Position Title: Senior Cybersecurity Engineer
Posting Number: S199P
Department: Information Technology Services
Position Type: Staff
Job Description: Job Summary
The Hillsdale College digital landscape is rapidly expanding, and so are the challenges that accompany safeguarding the Colleges information and technology. We are seeking an experienced Senior Cybersecurity Engineer to engineer, implement, and maintain the Colleges strategic and tactical protections against modern cybersecurity threats. You will be at the forefront of executing our next generation of defensive measures, working closely with our internal Information Security team and collaborating with external partners such as our MSSP , penetration testing firms, and vendors supporting vulnerability management and the hybrid on-premises/Azure cloud infrastructure. Successful candidates will have a solid background of at least 10 years of InfoSec implementation and operational experience, coupled with in-depth, hands-on experience in system administration, network architecture, and security engineering and operations. Your experience integrating security through implementation testing, and ongoing operation and maintenance will be essential to protecting Hillsdale Colleges information systems and sensitive data from threats.
Essential Job Functions - Perform Technical Risk Assessments: Apply tools and methodologies aligned with NIST CSF and ISO 27001 framework components to identify, evaluate, and prioritize cybersecurity risks.
- Perform Vendor Security Assessments: Execute technical evaluations of vendors by running security assessments, reviewing vendor controls, and validating compliance with the Colleges cybersecurity requirements.
- Deploy and Maintain Security Policies and Procedures: Work with the Senior Director of Information Security and governance advisors to operationalize security policies and ensure they are technically enforced to mitigate risks.
- Support Policy Implementation: Provide technical input to ensure security policies are practical and enforceable across the Colleges technologies for operations, teaching, outreach, and fundraising.
- Deliver Cybersecurity Training Support: Provide technical insights and practical examples for awareness training programs to strengthen staff understanding of security best practices.
- Monitor and Report on Security Metrics: Use monitoring tools (e.g., SIEM , vulnerability scanners) to collect and analyze metrics and KPIs, assess the Colleges security posture, and validate the effectiveness of technical controls.
- Provide Technical Input for Communication: Supply clear technical details and updates to support communication plans, ensuring stakeholders receive accurate security information for continuous improvement.
Required Qualifications: Education and Experience - A degree in Computer Science, Cybersecurity, Management Information Systems, or a related field is preferred but not required. Relevant technical certifications such as CISSP , SSCP , GSEC , CCSP , or CompTIA Security+ are considered a plus but are not required.
- Minimum ten years of experience in a security-focused, hybrid cloud environment or comparable role is required.
Continuing Education - Maintain Technical Proficiency: The College provides funding for professional development. Employees in this role are expected to complete a minimum of 60 hours annually of continuing education relevant to information security.
Other Skills: Expert-level
Systems, Network and Cybersecurity Engineering and Operations - Expert in secure configuration and maintenance of hybrid Azure cloud and on-premises environments across Windows, Mac, and Linux platforms.
- Work with ITS software development teams during the SDLC to perform technical reviews and apply security controls, ensuring software meets design, security, performance, and standards requirements without slowing agile development.
Security Standards and Compliance - Hands-on experience applying the NIST Cybersecurity Framework ( CSF ), CVE , and MITRE ATT &CK frameworks, with proven ability to implement data handling and security controls that meet PCI DSS , GDPR , and HIPAA regulations.
NICCS / NICE S0141, S0459, S0461, S0531, S0673, S0686, S0806, S0939, S0940, S0941, S0942
Proficient-level - Build and maintain dashboards and reports that provide actionable security insights for operational use.
- Implement and maintain security controls in Azure cloud platforms and hybrid environments, including configuring identity and access management (e.g., Azure AD, IAM roles), enabling encryption (e.g., TLS , data-at-rest encryption), and operating security services like web application firewalls ( WAF ) and cloud-native monitoring tools (e.g., Azure Security Center).
- Apply data security principles through encryption, access control configuration, and deployment of data loss prevention ( DLP ) strategies.
- Identify and remediate gaps in network and connectivity architecture to strengthen security controls.
- Detect, respond to, and recover from security incidents by applying technical tools and procedures, contributing to incident response plans, and performing hands-on post-incident analysis.
- Execute cybersecurity projects through hands-on implementation, technical requirements validation, and collaboration with team members to deliver secure solutions.
NICCS / NICE S0950, S0951
Physical Demands: Physical Requirements
The ability to operate equipment, including installation, maintenance, and retirement of computer and network equipment, display monitors, and the like. The position is mainly sedentary but may require the incumbent to walk, stoop, crouch, or climb.
Personal Characteristics
The Information Technology Services Department interacts with all College students, faculty, and staff. A clean, neat appearance and a pleasant relationship supporting the College mission are essential.
Code of Commitment Be a good representative of Hillsdale College to promote the liberal arts, the Colleges original Articles of Association, and operating principles stated in the Staff Code of Commitment. The Mission Statement should be considered in all aspects of the position. The teaching of Christian faith shall remain a conspicuous aim of the College.
Open Date: 09/05/2025
Open Until Filled: No
Supplemental Questions: Required fields are indicated with an asterisk ( ).
Documents Needed To Apply (Required Documents & Optional Documents): Required Documents- Resume
- Cover Letter
Optional DocumentsPId54157dbaf06-8765
