Senior Network Security Engineer

Come work for a SaaS company that is a leader in the automotive repair industry and offers the stability of a 100+-year-old company.We are Mitchell 1, a division of Snap-on Inc. For over 100 years, Mitchell 1 has been a leader in providing information solutions that simplify everyday tasks for automotive professionals — helping make their jobs easier. Through the years, Mitchell 1’s products have evolved to keep pace with the industry and technological advances.We are looking for a Sr. Network Security Engineer to protect the organization’s intellectual property, applications, and network infrastructure from security threats, including software piracy, DDoS attacks, and malicious bot activity. This role involves monitoring, analyzing, and responding to security incidents, implementing security controls, and ensuring compliance with industry standards.This is a full-time, on-site position based at Mitchell 1’s headquarters in San Diego, operating Monday through Friday.ResponsibilitiesMonitor and analyze network and application security events using Splunk, Rapid7, and other tools.Detect and prevent web application software piracy, including unauthorized distribution and license circumvention.Implement and maintain application-level security controls to protect intellectual property and enforce licensing compliance.Collaborate with software developers to integrate secure coding practices and anti-piracy mechanisms into applications.Partner with network and system administrators to maintain secure network configurations and to harden systems.Implement DDoS mitigation strategies and configure F5 BIG-IP load balancers for application and network security.Deploy and manage Bot defense technologies to prevent automated attacks on web applications.Investigate and respond to security incidents, providing detailed root-cause analysis and corrective actions.Creates and maintains systems logging, monitoring, and alertingDocuments infrastructure processes, procedures, and maintains asset managementParticipates in on-call rotation, incident response, and is an escalation resourceOther projects and assignments as needed, requested by (Mitchell1 and Snap-on senior or executive leadership)QUALIFICATIONS AND SKILLSEducation:Bachelor’s in Information Technology or equivalent work experience (preferred)CISSP, GIAC (GWEB/GWEB), or other web application defense certifications (preferred)Other IT systems, network, security, or cloud computing certifications (preferred)Years of Experience:Senior-level experience with 7+ years in application, system, and/or network administration, and IIS securityOther Requirements:Must have hands-on experience with Splunk query language expertise, F5 BIG-IP, and Rapid7.Strong knowledge of TCP/IP, firewalls, VPNs, and web application security principlesPossesses experience and a detective-like interest in solving web application anti-piracy challengesProficiency in scripting languages such as Python, PowerShell, or Bash.Experience with DDoS mitigation and Bot defense solutions.Experience with ISE, 802.1X, secure group tags (SGT), Zero Trust ArchitectureExperience in Network troubleshooting and packet capture analysisExperience with Cisco products and F5 iRules/WAF requiredExperience with Splunk administration requiredCompensation: $125,000–$145,000 per year, based on skills and experience