Job Description

Job Title: Cybersecurity Engineer - Advanced Security Solutions

Job Description:

We are seeking a highly skilled Cybersecurity Engineer to join our innovative Cybersecurity Engineering team. In this role, you will be instrumental in developing and managing advanced security solutions to safeguard our organization and its subsidiaries. This position offers an excellent opportunity to expand your expertise while contributing to our mission of ensuring secure digital environments. The ideal candidate will have substantial hands-on experience with core infrastructure systems, microsegmentation technologies, advanced threat detection methodologies, and securing applications deployed in Azure environments.

Key Responsibilities:

• Development of Security Solutions: Design, implement, and manage sophisticated security solutions, including microsegmentation, threat detection systems, and securing cloud infrastructure in Azure to protect enterprise assets.
• Azure Security Management: Oversee and manage security within the Azure environment, ensuring the proper configuration of Azure Security Center, Azure Defender, and other cloud-native security services.
• Threat Analysis and Incident Response: Conduct comprehensive threat analysis and provide expert incident response for security incidents, ensuring effective resolution and detailed documentation.
• Microsegmentation Initiatives: Lead the strategy for microsegmentation, including application dependency mapping and enforcing least-privilege access policies to optimize and secure traffic flow across both on-premise and cloud infrastructure.
• Container Security and Vulnerability Testing: Perform security testing and vulnerability assessments on containerized applications, including the use of tools like Docker Bench, Clair, or Aqua Security to secure container environments.
• Infrastructure Management: Oversee the cybersecurity log infrastructure, ensuring compliance with security policies across both on-premise, cloud (Azure), and containerized environments (e.g., Kubernetes).
• Collaboration and Vendor Engagement: Work closely with product vendors and internal teams to enhance technical security capabilities and streamline security processes.
• Continuous Improvement Initiatives: Develop and implement continuous testing and validation processes to enhance security measures, including the automation of operational tasks using scripting languages (e.g., PowerShell, Python).
• Application Security Engineering : Perform security-focused code reviews, collaborate with development teams on threat modeling and appsec reviews, assist in reproducing and resolving application vulnerabilities, and support the preparation of security releases.
• Training and Mentorship: Provide training and mentorship to junior team members, sharing best practices and fostering a culture of security awareness across the organization.
• Documentation and Reporting: Create and maintain comprehensive documentation for security processes, playbooks, and operational procedures, while presenting findings and recommendations to stakeholders.
• Performance Monitoring and Enhancement: Monitor and analyze the performance of security solutions, implementing enhancements as necessary to address emerging threats and vulnerabilities.
• Disaster Recovery Planning: Contribute to the development and execution of disaster recovery strategies for security technology solutions.

Qualifications:

Required Experience:

• Minimum of 5 years in cybersecurity or information security.
• At least 3 years of hands-on experience with microsegmentation solutions (e.g., Illumio, Cisco Secure Workload).
• Proven experience in incident response and threat analysis within a large enterprise environment.
• Experience securing Azure-based applications and infrastructure.

Educational Background:

• Bachelor's degree in Information Technology, Computer Science, or a related field, or equivalent work experience.

Certifications (to be obtained within 180 days of hire):

• SSCP: Cybersecurity Engineer Defense and Threat Operations.
• Certified Information Systems Security Professional (CISSP) is a plus.

Preferred Qualifications:

• Familiarity with SIEM technologies (e.g., Splunk) and threat intelligence frameworks.
• Understanding of TCP/IP networking and security concepts.

Additional Requirements:

• Proficiency in GitLab: Ability to use GitLab effectively for version control and collaboration with development teams.
• Azure Security Experience: Strong knowledge of security tools and best practices for securing cloud infrastructure in Azure, including Azure Security Center, Azure Defender, and Identity and Access Management (IAM).
• Container Security Experience: Experience testing and securing containerized applications using tools like Docker Bench, Clair, or Aqua Security.
• Collaboration with Development Teams: Proven ability to work well with software development teams and integrate security practices into the development workflow.
• Security Issue Identification: Experience identifying and addressing security vulnerabilities through code review and remediation.
• Strong Communication Skills: Excellent written and verbal communication skills, with the ability to articulate complex security topics clearly and concisely.
• Familiarity with Security Tools: Hands-on experience with security libraries and tools, including static analysis and penetration testing tools (e.g., OWASP ZAP, Burp Suite).
• Understanding of Common Security Flaws: Familiarity with common security vulnerabilities (e.g., OWASP Top 10) and knowledge of strategies to mitigate them.
• Scripting and Development Skills: Basic development experience with a preference for Ruby, Ruby on Rails, JavaScript, and Go.
• Networking Protocols: A solid understanding of network and web-related protocols such as TCP/IP, UDP, and

If you are a driven cybersecurity professional seeking to make a significant impact within our organization, we invite you to apply for this exciting opportunity.

Job Tags

Similar Jobs