Information Security Engineer (Governance & Risk) at Herschend Family Entertainment (HFE)

ABOUT US

Our story began 75 years ago when the Herschend family discovered wonder deep in an Ozark Mountain cave—and chose to share it with the world. Today, Herschend is the largest family-held themed attractions company, with 49 leading attractions and immersive experiences that reach audiences worldwide.

While each brand offers something unique, all are united by a shared purpose: Bringing Families Closer Together by Creating Memories Worth Repeating®. Our passionate hosts make this purpose possible through everyday acts of love and service—what we call Heartspitality®—the intersection of heart and hospitality.

As an equal-opportunity employer, we strive to provide environments where every host, guest, and partner feel welcome, valued, and loved. We firmly believe that words and actions matter, which is why all individuals are to be treated equally and with respect.

POSITION SUMMARY

Herschend Family Entertainment (HFE) is seeking an Information Security Engineer (Governance & Risk) to join our Information Security team in our mission of Creating Memories Worth Repeating® across our theme parks and attractions nationwide.

This role is ideal for someone who wants to grow their career in governance, risk, and compliance (GRC) while also gaining hands-on technical experience across multiple information security domains. You’ll have the opportunity to work with enterprise-grade tools, contribute to critical security programs, and help shape security standards for the organization. 

In this role, you’ll support key security initiatives including vulnerability management, systems governance, data governance, and disaster recovery. You’ll also participate in our information security on-call rotation, providing exposure to technologies like firewalls, identity management, and email security gateways.

The right candidate will be a self-starter, detail-oriented, and eager to learn—with the ability to balance technical tasks with governance initiatives. 

This is a full-time, hybrid position based in our Property Support Center in Peachtree Corners, Georgia. 

ESSENTIAL DUTIES & RESPONSIBILITIES

• Vulnerability Management: Assist with Tenable Security Center administration, coordinating with IT teams on remediation, maintaining infrastructure, and delivering both technical and executive reporting.  

• Governance Compliance: Support Data governance programs in Microsoft Purview, implementation and maintenance of compliance benchmarks (e.g., CIS, Controls), system hardening standards, and other regulatory or security-based certification requirements (PCI DSS, SOC 2) 

• Disaster Recovery: Help manage Rubrik backup and recovery solutions, including new site deployments, entitlement management, consistency reviews, testing, and real-world recovery operations. 

• Automation: Assist with building and maintaining security automation solutions. 

• On-Call Security Support: Participate in information security on-call rotation, supporting up-time-critical systems such as firewalls, identity platforms, and email security gateways. 

EXPERIENCE & EDUCATION

• 5 years’ experience in IT, Security, or related technical disciplines 

• Foundational knowledge of IT systems, networking, and security concepts 

• Willingness to learn Unix/Linux tools and basic scripting 
• Strong organizational, problem-solving, and communication skills 

SKILLS & QUALIFICATIONS

• Experience with compliance frameworks (PCI DSS, CIS, NIST, ISO 27001, etc.) 

• Familiarity with enterprise security/monitoring tools (vulnerability scanners, firewalls, email security) 

• Firewall administration experience 

• Exposure to enterprise IT environments 

• Prior compliance or audit experience 

• Professional certifications such as Security+, Network+, CISSP, or vendor-specific certifications.