Lead Security Engineer

About the Role

The Lead Security Engineer will communicate and reinforce security concepts to both technical and non‑technical audiences within the CoStar Enterprise. The ideal candidate has experience implementing and maintaining security tools for vulnerability management, remediation, endpoint protection, and incident‑response orchestration. As the security function expands, this self‑starter will lead the adoption of new technologies and drive security forward across the organization. Key responsibilities include coordinating incident response, conducting security assessments, developing automation, and collaborating with other teams to remediate findings. The role also involves threat hunting, log analysis, and participating in a 24 × 7 on‑call rotation. • Serve as incident response coordinator, overseeing resolution across business units. • Develop and mature incident response processes and reporting. • Lead technical security assessments for networks, applications, and databases. • Facilitate quarterly tabletop exercises and update the Incident Response Plan. • Apply Mitre ATT&CK knowledge to drive incident response strategy. • Design platform automations to improve threat response efficiency. • Utilize scripting (e.g., Python, PowerShell) and CI/CD practices for security workflows. • Review production environment permissions, open ports, and network configurations. • Perform forensic log analysis to identify trends and security incidents. • Use security tools to audit infrastructure, detect issues, and coordinate remediation. • Develop and mature threat‑hunting practices within the enterprise. • Collaborate with cross‑functional teams to remediate deficiencies and improve configurations. • Participate in a 24/7 on‑call rotation. • Produce detailed technical documentation and maintain strong organizational skills. • Deliver high-quality customer service and promote an inclusive team environment.

Key Responsibilities

• ▸incident response
• ▸security assessments
• ▸automation
• ▸scripting
• ▸threat hunting
• ▸log analysis

What You Bring

The position is based in Arlington or Richmond, Virginia, with office attendance required Monday through Thursday and the option to work from home on Fridays. Candidates must hold a bachelor’s degree from an accredited institution and possess a strong track record of commitment to previous employers. Required credentials include one or more security certifications such as SANS/GIAC, CISSP, CISM, or GCIH, along with at least eight years of IT experience and five years in cybersecurity. Proficiency in scripting languages (Perl, Python, PowerShell) and experience with Windows Server and Active Directory are also required. Preferred qualifications include excellent oral and written communication skills, the ability to work effectively on culturally diverse, globally distributed teams, and experience with Microsoft security tools such as Defender and Sentinel. Candidates should be able to produce detailed technical documentation, demonstrate strong organization and customer‑service skills, and contribute to an inclusive environment. • Hold a bachelor’s degree from an accredited, non‑profit university. • Possess 8+ years of IT experience, including 5+ years in cybersecurity. • Hold a security certification such as SANS/GIAC, CISSP, CISM, or GCIH. • Demonstrate scripting/programming skills in Perl, Python, and PowerShell. • Experience with Windows Server 2012/2016/2019 and Active Directory. • Exhibit excellent oral and written communication abilities. • Ability to work effectively on culturally diverse, globally distributed teams. • Familiarity with Microsoft security tools (Defender, Sentinel, EOP) is a plus.

Requirements

• ▸bachelor's
• ▸8+ years
• ▸security cert
• ▸python
• ▸powershell
• ▸active directory

Benefits

CoStar offers a collaborative and innovative culture, generous compensation, performance‑based incentives, and extensive benefits such as comprehensive healthcare, retirement matching, stock purchase plans, tuition reimbursement, paid time off, and wellness programs. The company also supports diversity, equity, and inclusion through employee resource groups and provides various on‑site amenities.

Work Environment

Office Full-Time