The Senior Information Security Engineer will serve as an expert in areas relating to information security services, technology, and application, e.g., information asset (data) security, internal and external network security, application system security design/development, security administration and risk management. Advise management and peers on technical/program issues concerning the security of system applications, data, and data networks. Provide advice to divisions and customers on security administration/operations and to enhance distributed processing across different systems and hardware platforms. Serves as a designer and systems integrator for large complex applications, systems, or networks, with a focus on securing vulnerabilities and reducing risk of system and/or asset compromises.

C.H. Robinson recognizes the importance of workplace flexibility. We are committed to providing a remote-friendly work environment, both now and in the future. Our global technology teams will continue to have the flexibility that enables you to work where you are most effective, whether that be remote or in the office.

Responsibilities:

• Design, implement, maintain, and operate information system security controls and countermeasures; document the operation, use, and expected outputs of these systems that are on-premise and hosted in the cloud
• Analyze and recommend security controls and procedures in acquisition, development, and change management lifecycle of information systems, and monitor for compliance
• Analyze and recommend security controls and procedures in business processes related to use of information systems and assets and monitor for compliance
• Administer authentication and access controls, ensure regular reviews of exception reports are performed on the C.H. Robinsons systems, and take appropriate actions based on the findings
• Monitor information systems for security incidents and vulnerabilities; develop monitoring and visibility capabilities; report on incidents, vulnerabilities, and trends
• Respond to information system security incidents, including investigation of, countermeasures to, and recovery from computer-based attacks, unauthorized access, and policy breaches; interact with third-party incident responders, including law enforcement
• Partner with more senior information security engineers and stakeholders from Management, Security, Infrastructure, Internal Audit and Application Development Teams to maintain strategic roadmaps for the Information Security program and frameworks
• Analyze trends, news and changes in threat and compliance environment with respect to organizational risk; advise organization management and execute plans for compliance and mitigation of risk; perform risk and compliance self-assessments and engage and execute third-party risk and compliance assessments.
• Analyze and develop information security governance, including organizational policies, procedures, standards, baselines, and guidelines with respect to information security and use and operation of information systems
• Develop and administer, or provide advice, evaluation, and oversight for, information security training and awareness programs.
• Develop and follow Individual Development Plan (IDP) to maintain current, expert knowledge in areas of responsibilities
• Mentor other security engineers and proactively seek mentorship from others
• Evangelist for C.H. Robinson's security controls and program
• Support and document vendor relationships
• Other duties or responsibilities as assigned according to the team and/or country specific requirements
• Participate in 24x7 on-call support rotation

Required Qualifications:

• Minimum 5 years of information technology experience
• Minimum 3 years of information security experience
• Demonstrated experience and progressive track record of technical achievement and a strong focus toward customer service and satisfaction
• Strong Active Directory, Linux and Windows client/server experience
• Security technologies and implementation of security products (firewalls, AV systems, IDS, IPS, web content filter, Microsoft Windows system security services and functions)
• Working knowledge of public cloud workloads and SaaS systems
• Previous experience with identity and access management (MFA, identity lifecycle)
• Understanding of best practices in security engineering, including secure development, cryptography, network security, security operations, systems security, policy, and/or incident response
• Bachelor's degree or equivalent work experience and a high school diploma/GED

Preferred Qualifications:

• Experience securing cloud workloads and SaaS systems
• Securing public cloud workloads
• Working knowledge and previous experience with forensic investigations
• Working knowledge of PKI and certificate management
• Experience with two factor authentication methods and technologies
• Previous experience establishing and utilizing measurements, processes, and metrics to manage support activities
• Experience with encryption technologies and methods
• Previous experience with vendor management and coordinating vendor activities.
• Knowledge of wireless technology and portable device security
• Ability to perform technical analysis of complex software, systems, hardware, and network environments
• CISSP, Cisco, Microsoft, or security certifications
• Proactive, accountable, autonomous, and solutions oriented
• Strong time management and organizational skills
• Ability to deliver to aggressive deadlines while working complex projects across multiple groups
• Excellent facilitation and communication skills with the ability to partner, gain trust, coordinate, and motivate resources
• Values a diverse and inclusive work environment
• Strong customer-service orientation
• Ability to work in a team-oriented, collaborative environment

Equal Opportunity and Affirmative Action Employer

C.H. Robinson is proud to be an Equal Opportunity and Affirmative Action employer. We believe in equality for all and celebrate the diversity of our employees, customers and communities. We believe this increases creativity and innovation, drives business growth and enables engaged and thriving teams. We're committed to providing an inclusive environment, free from harassment and discrimination, where all employees feel welcomed, valued and respected.

Affirmative Action Employer/EOE/M/F/Disabled/Veteran

Benefits

Your Health, Wealth and Self

Your total wellbeing is the foundation of our business, and our benefits support your financial, family and personal goals. We provide the top-tier benefits that matter to you most, including:

• Two medical plans (including a High Deductible Health Plan)
• Prescription drug coverage
• Enhanced Fertility benefits
• Flexible Spending Accounts
• Health Savings Account (including employer contribution)
• Dental and Vision
• Basic and Supplemental Life Insurance
• Short-Term and Long-Term Disability
• Paid and floating holidays
• Paid time off (PTO)
• Paid parental leave
• Paid time off to volunteer in your community
• Charitable Giving Match Program
• 401(k) with 6% company matching
• Employee Stock Purchase Plan
• Plus a broad range of career development, networking, and team-building opportunities

Dig in to our full list of benefits on OUR CULTURE page.