Senior Cybersecurity Engineer

Company Summary Hampton Lumber is a thriving family-owned company aspiring to be North America's preferred source for responsibly-sourced wood solutions. Headquartered in Portland, Oregon, we operate nine sawmills in Western Oregon, Washington, and British Columbia. We also manage timberland and operate a wholesale and import/export division.

Our mission is to grow, manufacture, and market renewable wood products and deliver innovative solutions for a more sustainable built environment. At Hampton Lumber, we accomplish this through our own operations as well as those of our affiliates—Trapa Forest Products, Idaho Timber, and RedBuilt. Our tagline, "Find a better way every day," encapsulates our commitment to innovation and improvement across all operations.

We are guided by our core values:

Safety – Prioritize safety across all operations. Integrity & Authenticity – Operate honestly and ethically while preserving our distinctive family-owned brand. Responsible Stewardship – Endeavor to balance and maintain economic, social, and environmental values in everything we do. Tenacity – Embrace challenges with grit, determination, and a can-do spirit.

Continuous Improvement – Strive to enhance our processes, products, and people. Customer Satisfaction – Be nimble, responsive, and solutions-oriented. Community Engagement – Be a responsive, supportive, and respected member of the community. With over 80 years in the sawmill business, we are proud to have cultivated the knowledge and experience needed to grow and prosper, even in challenging times. We always look to the future and invest in our people, new technologies, and continuous improvement processes and techniques.

Overview Are you passionate about making a meaningful impact in the world of cybersecurity? Hampton Lumber is looking for a visionary Senior Cybersecurity Engineer to champion technical and operational security leadership across our multi-company enterprise. In this influential role, you’ll report directly to the CIO and take ownership of shaping, building, and continuously enhancing our cybersecurity policies and practices. You’ll have the unique opportunity to lead incident response and investigations, drive innovation in our security posture, and collaborate with people who truly make Hampton a remarkable place to work. Join our privately held, values-driven organization—where our people and culture aren’t just our strengths, they’re what set us apart—and help us protect what matters most while enabling our business to thrive securely.

This position blends hands‑on technical execution with enterprise‑level leadership, requiring deep security expertise, strong judgment, and the ability to partner effectively with IT, business leaders, and external vendors. The Senior Cybersecurity Engineer will play a critical role in protecting Hampton’s people, systems, data, and operations while enabling the business to operate securely and efficiently.

Benefits Highlights:

Substantial company-paid assistance for Medical and Dental insurance premiums; mental health coverage; cost effective co-pays and deductibles 401(k) with 5% annual company contribution and generous company matching contributions vested over three years Paid time off, including eight paid holidays

Opportunity to earn bonuses:

Employee wellness program that includes free counseling sessions, financial and legal guidance, and more Opportunities for paid training to support career advancement and personal development

Responsibilities:

Cybersecurity Strategy & Policy

• Establish, maintain, and continuously improve Hampton Lumber’s cybersecurity policies, standards, and controls across all affiliate companies, aligned with business risk and operational realities.

Translate cybersecurity frameworks (e.g., NIST, CIS) into practical, actionable controls appropriate for Hampton’s environment. Partner with the CIO to define multi‑year security roadmaps, priorities, and investment recommendations Incident Response & Investigations Serve as the technical lead for cybersecurity incident response, including detection, containment, eradication, recovery, and post‑incident analysis.

• Lead and coordinate security investigations, including forensic analysis, evidence collection, and root cause determination

Act as Hampton’s primary security liaison with external partners such as MSSPs, vendors, insurers, and legal counsel during incidents Produce clear executive‑level incident briefings and post‑incident reports with actionable recommendations Security Engineering & Operations

• Design, implement, and operate security controls across identity, endpoint, email, network, and cloud environments

Own and continuously improve Hampton’s security monitoring and detection capabilities (e.g., SIEM, EDR, threat intelligence)

• Drive vulnerability management, secure configuration baselines, and security hardening across enterprise systems

Partner with Infrastructure, Service Desk, and Application teams to embed security into daily operations and projects Governance, Risk & Compliance

• Conduct and maintain ongoing security risk assessments across Hampton and affiliate environments
• Support internal and external audits by maintaining security documentation, evidence, and control mappings
• Ensure security practices align with legal, regulatory, and contractual obligations
• Leadership & Collaboration
• Provide security leadership and mentorship to IT team members, raising the overall security maturity of the organization
• Collaborate with executive leadership, affiliate IT leaders, and business stakeholders to align security with business objectives

Promote a strong security culture that aligns with Hampton’s broader focus on safety, accountability, and operational excellence

Qualifications:

Required Qualifications:

8+ years of progressive experience in cybersecurity, information security engineering, or related roles

• Demonstrated experience leading incident response and security investigations in an enterprise environment

Strong knowledge of security frameworks such as NIST, CIS, or ISO, with the ability to apply them pragmatically Hands‑on experience with enterprise security tools (SIEM, EDR, identity security, vulnerability management) Proven ability to communicate complex security topics clearly to executives and non‑technical stakeholders

High degree of integrity, discretion, and sound judgment when handling sensitive information

Preferred Qualifications:

Experience securing hybrid environments (on‑premises and cloud):

Familiarity with Microsoft 365 E5 security capabilities (Defender, Sentinel, Purview, Entra ID) Strong foundation in core networking concepts, including TCP/IP, routing, switching, firewalls, VLANs, and network segmentation Familiarity with OT or industrial network environments and the unique security, availability, and safety considerations they introduce

Relevant certifications (CISSP, CISM, GIAC, or similar) More About Us Hampton Lumber is a fourth-generation, family-owned company headquartered in Portland, Oregon that has grown to become one of the nation’s largest privately held forest products companies. With over 80 years in the sawmill business, Hampton operates sawmills in Oregon, Washington, and British Columbia and markets wood products all over the world. We also manage a wholesale and lumber export division and numerous reload and re-manufacturing facilities throughout the U.S. All of Hampton’s forestlands are certified by the Sustainable Forestry Initiative (SFI), an independent, non-profit organization that promotes sustainable forest management. SFI certified forests play an important role in water conservation, wildlife habitat, and climate solutions.

Community is important to us, and we encourage and support our employees’ desire to be active in the community through volunteering and special projects. We passionately support youth education, career and technical education, the arts, diversity and inclusion, affordable housing, and anti-poverty programs. We are also proud sponsors of the Portland Timbers and the Portland Thorns soccer clubs. Go Timbers! Go Thorns!

Learn more at hamptonlumber.com, or follow us on Facebook: @HamptonLumber. You can also learn about our company and our priorities by visiting our blog. EEO Statement Hampton Lumber is an equal opportunity employer: All qualified applicants will receive consideration for employment without regard to race/ethnicity, color, religion, sex, sexual orientation, gender identity, national origin, disability, protected veteran status, age, or any other status protected by law.

Disability accommodation available: If you are an individual with a disability and need a reasonable accommodation in the application or hiring process, please contact the Human Resources Office for the location that you are applying. Women and minorities are encouraged to apply. For more information about our commitment to equal employment opportunity, please see these government posters: EEO is the Law and its accompanying temporary supplement.