Senior IT Security Engineer

Talcott Financial Group is seeking a Senior IT Security Engineer to advance their enterprise security strategy. The ideal candidate brings deep technical expertise, strong analytical capabilities, and the ambition to grow into broader leadership responsibilities.

Requirements

• Analyze and interpret advanced cyber threats, providing clear, actionable insights.
• Stay ahead of emerging risks by maintaining a strong understanding of the evolving threat landscape.
• Communicate security issues and recommended remediation clearly to technical teams and executive stakeholders.
• Oversee critical security services, including vulnerability management, firewalls, certificate management, SOC operations, and data loss prevention.
• Design, engineer, and maintain secure identity platforms across Active Directory and Entra ID.
• Lead the architecture, governance, and automation of cloud security controls.
• Implement and manage PKIaaS to streamline enterprise certificate lifecycle management.
• Evaluate new technologies through research and proof‐of‐concept efforts, advising leadership on impactful security investments.
• Advise business and IT partners on building secure processes and systems.
• Bachelor’s degree in Information Security, Computer Science, Information Systems, or similar field.
• Minimum of 10 years of cybersecurity or relevant IT experience.
• Professional certifications (CISSP, GIAC, ISACA, etc.) are preferred
• Deep experience with Active Directory, Group Policy, and Entra ID are required
• Hands‐on expertise with network security technologies (firewalls, IDS/IPS, malware defense, DDoS/bot mitigation, proxies, ACLs, wireless security). Palo Alto experience is a plus.
• Experience with cloud security across Azure, Oracle Cloud, and O365.
• Strong understanding of enterprise threat analysis, mitigation strategies, and application‐layer security.
• Solid knowledge of networking and web protocols (TCP/IP, HTTPS, IPsec, DNS).
• Experience conducting network and application vulnerability assessments.
• Familiarity with encryption, data protection, DLP, and endpoint security.
• Experience designing, implementing, and operating enterprise Public Key Infrastructure (PKI).
• Understanding AI cybersecurity risks and mitigation strategies.
• Deep experience with Active Directory, Group Policy, and Entra ID.
• Practical understanding of container and API security concepts (image scanning, runtime protection, secrets management, gateway/WAF, auth/z, rate limiting).
• Proven ability to collaborate across organizational and vendor teams.
• Strong decision‐making skills with the ability to balance security and business needs in a dynamic environment.
• Excellent written and verbal communication skills.

Benefits

• Annual bonuses
• Long-term incentives
• Recognition