete nutrition for all, each endeavor is urgent and every day counts. You'll have the opportunity to work on the #1 selling national vitamin and supplement brand, Nature Made, as well as an exciting portfolio of other products that are shaping the future of the healthy living industry.

Consumer‑driven innovation, high‑quality products and a promising portfolio, all driven by a team with a shared sense of purpose— that’s Pharmavite. Join us to bring the gift of health to life.

This role is not available for sponsorship, including I‑983 participation.

The Senior Security Engineer plays a key role in safeguarding our organization’s digital assets and ensuring the integrity, confidentiality, and availability of our systems and data. This position demands a deep understanding of cybersecurity principles, technologies, and best practices, along with the ability to implement and manage robust security solutions. This individual is responsible for implementing, monitoring, and measuring the necessary standards, controls, and procedures to protect the organization’s technology systems.

Protecting the company from unauthorized access, modification, or destruction. The individual is responsible for maintaining integrated programs to protect the integrity, confidentiality, and availability of the organization’s technology infrastructure and information resources.

• Expected to establish and execute a structured approach to analyzing security alerts and potential incidents.
• Lead day‑to‑day investigation of security alerts, identifying and assessing potential threats, unauthorized activity, and policy violations. Serve as Incident Response Team lead for high‑severity incidents and potential breaches, driving coordinated response efforts including containment, remediation, communication, and post‑incident review.
• Respond to information system security incidents, including investigation of countermeasures and recovery from computer‑based attacks, unauthorized access, and policy breaches.
• Collaborate with leadership, IT teams, and other departments to align and execute security priorities and initiatives with business objectives.
• Conduct regular vulnerability assessments and penetration tests to identify and remediate security weaknesses. Implement and manage vulnerability management programs to ensure timely patching and mitigation of vulnerabilities.
• Develop and deliver security awareness training programs to educate employees on cybersecurity best practices and raise awareness of emerging threats. Foster a culture of security across the organization.
• Provide guidance and support to IT and business stakeholders on security‑related matters. Collaborate with cross‑functional teams to integrate security into the organization’s processes and projects from inception to completion.

• Provide front‑line support for all information security‑related issues, guiding secure infrastructure deployments and consulting on secure application development.
• Manage SSL certificates and encryption keys. Monitor and respond to emerging threats.
• Lead security compliance efforts across partner organizations, performing risk analysis on large‑scale compliance/remediation efforts, partnering with legal and other business units as needed.
• Coordinate security compliance efforts by performing regular application and infrastructure vulnerability assessments, evaluating, and recommending operating systems and application patches. Review and recommend new security products as necessary.
• Conduct regular audits of systems to ensure security standards and processes are being followed. Participate in and lead internal and external security audit interactions.
• Conduct thorough risk assessments to identify potential security vulnerabilities and threats. Develop risk mitigation strategies and prioritize security controls to address high‑risk areas effectively.
• Ensure compliance with relevant regulations, standards, and frameworks by conducting security audits and assessments. Develop and…