Senior Security Engineer
International Dairy Queen, Inc.
Full-time
On-site
Bloomington Minnesota United States
Company Description
Since 1940, Dairy Queen® has been one of the world’s best known and loved brands. Based in Minneapolis, MN, International Dairy Queen Inc., (IDQ), is the parent company of American Dairy Queen Corporation. As a leading franchisor, there are more than 7,000 independently owned and operated restaurants in the U.S., Canada and more than 20 countries around the world. IDQ is a subsidiary of Berkshire Hathaway Inc. (Berkshire) which is led by Warren Buffett, the legendary investor and CEO of Berkshire.
Here at IDQ, we create extraordinary Fan experiences every day and we do this through our commitment to hiring and retaining only the best in class talent. We firmly believe that our employees are the catalyst to the success of the company where their initiative, strategic thinking, and entrepreneurial spirit are recognized and rewarded. We're looking for motivated, passionate and dedicated individuals with an inherent need and ambition to go after bigger challenges.
Job Description
We have an exciting opportunity available for a Sr. Security Engineer located at our corporate headquarters in Bloomington, MN. This role is responsible for safeguarding DQ’s information technology infrastructure and data from potential threats, vulnerabilities, and cyber events. They play an important role in the design, implementation, and maintenance of security measures to protect sensitive information and ensure the integrity, confidentiality, and availability of systems. The Sr. Security Engineer will collaborate with various IT and business teams at DQ, including, IT Infrastructure, Operations, Network administration, Software Development, Data Governance, and Retail, to identify potential security risks, assess the effectiveness of existing security protocols, and implement solutions to mitigate vulnerabilities. Utilize a combination of tools, processes, playbooks, and security best practices to create a robust defense against cyber threats, constantly staying abreast of the latest trends and emerging risks in the cybersecurity landscape.
Key Accountabilities Include:
Security Engineering & Administration
Drive and collaborate with the IT team to design, configure, deploy, and maintain security components such as firewalls, intrusion detection/prevention systems (IDS/IPS), secure access controls, data encryption and DLP mechanisms, endpoint protection, and security information and event management (SIEM) solutions.
Ensure that security measures are integrated into the organization's IT infrastructure and align with industry best practices and regulatory requirements.
Work closely with IT and business teams to remediate risks and vulnerabilities.
Help plan and develop DQ’s Cybersecurity strategy and roadmap.
Help develop and implement security standards and practices.
Assess and recommend security improvements to management.
Manage and report on AD Group Review/Privileged Access Reviews.
Provide off-hours support as needed, to support, threat monitoring, incident response, updates, upgrades, and address technical issues.
Maintenance & Projects
Security event management and automation, and ongoing playbook development.
Review and maintain security controls and policies.
Project security evaluations, assessments, and design reviews.
Manage multifaceted and technically sophisticated projects and on-going operations.
Meet project and task deadlines.
Event Management and Incident Response
Monitor for and respond to, analyze and triage events and alerts from different security tools including IDS and Security Information and Event Management (SIEM).
Familiarity with common security incidents / threats, e.g., Phishing, Malware, Credential/Identify based, Social Engineering, Insider, Denial-of-Service, etc.
Collaborate with other team members to provide feedback on cybersecurity detection and alerting capabilities.
Help develop, communicate and prepare briefings and reports of analysis methodology and results.
Help develop and maintain standard operating procedures/playbooks and other security related documentation.
Service Development
Continually look to improve and refine the Security services delivered to the business, globally.
Maintain knowledge of current and emerging technologies, policies, best practices, and trends.
Help define and meet SLA requirements for Security components.
Contribute deep technical skills, and industry experience and best practices to the rest of the team, driving change.
Adopt and foster a security first & enterprise mindset/training.
Communication & Collaboration
Communicate effectively, verbally and in writing with people at all organizational levels.
Work in a team environment making positive contributions to the organization.
Establish and maintain effective relationships with staff members, customers, and vendors.
Other duties as assigned or required.
