Security Engineer II

Our core values — Stewardship, Character, Collaborate, Learn, Disrupt — are the lens through which we evaluate every business decision. As a dynamic, growing company that offers extremely competitive compensation and benefits, our employees are our most valued assets and the foundation of Expand's performance among our E&P competitors.

We seek applicants from all backgrounds to ensure we get the best, most creative talent on our team. We realize that, historically, underrepresented groups feel the need to be 100% qualified in order to apply. If you meet any combination of our requirements, we encourage you to apply. We strive to hire people from a wide variety of backgrounds, not just because it’s the right thing to do, but because it makes our company stronger.

This intermediate‑level position is responsible for designing, implementing, and supporting cybersecurity technologies and controls under general supervision. The role contributes to the planning, installation, operation, and maintenance of security systems that protect the organization’s information assets, networks, and infrastructure.

• Supports the planning, provisioning, installation, and enhancement of cybersecurity systems, including SIEM platforms, endpoint security tools, IAM/PAM solutions, and network security appliances
• Implements, configures, and maintains security controls in alignment with organization policies, industry standards, and regulatory requirements
• Performs security monitoring, threat analysis, and incident response, including alert triage, investigation, containment, and documentation
• Deploys, configures, and maintains security infrastructure, such as IDS/IPS, vulnerability scanners, EDR tools, and logging systems
• Conducts vulnerability assessments and system hardening efforts, collaborating with IT teams to remediate findings and support patch management processes
• Diagnoses and resolves security‑related hardware, software, and configuration issues, using established procedures and forensics methodologies where appropriate
• Implements measures to protect data, applications, and systems, including encryption, access controls, secure configuration baselines, and network segmentation
• Maintains accurate security documentation, including architecture diagrams, configuration standards, incident timelines, and maintenance procedures
• Collaborates with vendors and internal stakeholders for tool deployment, upgrades, integrations, and troubleshooting
• Identifies opportunities to enhance security posture, reduce risk, automate controls, and improve technology workflows
• Provides security guidance to IT project teams and business partners, ensuring secure design principles and compliance requirements are met
• Supports audits, compliance reviews, and risk assessments by providing clear documentation and technical expertise
• Performs other cybersecurity‑related duties as assigned

• Intermediate knowledge of cybersecurity principles, network defense, and security technologies
• Basic understanding of network technology and how it relates to security architecture
• Intermediate knowledge of common operating systems, system internals, and security controls
• Ability to analyze problems, evaluate solution options, and implement secure configurations
• Knowledge of project management methodologies and change‑control processes
• Strong written and verbal communication skills, with the ability to work across technical and non‑technical teams

Minimum: High school diploma or GED

Preferred: Bachelor’s degree - from accredited university - IT, MIS, Computer Science, Cybersecurity, or related field

Minimum: 2 - 5 years of related cybersecurity, network security, or IT security experience

Preferred

Certifications:

• CompTIA Security+
• CompTIA CySA+
• CompTIA Pen Test+
• GIAC Security Essentials (GSEC)
• GIAC Certified Incident Handler (GCIH)
• Certified Ethical Hacker (CEH)
• Microsoft SC‑200 or SC‑300
• (ISC)² SSCP
• (ISC)² CISSP (Associate or full certification)
• Certified Cloud Security Professional (CCSP)

Expand Energy takes necessary action to ensure that all applicants are treated without regard to their race, color, religion, sex, sexual orientation, age, gender identity, national origin, genetic information, disability, pregnancy, military or veteran status or any other protected characteristic as established by law.

Expand Energy Corporation's operations are focused on discovering and developing its large and geographically diverse resource base of unconventional oil and natural gas assets onshore in the United States.

Nearest Major Market: Oklahoma City

Nearest Secondary Market: Oklahoma

Job Segment: Compliance, Computer Science, Cloud, Project Manager, Engineer, Legal, Technology, Engineering