Welcome Back,

Career Opportunity: IT Security Engineer (Req. 372)

Job Title
IT Security Engineer (Req. 372)
American AgCredit, ACA
Santa Rosa, California
Experience Level
Mid-Career (5-10 years)
Supervisor's Title
Information Technology
Salary Range
DOE, depending on experience
Posted Date
Thursday, April 6, 2017
Closing Date
Open until filled
Job Description


At American AgCredit, working in farming and ranching isn't just a job, it's a way of life. The more you get to know us, the more you'll begin to understand no one is more dedicated to agriculture and the values of the people who work in this industry than the people at American AgCredit. For a work environment which will demand the best you have to offer and appreciate everything you have to give, there's no place better. 


Responsible for the monitoring, managing and the recommendation of security solutions to protect Association data and systems.  The IT Security Engineer will serve as the Subject Matter Expert (SME) for all IT security solutions and will be an integral part of incident response.


1. Establish communications and procedures to help IT staff understand security & business context.
2. Issues risk assessments for IT projects, and serve as subject matter expert by providing guidance and consulting services to project teams on matters related to security.
3. Maintain/update documentation – diagrams, procedures, process, standards, etc. as it relates to security.
4. Coordinates IT response activities for security incidents.
5. Assist with maintaining Incident Response Plan.
6. Monitors all Domain change logs.
7. Monitors and manages Dell SecureWorks products and implementations.
8. Monitor, manage and drive SecureWorks tickets to resolution.
9. Evaluate and recommend new security solutions/products to meet Association security objectives.
10. Monitors and manages web and content filtering.
11. As IT Compliance Manager, monitor current and proposed laws, regulations, industry standards, and ethical requirements related to information security and privacy.
12. As chair of IT Security Committee, responsible for garnering the collective knowledge of IT subject matter experts to improve and optimize the overall security posture.  
13. Liaison between IT and Risk Management including creating/providing reports as required, and assist with security awareness and training.
14. Liaison between IT and Internal Audit for security related audits and audit needs.
15. Conduct research on emerging products, services, protocols, and standards relative to the information security arena.
16. Participates as a member of the Security Risk Committee.
17. Participates as a member of the Identity and Access Management Committee.
18. Review and evaluate service provider security reports. 
19. Performs other functions assigned.


1. BA/BS degree, with emphasis on computer science, management information systems or business; or equivalent.
2. At least seven years of related experience.
3. Demonstrated proficiency of IT security and cyber-security concepts.
4. CISSP (Certified Information Systems Security Professional) Certification.
5. Development of security models and designs to protect Association assets.
6. Experience with configuration of commercially available security solutions.
7. Project management skills.
8. Excellent verbal, written, analytical, presentation and interpersonal skills.
9. Keen attention to detail.
10. Occasional travel required (< 10%) to perform job. 


Must have the ability to perform basic office tasks and sit at a desk for an extended period of time. Job requires extensive use of computers and phones. While performing the job, the employee is required to sit, crouch, kneel, crawl, reach and have the ability to lift up to 40 pounds. Ability to work with typical hardware and cabling practices required. Must have strong written and verbal communication skills to adequately convey ideas and work well with a team. Ability to talk and hear, sit and use their hands and fingers, and reach in all directions is essential in performance of the job. Must be able to interact effectively with people at all levels of company. Work during established business hours and may require occasional weekend and/or evening work.