Information Security Engineer

Who You Are

Interested in enhancing security in a dynamic environment while collaborating with experts and continuously learning about emerging threats and technologies?

The Information Security Engineer will be responsible for protecting the organization's IT infrastructure, systems, and data from cyber threats. This role supports the investigation and analysis of security events, alerts, and incidents to identify potential threats and recommend appropriate remediation. Additionally, they will implement security measures, identify and assess vulnerabilities, respond to incidents, and ensure compliance with industry standards.

The ideal candidate will have a strong Security Operations Center (SOC) background with hands-on experience in detecting, analyzing, and responding to security incidents across network, application, and system environments. They should possess in-depth knowledge of networks and operating systems, along with proficiency in Bash/Python scripting.

We are seeking a self-motivated, adaptable, and detail-oriented professional who can work collaboratively with security, networking, systems, and software development teams. The candidate will play a key role in investigating, containing, and mitigating threats effectively, ensuring the security and resilience of our technology environment.

What You'll Do

• Perform comprehensive reviews of security events aggregated from multiple log sources, including endpoint protection tools, email gateway, web gateway, cloud-based products, and SIEM.
• Conduct in-depth investigations of security alerts and issues affecting Windows, Mac, and Linux end-user devices and Windows and Linux servers. This may involve direct access to systems for forensic analysis, troubleshooting, and validation of potential threats.
• Work closely with other departments to assess security incidents and vulnerabilities, providing actionable recommendations to improve the security posture and reduce risk.
• Maintain and administer security tools to ensure optimal performance, accuracy, coverage, and compliance across Vail’s environments.
• Develop and maintain comprehensive security documentation, including standard operating procedures, incident response playbooks, and incident response guides.
• Lead and participate in the coordination of security incident response activities, including participation in an on-call rotation for security incidents.
• Prepare weekly and monthly reports on security metrics, highlighting key findings, emerging threats, and actionable insights.
• Collaborate with team members and senior staff to design and develop, and enhance security tools and automation capabilities.
• Support internal and external audits and ensure adherence to regulatory and industry frameworks, including PCI DSS, HIPAA, SOC 2, NIST, and ISO 27001.

Qualifications - We encourage you to apply if you think your experience may be a match, even if you do not meet all of the qualifications.

• Education : Bachelor’s degree in Computer Engineering, Computer Science, Information/Cyber Security, or a related field.
• Experience : Minimum of 5 years in an Information Security role, with proven ability to prioritize and respond with urgency to security-related issues.
• Core Skills : Proficient in at least four of the skill sets outlined in the responsibilities section above.
• Operating Systems : Hands-on experience with Linux and Windows environments; working knowledge of Linux system administration and bash scripting.
• Programming & Scripting : Experience writing Python scripts to support security operations and automation.
• Networking : Familiarity with networking fundamentals, protocols, and troubleshooting.
• Security Knowledge : Understanding of diverse security risks and their potential business impact.
• Incident Response : Prior experience as a member of an incident response team.
• Cloud & Containerization : Knowledge of on-premises Kubernetes environments.
• Compliance : Familiarity with compliance frameworks, including PCI DSS, HIPAA, SOC 2, NIST, and ISO 27001.
• Certifications : Security or Linux certifications, i.e., CISSP, LFCE, LFCS, RHCSA, RHCE, or Red Hat Certified Specialist in Security: Linux, preferred.
• Rapid7 Platform Experience : Experience using Rapid7 products such as InsightIDR, InsightVM, and Exposure Command to support threat detection, vulnerability management, and exposure reduction initiatives, a bonus.
• Vulnerability Management : Ability to conduct vulnerability assessments, validate identified vulnerabilities, prepare detailed reports for operations and management, and coordinate remediation efforts with relevant stakeholders, a bonus.

$110,000 - $140,000 a year

Who We Are

At Vail, we believe in the unique power of voice interactions to create more expressive, more intimate, and more efficient interpersonal interactions. Using Vail technology, we make millions of voice interactions better every day. We process around 10% of all toll-free call traffic in the U.S.; 1 in 10 times when someone calls a customer support hotline, Vail is routing or interacting with that call.

We are rapidly growing across multiple dimensions, including our customer base, the scope of products we offer, and the size of our team. Now is the right time for a strong candidate to join and grow with us. We have a supportive culture where employees are encouraged to achieve both personal and team goals because we believe growth leads to both business impact and personal fulfillment.

We offer competitive compensation and affordable benefits with flexibility and choice to meet individual and family (including Domestic Partnerships) needs, including:

· Multiple medical, dental, and vision plan options

· Company-paid life insurance, short and long-term disability

· 401(k) savings plan with company match (50% on first 6% of employee contribution)

· 35 days total annual PTO

· Annual Bonus Program

· Paid maternity and paternity leave

· Relocation allowance

· Employee referral bonus

· Gym membership

· Technical and Professional Development stipend

We are striving to implement and sustain an inclusive and equitable work environment for all employees by sourcing underrepresented groups and continually empowering those individuals within our organization to further enrich Vail’s communication solutions. We recognize that equitable and unique individuals benefit our teams’ problem-solving, innovation, and development efforts.

Our offices are located in Deerfield and Chicago, IL. Interviews and onboarding are conducted in our offices when possible. We observe a hybrid work format that provides employees flexibility to collaborate with team members based on business needs.