Senior Security Engineer

For the past 162 years, Swisher has been an industry leader known for its iconic products and commitment to high quality standards. With a rich history, Swisher serves adult consumers through a diverse range of businesses, including Swisher Sweets Cigar Company, Helme Tobacco Co., Hempire, Rogue Holdings, and Drew Estate: The Rebirth of Cigars. We have a passion for people and helping them build rewarding careers. If you’re ready to create excitement and drive what’s next in the industry, we’d love to hear from you.

The Senior Security Engineer is responsible for designing and implementing security strategies that meet the business's needs. You will focus on designing, implementing, and managing comprehensive security solutions to protect systems, data, and applications from cyber threats.

Key Responsibilities

• Responsible for the design, deployment, and support of secure systems aligned with business objectives and regulatory compliance
• Responsible for developing, implementing, and maintaining security policies, standards, and best practices to maintain compliance and improve overall security posture
• Responsible for architecture development, build, and supporting the security infrastructure to detect and respond to threats including security information and event management (SIEM), data loss prevention (DLP), intrusion prevention systems (IPS), and other tools in action plan designs
• Responsible for managing security systems, including provisioning, monitoring, and incident response
• Responsible for providing on-call support to address production incidents or issues that occur outside of normal business hours
• Proactively research emerging threats, evaluate and pilot mitigation technologies, and collaborate with engineering teams to seamlessly deploy these protections into production
• Continuously improve security posture through infrastructure management, threat analysis, and vulnerability mitigation
• Collaborate with business leaders, project managers, and technical teams to ensure security considerations are factored into all technology projects
• Responsible for performing system patching, maintenance, and administration, as necessary

Qualifications

• Bachelor’s degree in Cyber Security, Computer Science, Information Systems, Software, Electrical or Electronics Engineering, or comparable field of study
• 5+ years of related IT experience
• Knowledge of cybersecurity frameworks
• Demonstrated experience with encryption, system and network security, cloud security, and identity management
• Strong understanding of security tools (e.g. SIEM systems, firewalls, anti-malware)
• Working knowledge of cloud platforms (e.g. AWS, Azure, Google Cloud)
• Experience with security assessment methods and penetration testing techniques
• Demonstrated experience in identifying risk and development of mitigation plans
• Knowledge of security related legislation/regulations with emphasis on PCI and Privacy
• Strong problem solving skills with an ability to develop creative alternatives to complex problems, as well as continuous improvement process skills
• Demonstrated professional written, verbal, and presentation communications skills
• Proven ability to work effectively in a fast-paced environment as part of a high performance team
• Security accreditation (e.g., CISSP, GCIH, CISM, etc.)

Preferred Qualifications

• Master's degree in Computer Science, Information Security, Cybersecurity, or a related field
• Experience in developing and delivering security awareness training
• Major cloud provider platform certification (e.g. AWS Solution Architect, Google Cloud Engineer, Microsoft Solution Architect, etc.)
• Proficiency in scripting languages

What we offer

• Base salary and bonus program
• Medical, dental, vision, life insurance effective on date of hire
• Generous 401(k) Plan
• Defined Contribution Plan
• Paid vacation and paid holidays
• Tuition reimbursement
• Professional growth and development programs to help advance your career!