Cyber Security Engineer

Senior Cyber Security Engineer

Job Summary

The Senior Cyber Security Engineer is responsible for safeguarding the organization’s information systems by identifying and mitigating security risks. This role involves conducting security assessments, managing security incidents, and implementing security measures to protect against cyber threats. The Senior Cyber Security Engineer will create technical documentation for executive-level consumption and triage security alerts within the Security Information and Event Management (SIEM) solution. Additionally, the Senior Cyber Security Engineer will work closely with other IT Security departments to ensure the safeguarding of the organization’s data and systems.

Key Responsibilities:

Assist in incident response efforts by ensuring all response activities are conducted in accordance with compliance requirements.

Lead comprehensive security documentation efforts across the organization.

Develop Next-Generation SIEM and SOAR systems within a corporate environment.

Crafting and refining rules and alerts to improve detection capabilities.

Collaborate with cross-functional teams to respond to security incidents, including containment and recovery efforts.

Create detailed incident reports and provide insights and recommendations for future threat prevention.

Fully document and communicate findings to an array of audiences, which includes both technical and executive teams.

Continuously improve processes for use across multiple detection sets for more efficient Security Operations.

Assist in the design, evaluation, and implementation of new security technologies.

Ensure vulnerability scan results are presented in appropriate dashboards, reports, and forwarded to other support teams as necessary.

Provide technical support for vulnerability management and remediation activities.

Stay up to date with emerging threats and latest cybersecurity trends.

Required:

• A bachelor’s degree in a related field is preferred; however, equivalent professional experience will also be considered.
• Preferred Certifications:
• SANS GIAC Certified Incident Handler (GCIH)
• CompTIA Security+
• CompTIA Cybersecurity Analyst (CySA+)
• Blue Team Level 1 (BTL1)
• OffSec Defense Analyst (OSDA)

Experience:

• 3+ years of experience in a technical role in the areas of Security Operations, Vulnerability Management, and Incident Response
• Direct experience performing Security Operations in an active corporate environment.
• Knowledgeable understanding of threat hunting methodologies, incident response frameworks, and vulnerability management processes.
• Experience in vulnerability scanning, SIEM, EDR, NDR, and technical writing.
• Geographic Responsibility: Partner with security operations across multiple geographic regions, ensuring consistency in security practices and compliance with local regulations and standards.
• Matrix Management: Collaborate with other IT departments and stakeholders across the organization to implement security initiatives, manage cross-functional projects, and influence security practices beyond the immediate team.
• Security Technology Oversight: Carry out the evaluation, implementation, and lifecycle of security tools and technologies.
• Incident and Crisis Management: Spearhead the response to security incidents and crises, including coordination, and resolution efforts to minimize impact and recover swiftly.