IT Security Engineer

Take Your Corporate Career to the Next Level

Kleinfelder, a Forbes' Top Employer for Engineers in North America, is committed to a people-first culture, technical excellence, and creating opportunities where employees can thrive! Are you ready to be challenged, make a difference, and experience professional growth in your career? Kleinfelder’s Corporate Services team is looking for you! From Accounting & Finance, Human Resources, Marketing & Communications, and Information Technology to Legal and Health & Safety, our corporate employees are part of the Kleinfelder ecosystem – supporting the projects that improve the communities we work and live in.

In this highly visible, fast-paced, and challenging position, you will collaborate with a multidisciplinary team of dedicated IT professionals. You will have the opportunity to work with cutting‑edge security solutions. Our security team is responsible for designing, implementing, managing, and monitoring the overall security posture of the organization. We partner with teams across the company to continually optimize our security posture while maintaining a hyper focus on the reliability and stability of our business environments.

• Partner Security Manager to create and maintain security architecture strategy roadmap.
• Develop and implement security tools to assist in detection, prevention, and analysis of security threats.
• Act as the subject matter expert for Kleinfelder's identity access management program for both internal and external identities as well as design, implement, and support IAM best practice configurations.
• Partner with Dev Ops and engineering teams to embed security controls into CI/CD pipelines and application architectures, ensuring secure‑by‑design implementations throughout the Software Development Lifecycle (SDLC).
• Manage Kleinfelder's vulnerability management program and partner with other IT members to discover/remediate system vulnerabilities, document results, and provide recommendations to minimize risks.
• Act as technical leader for the implementation of security projects that require compliance with customer and corporate policies and standards.
• Represent security during the change advisory board (CAB) and software approval board to review and approve changes in software, hardware, facilities, telecommunications, and user needs.
• Monitor, tune, and respond to Security Information Event Management (SIEM) security incidents, e.g., system compromise loss of confidentiality, authentication problems, etc.
• Conduct internal and external security audits, third‑party risk assessments and security analyses to align with compliance standards.
• Document, maintain, and update cybersecurity policies and procedures working closely with other internal IT stakeholders.
• Recommend and install upgrades to security controls to mitigate risks.
• Research and evaluate new security technology, techniques, and industry best practices to minimize threats and vulnerabilities.
• Assist with day‑to‑day cybersecurity responsibilities including managing the spam mailbox, security awareness training, and security incident tickets.
• Support internal audits and customer assessments to identify risks and determine mitigation actions.
• Understand and participate in incident response, including steps to minimize the impact and conduct a technical and forensic investigations.
• Generate monthly security reports which demonstrate overall security maturity.

• Bachelor's degree or equivalent experience.
• 7+ years of progressive information security experience supporting enterprise environments.
• 5+ years of hands‑on experience designing, implementing, and supporting Active Directory and Azure Active Directory, including multi‑factor authentication (MFA), single sign‑on (SSO), conditional access policies, and password security controls.
• 3+ years of experience supporting security operations, including incident response, investigation, and remediation through a ticketing or helpdesk system.
• 3+ years’ experience working with Dev Ops and engineering teams to integrate security into the Software Development Lifecycle (SDLC) rather than…