System Security Engineer

Job Description

The Systems Security Engineer – SME & Team Lead is key member of the new Versant Cyber organization who will serve as the subject matter expert for enterprise systems security, responsible for leading a small team of engineers while also contributing hands-on to design, implementation, and operations of security controls. This role combines deep technical expertise with leadership responsibilities, ensuring that security services are effectively delivered, aligned with business priorities, and continuously improved to address emerging threats.

RESPONSIBILITIES:

Key areas of focus for the System Security Engineer all the systems across the data centers and cloud. The successful candidate will be responsible for the following activities:

• Serve as the subject matter expert (SME) for systems security across enterprise platforms.
• Lead and mentor a team of security engineers, providing technical guidance and task prioritization.
• Implement and manage security technologies such as firewalls, IDS/IPS, endpoint protection, WAF, DLP, and SIEM.
• Oversee security of operating systems, virtualization platforms, and container environments.
• Establish and enforce system hardening standards, secure baselines, and patch management.
• Partner with IAM Team to drive improvements in identity and access management including MFA, SSO, RBAC, and privileged access controls.
• Lead monitoring, detection, and incident response efforts, including investigations and root cause analysis.
• Direct vulnerability scanning, remediation programs, and penetration testing support.
• Provide technical leadership for cloud and hybrid security (AWS, Azure, GCP).
• Champion Zero Trust architecture principles across enterprise systems.
• Collaborate with IT, DevOps, and application teams to embed security into projects and daily operations.
• Develop automation scripts, playbooks, and tooling to improve operational efficiency.
• Ensure compliance with security frameworks (NIST, CIS, ISO, PCI-DSS, SOX, HIPAA, GDPR).
• Act as a trusted advisor to management on emerging threats, risk posture, and security strategy.

Qualifications

• BS in Computer Science, Information Security, or related field (or equivalent practical experience).
• 3+ years of experience in systems/infrastructure security with increasing responsibility.
• Demonstrated leadership or team lead experience in a security operations or engineering role.
• Proven ability to mentor and guide junior engineers.
• Excellent problem-solving, communication, and stakeholder engagement skills.
• Experience in forecasting and managing cybersecurity budgets and vendor relationships including outsourced staff and services.
• Solid IT engineering experience and breadth with exposure to SWE, IT Systems Administration, Enterprise Tooling, Automation, *nix systems, Windows, Cloud (AWS preferred), etc.
• Expertise in configuring and managing corporate edge firewalls and network security solutions.
• Deep understanding of email-based threats (e.g., phishing, BEC, ransomware) and network-based threats (e.g., DDoS, intrusion attempts) and protective measures.
• Understanding of the state of the security industry and applicable trends and market opportunities.
• Deep technical knowledge of Windows, Linux, Active Directory, DNS, and networking fundamentals.
• Expertise with SIEM, endpoint security, vulnerability management, and cloud-native security tools.
• Proficiency in scripting (Python, PowerShell, Bash).
• Strong understanding of compliance requirements and security frameworks (CIS, NIST, ISO).
• Experience securing cloud environments and designing future-state architecture.
• Knowledge of the cyber threat landscape to include different types of adversaries, campaigns, and the motivations that drive them and the ability to translate this to defending Versant.

DESIRED CHARACTERISTICS:

• Previous experience working in multiple large complex environments and specifically within the Identity and/or Security Engineering components of those organizations.
• Previous experience working in identity, security engineering, and/or information security functions in the media and advanced technology industries.
• Master’s Degree in an IT related field.

Additional Requirements:

• Fully Remote: This position has been designated as fully remote, meaning that the position is expected to contribute from a non-Versant worksite, most commonly an employee’s residence.

This position is eligible for company sponsored benefits, including medical, dental and vision insurance, 401(k), paid leave, tuition reimbursement, and a variety of other discounts and perks. Learn more about the benefits offered by NBCUniversal by visiting the Benefits page of the Careers website. Salary range: $105,000 - $135,000_._

We are accepting applications for this position on an ongoing basis.

Additional Information

As part of our selection process, external candidates may be required to attend an in-person interview with an NBCUniversal employee at one of our locations prior to a hiring decision. NBCUniversal's policy is to provide equal employment opportunities to all applicants and employees without regard to race, color, religion, creed, gender, gender identity or expression, age, national origin or ancestry, citizenship, disability, sexual orientation, marital status, pregnancy, veteran status, membership in the uniformed services, genetic information, or any other basis protected by applicable law.

If you are a qualified individual with a disability or a disabled veteran and require support throughout the application and/or recruitment process as a result of your disability, you have the right to request a reasonable accommodation. You can submit your request to [email protected].

Although you'll be hired as an NBCU employee, your employment and the responsibilities associated with this job likely will transition to Versant in the future. By joining at this pivotal time, you'll be a part of this exciting company as it takes shape.