ACI Worldwide
Website:
aciworldwide.com
Job details:
Job Purpose
The Sr. Security Engineer is responsible for designing, implementing, hardening, and supporting enterprise security capabilities that protect company systems, platforms, and information assets. This role blends hands-on security engineering with operational execution across cloud security, security operations, incident support, and AI security use cases.
The position partners with engineering, cloud platform, application, data/AI, and operations teams to reduce risk, improve detection and response outcomes, and support audit and control expectations. As a senior-level role, this position also contributes technical leadership through documentation, standardization, mentoring, and continuous improvement.
Essential Functions and Responsibilities
- Design, implement, and continuously improve secure configurations and guardrails across enterprise and cloud environments, including identity and access controls, network protections, encryption, secrets management, logging, and platform hardening.
- Engineer, administer, and support enterprise security technologies spanning endpoint security, vulnerability management, SIEM/logging, identity management, monitoring, detection, and cryptographic controls.
- Drive remediation of security findings by prioritizing critical and high-risk issues, validating corrective actions, and improving repeatable control patterns.
- Build, operate, and enhance security operations capabilities, including detection engineering, SIEM/SOAR workflows, alert triage, investigation support, incident response playbooks, and operational runbooks.
- Conduct or support incident investigations, root-cause analysis, containment and eradication activities, and lessons-learned follow-through.
- Participate in the on-call support rotation for security incidents, provide technical support during active investigations and response activities, and contribute to post-incident remediation and continuous improvement.
- Develop and maintain technical documentation, engineering standards, implementation procedures, and evidence-quality artifacts to support operational consistency and audit readiness.
- Partner with engineering, cloud, application, and AI/ML stakeholders to implement scalable security controls and secure-by-default patterns.
- Perform technical assessments and proof-of-concept evaluations of new security solutions and recommend changes to procedures, standards, or tooling where appropriate.
- Implement practical security controls for AI-enabled systems and workflows, including governance, access controls, monitoring, and risk reduction for model and application use cases.
- Participate in audits, control reviews, and security assessments; support evidence collection, traceability, and remediation tracking.
- Mentor less experienced engineers and contribute to technical leadership across the team.
- Perform other duties as assigned and understand and adhere to all corporate policies, including the ACI Code of Business Conduct and Ethics.
Qualifications (Education, Experience, Knowledge, Skills, and Abilities)
- Bachelor’s degree in Computer Science, Information Systems, Cybersecurity, MIS, or related field; equivalent practical experience may be considered.
- 5+ years of experience in security engineering and/or security operations with demonstrated hands-on delivery.
- Strong working knowledge of security fundamentals across identity and access management, encryption, network security, secure logging/telemetry, configuration hardening, and vulnerability/risk remediation.
- Experience implementing and supporting security controls in at least one major cloud environment; direct experience across both AWS and Azure is strongly preferred.
- Demonstrated experience with security operations processes and tooling, such as SIEM/SOAR, detection engineering, alert triage, incident support, security scanning, or operational playbooks.
- Demonstrated ability to translate security findings into practical engineering improvements, documentation, and measurable operational outcomes.
- Experience developing technical documentation, standards, and runbooks for repeatable operational execution.
- Strong communication skills and the ability to work effectively with both technical and non-technical stakeholders.
- Ability to work independently on complex assignments with limited day-to-day supervision.
Preferred Qualifications
- Experience with regulated or audited environments and supporting evidence traceability or control mapping.
- Experience with automation and scripting in Python, PowerShell, Bash, Go, Ansible, or similar tooling.
- Experience with policy-as-code, infrastructure-as-code security gates, or continuous compliance patterns.
- Experience with container, Kubernetes, or workload identity security.
- Experience with threat hunting, post-incident remediation, and engineering-driven control improvements.
- Familiarity with AI/LLM application security, threat modeling, secure evaluation/testing, and governance approaches.
- Advanced knowledge of security standards and frameworks.
- Experience mentoring junior team members.
Licenses and Certifications
- Relevant certifications are strongly preferred. Candidates should demonstrate credible competency across cloud security, cybersecurity operations, and AI / application security through a combination of certifications and directly relevant experience.
Work Environment
- Standard work environment.
- Majority of time spent on PC.
- Participation in an on-call rotation is required to support incident response, escalations, and urgent security events.
- Travel may be required on a limited basis.
Click on Apply to know more.