Qualifications
Bachelor’s degree in computer science or related/applicable field(s) is preferred, but not required
At least 5 Years of experience in a technology or security related discipline and knowledge of technologies, including networking, workstation, servers, OS, On-Prem and Cloud Platforms.
Experience in a Senior role, performing design, implementation, development and support of Security components.
Advanced computer skills, excellent written and oral communication skills
Excellent customer service, analytical, and resolution skills.
Experience with Security frameworks such as NIST CSF, NIST PCI and/or ISO27001
Experience working with various security tools including SIEM, EDR, AV, forensics, firewalls, cloud, etc.
An Interest in continually learning and developing new cybersecurity skills.
The US national base salary range for this position is $112,231- $140,289. This position is also eligible for a bonus. The base salary range displayed reflects the targeted hiring range for positions across all US locations. Individual pay is determined by job-related skills, work location and relevant education or experience.
Additional Information
All your information will be kept confidential according to EEO guidelines. You must be work authorized in the United States without the need for employer sponsorship.
Benefits
Our benefit package supports the well-being of our employees and their families. Our comprehensive benefit package includes, medical, dental, 401K match, paid time off (including volunteer time as well as parental leave) and so much more! To learn more about our great benefit offerings, Click Here.
Work Environment
Most positions located out of our global headquarters in Bloomington, MN will work a hybrid work schedule where you will work 2 collaboration days a week. Additional in office time may be required to support team/project needs. Positions will be identified as “remote eligible” when consideration will be given to candidates outside of drivable distance to our Bloomington office.
Our Commitment to Diversity, Equity and Inclusion
We are committed to creating a culture of diversity, equity and inclusion for all who touch DQ. We believe in and commit to fostering a community where employees bring their authentic selves to work; where we recruit, engage and retain employees, franchise owners and suppliers with diverse background and identities; and where everyone feels welcome engaging with our DQ brand.
IDQ is an Equal Opportunity Employer that values the strength diversity brings to the workplace. IDQ participates in the US E-Verify program. You must be work authorized in the United States without the need for employer sponsorship.
Since 1940, Dairy Queen® has been one of the world’s best known and loved brands. Based in Minneapolis, MN, International Dairy Queen Inc., (IDQ), is the parent company of American Dairy Queen Corporation. As a leading franchisor, there are more than 7,000 independently owned and operated restaurants in the U.S., Canada and more than 20 countries around the world. IDQ is a subsidiary of Berkshire Hathaway Inc. (Berkshire) which is led by Warren Buffett, the legendary investor and CEO of Berkshire.
Here at IDQ, we create extraordinary Fan experiences every day and we do this through our commitment to hiring and retaining only the best in class talent. We firmly believe that our employees are the catalyst to the success of the company where their initiative, strategic thinking, and entrepreneurial spirit are recognized and rewarded. We're looking for motivated, passionate and dedicated individuals with an inherent need and ambition to go after bigger challenges.
Job Description
We have an exciting opportunity available for a Sr. Security Engineer located at our corporate headquarters in Bloomington, MN. This role is responsible for safeguarding DQ’s information technology infrastructure and data from potential threats, vulnerabilities, and cyber events. They play an important role in the design, implementation, and maintenance of security measures to protect sensitive information and ensure the integrity, confidentiality, and availability of systems. The Sr. Security Engineer will collaborate with various IT and business teams at DQ, including, IT Infrastructure, Operations, Network administration, Software Development, Data Governance, and Retail, to identify potential security risks, assess the effectiveness of existing security protocols, and implement solutions to mitigate vulnerabilities. Utilize a combination of tools, processes, playbooks, and security best practices to create a robust defense against cyber threats, constantly staying abreast of the latest trends and emerging risks in the cybersecurity landscape.
Key Accountabilities Include:
Security Engineering & Administration
Drive and collaborate with the IT team to design, configure, deploy, and maintain security components such as firewalls, intrusion detection/prevention systems (IDS/IPS), secure access controls, data encryption and DLP mechanisms, endpoint protection, and security information and event management (SIEM) solutions.
