• Assess the security posture and maturity of OT environments for clients across manufacturing, energy, utilities, and other critical infrastructure sectors • Conduct stakeholder interviews, review OT documentation, evaluate security practices against industry frameworks, and develop maturity assessment reports with remediation recommendations • Present findings and strategic guidance to clients while working with Project Managers, Directors, and Delivery teams to manage project scope and timelines

• Harden Our Cloud Infrastructure • Own Application Security • Build Security Tooling and Monitoring • Run Compliance Pragmatically • Establish Security Policies That Enable • Automate Security Operations • Manage Vendor and Supply-Chain Security • Enable Incident Response

• Our first security-focused engineer • Takes high-level direction (e.g., "identify top five security-related gaps for AX") and drives to results • Success looks like a LanceDB platform that follows security-related best practices, and an ongoing partnership with other engineers to continuously enhance our security posture in all areas of the product • Select, deploy and tune security tooling across all relevant repos and environments, ensuring full coverage • Identify and remediate security-related risks, including but not limited to cloud IAM, access controls, product vulnerabilities • Own vulnerability management, from running our CVE program through closely working with other engineers on specific remediations • Support periodic evidence collection and control testing for compliance commitments • Apply relevant industry trends, best practices, and specific vulnerabilities to our product

Role Description The Senior Security Engineer is the senior technical authority on the NuHarbor Security Engineering team and the owner of the engineering layer that NuHarbor's managed services depend on. This role operates with a high degree of autonomy and is anchored in Splunk. - Lives by the NuHarbor corporate values: Help Clients Win, Always Improve, Protect the House. - Owns the systems engineering that keeps NuHarbor's co-managed platforms running correctly; architecture, configuration, performance, and maintenance to NuHarbor and vendor best practice. - Ensures client data is properly onboarded, parsed, and normalized to the appropriate data model for each platform (e.g., Splunk CIM, Microsoft ASIM, Google UDM). - Diagnoses and resolves complex architectural problems across managed environments. - Self-assigns and drives the most complex and highest-impact work, operating independently. - Drives the engineering ticket queue with quality, efficiency, and completeness. - Designs, implements, and maintains engineering solutions for multi-tenant scalability, repeatability, and standardization. - Communicates with clients at an expert technical level, building trust and delivery excellence. - Performs the engineering and architecture work required to onboard new managed services clients. - Supports, deploys, and manages the components of NuHarbor's security automation and case management platform(s). - Builds and maintains automation workflows and integrations that connect the platform to client environments. - Regularly meets with clients to drive objectives forward and proactively addresses issues. - Develops engineering recommendations and enhancements that improve the security posture of each client's managed platforms. - Provides technical direction, leadership, and mentorship to the broader engineering team. - Provides architectural review and oversight for client operational projects. - Develops and improves onboarding and operational processes. - Helps design the engineering approach and operational processes for newly adopted technologies. - Maintains the industry and vendor certifications required to support the managed services catalog. - Participates in a 24x7 on-call rotation; other duties as assigned by Engineering Leadership. Qualifications - Bachelor’s Degree and five (5) or more years in the Information Technology field. - In lieu of a degree, two (2) years of experience in a related technology field and relevant industry certifications are required. - Five (5) or more years engineering security platforms in a managed services, enterprise, or comparable operational environment. - Three (3) or more years directly engineering and administering Splunk environments, including Splunk Enterprise Security. - Demonstrated experience onboarding and normalizing data sources to a common data model (e.g., Splunk CIM). - Strong Linux and Windows proficiency. - Strong understanding of security concepts and operations. - Strong understanding of networking concepts and architecture. - Proficiency with data visualization tools and strong analytical skills. - Proficiency scripting in at least one of PowerShell, Bash, or Python. - Must be a citizen of the United States. Requirements - Splunk Enterprise Certified Architect and/or Splunk Certified Consultant. - Microsoft AZ-500 and/or SC-100/SC-200. - Google Professional Security Operations Engineer (PSOE). - Hands-on engineering experience across one or more additional platforms in NuHarbor's catalog. - Experience engineering and supporting platforms in a multi-tenant MSSP environment. - Experience engineering platforms in support of a 24x7 SOC or MDR operation. - Experience with vulnerability management technologies. - Experience with infrastructure-as-code and automation tooling (e.g., Terraform, Ansible). - Experience supporting SLG or education clients. - Excellent written and verbal communication skills. - A track record of managing and prioritizing multiple projects simultaneously. - An understanding of how businesses operate and how technical decisions affect business results. - Passion for security and customer service. Benefits - Engagement and support of company leadership. - Recognition and rewards for employee commitment and contribution. - Growth in your career and capabilities. - A collaborative and driven working environment. - A fun and social working environment. - Competitive salary and benefits, including paid time to give back in your community and generous PTO.