Sr Prin Security Engineer
JACKSON, MI, US
Consumers Energy is Michigan’s largest energy provider, providing natural gas and/or electricity to 6.8 million of the state’s 10 million residents in all 68 Lower Peninsula counties. Consumers Energy knows job number one is to keep the lights on for customers. We are committed to delivering reliable, clean, and affordable energy to our customers 24/7.
This position is not eligible for immigration sponsorship, e.g., H-1B, TN, etc. Please do not apply if you will need immigration sponsorship for a work visa now or in the future, including sponsorship for H-1B, TN, etc., now or in the future. We are unable to hire individuals with CPT, OPT, or STEM OPT for this position as the position is not eligible for participation in the H-1B lottery program and is not eligible for current or future immigration sponsorship for a work visa.
Location: This is a hybrid (virtual/onsite) position with required onsite days on Monday, Tuesday and Thursday assigned to One Energy Plaza located in Jackson, MI. The selected candidate must be within a commutable distance or willing to relocate (relocation package is available for those that qualify).
General Summary of Job Responsibilities
Essential Duties and Responsibilities
- Architect, implement, operate, and maintain comprehensive security solutions for systems, networks, and applications, ensuring resilience against emerging threats.
- Lead and participate in complex incident response and problem-solving efforts, coordinating across teams to analyze root causes, mitigate impacts, and implement long-term corrective actions.
- Develop and optimize security controls through the implementation of technologies and process improvements that align business objectives with security requirements.
- Perform other non-essential duties as assigned or as business needs require.
- Evaluate and deploy security tools and platforms within one or more of the following security domains: Identity Services, Automation, Network Security Services, Security Engineering, Application Security and Penetration Testing, and Vulnerability Management, to improve visibility, detection, and response capabilities across the organization.
- Provide leadership, guidance, and mentorship to other cybersecurity professionals, including Associate Engineers and Career Engineers.
- Conduct threat modeling and risk assessments to identify vulnerabilities, recommend mitigation strategies, and design effective security controls.
- Collaborate with cross-functional teams, including Development, Information Technology, and business stakeholders, to embed security best practices throughout the system lifecycle.
- Stay informed of emerging threats, vulnerabilities, and technologies, providing strategic recommendations to strengthen the organization’s security posture.
- Automate security processes where appropriate by leveraging scripting languages and Security Orchestration, Automation, and Response (SOAR) platforms to improve efficiency and consistency in incident response and vulnerability management.
- Lead the design, implementation, and continuous improvement of enterprise Identity and Access Management (IAM) capabilities, including authentication, authorization, provisioning, and identity lifecycle management.
- Serve as a subject matter expert for IAM platforms, governance processes, access controls, and identity security best practices.
- Lead complex IAM initiatives, including system integrations, platform enhancements, automation efforts, and identity governance improvements.
Knowledge/Skills/Abilities
- Excellent written and verbal communication skills with the ability to influence both technical and non-technical stakeholders.
- Strong leadership and mentoring capabilities with a focus on team development and organizational success.
- Demonstrated ability to work collaboratively and embody the professional standards of being humble, hungry, and people-smart.
- Expert-level knowledge of security architectures, technologies, and defensive strategies.
- Subject matter expertise in at least two of the following security domains: Identity Services, Automation, Network Security Services, Security Engineering, Application Security and Penetration Testing, and Vulnerability Management.
- Advanced troubleshooting and analytical skills, with the ability to navigate complex systems and efficiently resolve critical issues.
- Strong strategic thinking and decision-making capabilities, particularly in high-pressure and rapidly evolving environments.
Education/Experience
- Bachelor’s degree in Cybersecurity, Computer Science, Information Technology, or a related field, with ten (10) or more years of hands-on experience in Information Technology, cybersecurity, computer networking, or systems engineering. Candidates must also possess 4–7 years of practical experience with technologies such as AAA Services, Active Directory, Application Control, Asset Discovery and Inventory Management, Azure Active Directory (Azure AD), CI/CD platforms, DDoS protection, Data Loss Prevention (DLP), Dynamic Application Security Testing (DAST), Email Security, Endpoint Detection and Response (EDR), Firewalls, Infrastructure-as-Code (IaC) Security, Logging and Monitoring Solutions, Multi-Factor Authentication (MFA) Technologies, Network Access Control (NAC), Networking Protocols, Scripting Languages, Software Composition Analysis (SCA), Secure Development Practices, Security Assessment and Testing, Security Configuration Assessment, SOAR platforms, Single Sign-On (SSO), Static Application Security Testing (SAST), Threat Intelligence, Vulnerability Management, Virtual Private Networks (VPNs), and Web Proxy technologies.
- [OR] Associate degree in Cybersecurity, Computer Science, Information Technology, or a related field, with twelve (12) or more years of the experience outlined above.
- [OR] High school diploma or GED, with fourteen (14) or more years of the experience outlined above.
Why should you join our team?
At Consumers Energy, we offer more than just a place to work. We foster a culture that supports career development, growth, and stability, and we take pride in offering our co-workers excellent benefits and compensation packages. We are deliberately creating an inclusive culture that makes our diverse team of co-workers feel valued, supported, and empowered every day. We're a company made up of thousands of people, all with different stories to share and work to do, but we stand united in our company purpose: world class performance delivering hometown service.
What we offer:
- Competitive compensation packages
- Medical, Dental and Vision
- 401k with company match
- Paid parental leave
- Up to 13 paid Holidays
- Paid time off
- Educational Assistance Program
Diversity, Equity & Inclusion:
We, at CMS Energy, value Diversity, Equity, & Inclusion. It is part of our DNA. We treat our employees with respect, we treat each other fairly and we value the opinions of others. We are passionate about building and nurturing an environment where everyone feels included. We don’t discriminate. We seek to learn about each other and better understand our unique differences. Our uniqueness makes us authentic. We create safe spaces where everyone can be who they truly are. We invite difficult conversations and uncomfortable topics. We value diverse perspectives; this is what makes us great together. We harbor an inclusive environment where employees feel empowered to share their backgrounds, experiences, and ideas. Our Employee Resource Groups, Women in Energy (WE), Minority Advisory Panel (MAP), Pride Alliance of Consumers Energy (PACE), GENERGY (Different Generations), capable (Different Abilities), Interfaith, People Planet Partners, and Veterans Advisory Panel (VAP) are key enablers to living the values of our company culture: Caring, Empowered, Deliberate, Agility, and Ownership.
All qualified applicants will not be discriminated against and will receive consideration for employment without regard to protected veteran status, disability, race, color, religion, sex, age, sexual orientation, gender identity or national origin.
Job Segment:
Testing, Computer Science, Developer, Equity, Systems Engineer, Technology, Finance, Engineering