Principal Security Engineer Consumers Energy : Michigan Category: Engineer

General Summary of Job Responsibilities

The Principal Security Engineer will support the organization’s major security initiatives, serving as a technical expert and strategic leader. This role involves architecting, implementing and operating secure systems, designing scalable defenses, and leading response efforts to mitigate threats and risks. The ideal candidate will demonstrate mastery across one or more security domains, including infrastructure, network, identity, communication with business partners and incident response, while mentoring teams and shaping the future of our security strategy.

• Conduct threat modeling and risk assessments to identify vulnerabilities, recommend mitigations, and design controls to address risks effectively.
• Lead and participate in complex incident response and problem‑solving efforts, coordinating across teams to analyze root causes, mitigate impacts, and implement long‑term solutions.
• Develop and optimize security controls by implementing technologies and process changes to ensure business objectives are met in line with security requirements.
• Architect, implement, operate and maintain comprehensive security solutions for systems, networks, and applications, ensuring they are resilient to emerging threats.
• Evaluate and deploy security tools and platforms in at least one of the following security domains:
  Identity Services, Automation, Network Security Services, Security Engineering, Application Security, Penetration Testing, Vulnerability Management, to improve visibility, detection, and response capabilities across the organization.
• Engage, lead, and/or mentor other security employees, including associate engineers and career engineers.
• Collaborate with cross‑functional teams, including development, IT, and the business, to embed security best practices throughout the system lifecycle.
• Stay informed about emerging threats, vulnerabilities, and technologies, providing strategic recommendations to strengthen the organization’s security posture.
• Automate security processes where possible, leveraging scripting and SOAR platforms to enhance efficiency and consistency in incident response and vulnerability management.
• Other non-essential duties as assigned or may be necessary.

• Excellent written and verbal communication skills to influence technical and non-technical stakeholders.
• Strong leadership and mentoring abilities with a focus on team development.
• Demonstrates excellent teamwork and embodies the virtues of being humble, hungry, and people smart.
• Expert‑level knowledge of security architectures and defensive strategies.
• Subject‑matter expertise in at least one of the following security domains:
  Identity Services, Automation, Network Security Services, Security Engineering, Application Security, Penetration Testing, Vulnerability Management.
• Advanced troubleshooting skills with the ability to navigate complex systems and resolve critical issues efficiently.
• Strategic thinking and decision‑making capabilities in high‑pressure scenarios.

• Bachelor’s Degree in Cyber Security, Computer Science, or Information Technology and 7‑10 years of hands‑on experience in Information Technology, cybersecurity, computer networks, or systems engineering, including 4‑7 years of practical expertise with technologies such as AAA Services, Active Directory, Application Control, Asset Discovery, Asset Discovery and Inventory Management, Azure AD, CI/CD Platforms, DDOS protection, DLP, Dynamic Application Security Testing (DAST), Email Security, Endpoint Detection and Response, Firewalls, IaC Security, Logging, Multifactor Technologies, NAC, Networking Protocols, Scripting Languages, Secure Code Analysis (SCA), Secure Development Practices, Security Assessment & Testing, Security Configuration Assessment (SCA), SOAR tools, SSO, Static Application Security Testing (SAST), Threat Intelligence, Vulnerability Scanning, VPN, Web Proxy.
• [OR] Associate’s Degree in Cyber Security, Computer Science, or Information Technology and 9‑12 years of hands‑on experience in Information Technology, cybersecurity, computer…