The Sr, IT Security Engineer, is responsible for protecting the organization’s network infrastructure and applications from security threats, including software piracy, DDoS attacks, and malicious bot activity. This role involves monitoring, analyzing, and responding to security incidents, implementing security controls, and ensuring compliance with industry standards. The ideal candidate will have hands-on experience with Rapid7, F5 technologies, and Splunk, as well as expertise in web application security, anti-piracy measures, scripting for automation, and collaboration using modern team tools.  The incumbent utilizes knowledge, communication and leadership skills to deliver well-designed and cost-effective solutions that meet organizational goals.

This position is an in-office full-time role, Monday-Friday, located at the Mitchell 1 headquarters (16067 Babcock Street, San Diego, CA 92127).

• Monitor and analyze network and application security events using Splunk, Rapid7, and other tools.
• Detect and prevent web application software piracy, including unauthorized distribution and license circumvention.
• Implement and maintain application-level security controls to protect intellectual property and enforce licensing compliance.
• Collaborate with software developers to integrate secure coding practices and anti-piracy mechanisms into applications.
• Partner with network and system administrators to maintain secure network configurations and system hardening.
• Implement DDoS mitigation strategies and configure F5 BIG-IP load balancers for application and network security.
• Deploy and manage Bot defense technologies to prevent automated attacks on web applications.
• Investigate and respond to security incidents, providing detailed root cause analysis and corrective actions.
• Creates and maintains systems logging, monitoring, and alerting
• Documents infrastructure processes, procedures, and maintains asset management
• Participates in on-call rotation, incident response, and is an escalation resource
• Other projects and assignments as needed, requested by (Mitchell1 and Snap-on senior or executive leadership.)

QUALIFICATIONS AND SKILLS

Education:

• Bachelor’s in Information Technology or equivalent work experience (preferred)
• CISSP, GIAC (GWEB/GWEB) or other web application defense certifications (preferred)
• Other IT systems, network, security or cloud computing certifications (preferred)

Years of Experience:

• Senior level experience with 7+ years in application, system, and/or network administration and IIS security

Other Requirements:

• Strong knowledge of TCP/IP, firewalls, VPNs, and web application security principles
• Hands-on experience with Rapid7, F5 BIG-IP, and an expert Splunk query language
• Possesses experience and detective-like interest in solving web application anti-piracy challenges
• Proficiency in scripting languages such as Python, PowerShell, or Bash.
• Experience with DDoS mitigation and Bot defense solutions.
• Experience with ISE, 802.1X, secure group tags (SGT), Zero Trust Architecture
• Experience Network troubleshooting and packet capture analysis
• Experience with Cisco products and F5 iRules/WAF required
• Experience with Splunk administration required

Compensation: $125,000–$150,000 per year, based on skills and experience