Ensure that security measures are integrated into the organization's IT infrastructure and align with industry best practices and regulatory requirements.
Work closely with IT and business teams to remediate risks and vulnerabilities.
Help plan and develop DQ’s Cybersecurity strategy and roadmap.
Help develop and implement security standards and practices.
Assess and recommend security improvements to management.
Manage and report on AD Group Review/Privileged Access Reviews.
Provide off-hours support as needed, to support, threat monitoring, incident response, updates, upgrades, and address technical issues.
Maintenance & Projects
Security event management and automation, and ongoing playbook development.
Review and maintain security controls and policies.
Project security evaluations, assessments, and design reviews.
Manage multifaceted and technically sophisticated projects and on-going operations.
Meet project and task deadlines.
Event Management and Incident Response
Monitor for and respond to, analyze and triage events and alerts from different security tools including IDS and Security Information and Event Management (SIEM).
Familiarity with common security incidents / threats, e.g., Phishing, Malware, Credential/Identify based, Social Engineering, Insider, Denial-of-Service, etc.
Collaborate with other team members to provide feedback on cybersecurity detection and alerting capabilities.
Help develop, communicate and prepare briefings and reports of analysis methodology and results.
Help develop and maintain standard operating procedures/playbooks and other security related documentation.
Service Development
Continually look to improve and refine the Security services delivered to the business, globally.
Maintain knowledge of current and emerging technologies, policies, best practices, and trends.
Help define and meet SLA requirements for Security components.
Contribute deep technical skills, and industry experience and best practices to the rest of the team, driving change.
Adopt and foster a security first & enterprise mindset/training.
Communication & Collaboration
Communicate effectively, verbally and in writing with people at all organizational levels.
Work in a team environment making positive contributions to the organization.
Establish and maintain effective relationships with staff members, customers, and vendors.
Other duties as assigned or required.
Qualifications
Bachelor’s degree in computer science or related/applicable field(s) is preferred, but not required
At least 5 Years of experience in a technology or security related discipline and knowledge of technologies, including networking, workstation, servers, OS, On-Prem and Cloud Platforms.
Experience in a Senior role, performing design, implementation, development and support of Security components.
Advanced computer skills, excellent written and oral communication skills
Excellent customer service, analytical, and resolution skills.
Experience with Security frameworks such as NIST CSF, NIST PCI and/or ISO27001
Experience working with various security tools including SIEM, EDR, AV, forensics, firewalls, cloud, etc.
An Interest in continually learning and developing new cybersecurity skills.
The US national base salary range for this position is $112,231- $140,289. This position is also eligible for a bonus. The base salary range displayed reflects the targeted hiring range for positions across all US locations. Individual pay is determined by job-related skills, work location and relevant education or experience.
Additional Information
All your information will be kept confidential according to EEO guidelines. You must be work authorized in the United States without the need for employer sponsorship.
Benefits
Our benefit package supports the well-being of our employees and their families. Our comprehensive benefit package includes, medical, dental, 401K match, paid time off (including volunteer time as well as parental leave) and so much more! To learn more about our great benefit offerings, Click Here.
Work Environment
Most positions located out of our global headquarters in Bloomington, MN will work a hybrid work schedule where you will work 2 collaboration days a week. Additional in office time may be required to support team/project needs. Positions will be identified as “remote eligible” when consideration will be given to candidates outside of drivable distance to our Bloomington office.
Our Commitment to Diversity, Equity and Inclusion
We are committed to creating a culture of diversity, equity and inclusion for all who touch DQ. We believe in and commit to fostering a community where employees bring their authentic selves to work; where we recruit, engage and retain employees, franchise owners and suppliers with diverse background and identities; and where everyone feels welcome engaging with our DQ brand.
IDQ is an Equal Opportunity Employer that values the strength diversity brings to the workplace. IDQ participates in the US E-Verify program. You must be work authorized in the United States without the need for employer sponsorship.