What We're Looking For
At HNTB, you can create a career that is meaningful to you while building communities that matter to all of us. For more than a century, we have been delivering solutions for some of the largest, most complex infrastructure projects across the country. With our historic growth, it is an exciting time to join our team of employee-owners.
This opportunity entails being responsible for monitoring, analyzing, and maintaining systems and procedures to safeguard internal systems, network and databases. This position facilitates ongoing security audits and disaster recovery tests and recommends changes to enhance systems security and prevent unauthorized access, as appropriate.
What You’ll Do:
- Documents security incidents reported through our security tools or by the service desk. Escalates security issues as necessary to leadership team.
- Compiles collateral, data, and stakeholders to facilitate annual security audits.
- Assists with quarterly access review of all in scope applications. Acts as the liaison with appropriate business leaders to ensure application security.
- Reviews application architecture configurations to ensure security best practices are being used.
- Facilitates annual disaster recovery tests and ensures all applications have an up-to-date DR plan. Coordinates with stakeholders to update or implement new disaster recovery plans as necessary.
- Assists cross-functional IT teams when new applications are introduced to ensure compliance with IT security standards.
- Performs other duties as assigned.
What You’ll Need:
- Associate’s Degree in Computer Science or related degree and 4 years of relevant experience, or
- In lieu of education, 6 years of relevant experience; information security, information technology operations
What You'll Bring:
- Foundational knowledge of information security principles and common security technologies, with the ability to apply that understanding to risk identification, control effectiveness, and compliance objectives rather than day‑to‑day operational monitoring.
- Ability to analyze security‑related data (such as vulnerability scan results, endpoint security telemetry, SIEM outputs, and system logs) to identify control gaps, emerging risks, and compliance issues, rather than solely responding to events.
- Experience synthesizing information from multiple sources to develop clear, risk‑based narratives that explain technology usage, security posture, and potential business impact to technical and non‑technical stakeholders.
- Understanding of how security controls support regulatory, contractual, and internal policy requirements, and the ability to assess whether those controls are appropriately designed and operating as intended.
- Strong written communication skills with the ability to document findings, contribute to risk registers, and support audit, assessment, and assurance activities.
What We Prefer:
- CompTIA Security+ or similar foundational security certification demonstrating knowledge of governance, risk, and compliance concepts.
- Experience supporting or performing vendor and/or third‑party risk assessments, including reviewing security documentation, identifying risks, and tracking remediation activities.
- Hands‑on involvement with the creation, review, interpretation, or maintenance of security policies, standards, and procedures, aligning them to frameworks such as NIST 800-53 or NIST 800-171.
- Demonstrated understanding of applying security principles, policies, and regulatory requirements across systems, applications, and business processes.
- Familiarity with endpoint security solutions from a risk and compliance perspective, such as evaluating coverage, reporting effectiveness, and alignment with organizational control requirements.
Additional Information
Click here for benefits information: HNTB Total Rewards
Click here to learn more about Equal Opportunity Employer/Disability/Veteran
Visa sponsorship is not available for this position.
#NF
.
Locations:
Kansas City, MO
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
.
NOTICE TO THIRD-PARTY AGENCIES:
HNTB does not accept unsolicited resumes from recruiters or agencies. Any staffing/employment agency, person or entity that submits an unsolicited resume to this site does so with the understanding that the applicant's resume will become the property of HNTB. HNTB will have the right to hire that applicant at its discretion and without any fee owed to the submitting staffing/employment agency, person or entity. Staffing/employment agencies who have fee agreements with HNTB must submit applicants to the designated HNTB recruiter to be eligible for placement fees.