Job Title:  Staff CyberSecurity Engineer

What You Need To Know

Shape a remarkable future with us. Build a career working for an industry leader that truly invests in their people – and equips them with leading technology, continuous learning, and the ability to bring their best selves to work. As the premier wine and spirits distributor, Southern Glazer’s isn't just one of Forbes’ Top Private Companies; it's a family-owned business with deep roots dating back to 1933.

The reputation of Southern Glazer’s is well-established, and it's no surprise that we are regularly recognized for our culture. Southern Glazer’s has been recognized by Newsweek as one of America’s Greatest Workplaces for Inclusion and Diversity, as well as for Women and Parents and Families. These accolades speak volumes about our commitment to creating a supportive and inclusive culture of belonging for all employees.

As a full-time employee, you can choose from a wide-ranging menu of our Top Shelf Benefits, including comprehensive medical and prescription drug coverage, dental and vision plans, tax-saving Flexible Spending Accounts, disability coverage, life insurance plans, and a 401(k) plan. We also offer tuition assistance, a wellness program, parental leave, vacation accrual, paid sick leave, and more.

By joining Southern Glazer’s, you would be part of a team that values excellence, innovation, and community. This is more than just a job – it's an opportunity to build the future of beverage distribution and grow with a company that truly cares about its people.

Overview

The Staff Cybersecurity Engineer is a strategic team member responsible for safeguarding SGWS’s digital assets through the development, enhancement, and maintenance of highly complex security systems. This role involves working closely with leadership in the design and implementation of cutting-edge security measures, architecting secure networks, and countering sophisticated threats such as hacking and malware. The Staff Cybersecurity Engineer manages the analysis of network, server, and application logs to detect security incidents, conducts advanced intrusion detection, and ensures the organization remains resilient against evolving cyber threats. This role governs multiple cross-functional initiatives, serves as a trusted internal advisor, and applies extensive knowledge to complete complex assignments with significant organizational impact. Additionally, the Staff Cybersecurity Engineer mentors and coaches other engineers, contributing to the technical aspects of the service or platform with minimal guidance, and helps drive innovation in security practices across the organization. This role also ensures compliance with regulatory standards and champions continuous improvement in security practices.

Primary Responsibilities

• Manage, monitor, and respond to threats from EDR and SIEM solutions.
• Assist with computer forensic and eDiscovery requests as needed
• Design comprehensive incident response playbooks ensuring well-structured and effective responses to security incidents
• Aggressively automate repeated tasks to allow the team to scale with the organization’s growth
• Design and implement security solutions for intrusion detection and notification, security auditing, alerting and response, virus detection and removal, password complexity enforcement, and media protection.
• Validate baseline security configurations for operating systems, applications, and networking.
• Provide responsive support for escalating problems from System Administrators or other Engineers.
• Perform capacity and future growth planning of the enterprise security infrastructure to ensure a highly available security environment.
• Troubleshoot and evaluate risk management processes; assess and mitigate risks.
• Apply laws, regulations, policies and ethics in daily practice.
• Evaluate cyber threats and vulnerabilities.
• Respond to cybersecurity incidents.
• Create test plans, execute system tests, analyze results, coordinate feedback of results, and fix problems as needed.
• Research, design, and implement cyber security solutions for organization systems and products that comply with all applicable security policies and standards.
• Examine network, server, and application logs to determine trends and identify security incidents.

Minimum Qualifications

• Bachelor's degree in Computer Science, Computer Engineering, Cybersecurity, or a related field, or equivalent combination of education and work experience.
• Typically, 8 – 10+ years of experience in cybersecurity, information security, or related field.
• At least 2 years of hands-on experience managing EDR configurations, deployments, and automation in both on-premises and cloud environments.
• 2 or more years of experience of utilizing threat intelligence tools and frameworks
• 2 or more years of hands-on experience with an enterprise SIEM solution
• 2 or more years of hands-on experience utilizing Email security platforms
• 2 or more years of hands-on experience actively leading and conducting threat hunting operations
• Native-level proficiency/fluent in English.
• Experience in DevOps and Agile technology environments.
• Must be willing to participate in an on-call rotational schedule

Preferred Qualifications

• Certified Information Systems Security Professional (CISSP) or equivalent certification.
• GIAC or Offensive Security Certifications – GPEN, GCIH, GREM, etc.
• Experience in both red team and blue team operations demonstrating expertise in offensive and defensive security strategies
• Experience in Computer Forensics and eDiscovery
• Experience with cloud security technologies and platforms
• Experience managing complex, cross-functional cybersecurity initiatives.
• Strong problem-solving skills and ability to work independently with minimal supervision.
• Excellent communication and interpersonal skills.
• Proven ability to mentor and guide both junior and senior team members.
• Proven knowledge of scripting languages (e.g., Perl, Python, and PowerShell).
• Strong expertise in operating systems, including Windows, Mac, and Linux.
• Comprehensive understanding of database security, data structuring, storage, and dissemination.
• Experience with network security, including VPNs, firewalls, network monitoring, and intrusion detection systems.
• Significant experience in incident response and managing security breaches.

Physical Demands

• Physical demands include a considerable amount of time sitting and typing/keyboarding, using a computer (e.g., keyboard, mouse, and monitor), or adding machine
• Physical demands with activity or condition may include walking, bending, reaching, standing, squatting, and stooping
• May require occasional lifting/lowering, pushing, carrying, or pulling up to 20lbs

EEO Statement

Southern Glazer's Wine and Spirits, an Affirmative Action/EEO employer, prohibits discrimination and harassment of any type and provides equal employment opportunities to all employees and applicants for employment without regard to race, color, religion, age, sex, national origin, disability status, genetics, protected veteran status, sexual orientation, gender identity or expression, or any other characteristic protected by federal, state or local laws. This policy applies to all terms and conditions of employment, including recruiting, hiring, placement, promotion, termination, layoff, recall, transfer, leaves of absence, compensation and training. SGWS complies with all federal, state and local laws concerning consideration of a qualified applicant's arrest and/or criminal conviction records. Southern Glazer's Wine and Spirits provides competitive compensation based on estimated performance level consistent with the past relevant experience, knowledge, skills, abilities and education of employees. Unless otherwise expressly stated, any pay ranges posted here are estimates from outside of Southern Glazer's Wine and Spirits and do not reflect Southern Glazer's pay bands or ranges.

If you have any questions or concerns about whether this posting complies/adheres with local pay transparency requirements, please contact the SGWS talent acquisition team at NationalTA@sgws.com