Cyber Security Engineer II
Memorial Sloan Kettering Cancer Center•New York, NY
•Hybrid
About The Position
Join MSK’s cutting‑edge Digital & Technology team and play a pivotal role in safeguarding systems that support world‑leading cancer care! As a Cyber Security Engineer II, you’ll dive deep into complex technologies, solve challenging security problems, and directly influence enterprise‑wide protections that keep patients, clinicians, and critical research safe every day.
Requirements
- Hands-on experience with secure architecture across OS, cloud, network, database, and application layers.
- Proficiency in at least one scripting or programming language (Python, Perl, Shell/PowerShell, C/C++, Assembly).
- Experience participating in security incident response, vulnerability remediation, and security operations.
- Ability to support enterprise security systems in a rotating on‑call schedule.
- Hands on experience with incident response lifecycle management — including containment, eradication, and recovery — within complex enterprise networks.
- Experience with SIEM platforms, EDR tooling, and email security solutions; hands-on experience with Splunk, CrowdStrike Falcon, and Proofpoint is strongly preferred.
- Working knowledge of threat intelligence frameworks (MITRE ATT&CK) and their application to detection and response operations.
- Working knowledge of attacker methodology and penetration testing techniques.
- Strong problem-solving ability with the capacity to improve solutions and operate at subsystem-level depth.
- Effective collaborator who can confidently contribute in technical team conversations.
- Ability to understand complex technical discussions and generate actionable insights.
- Commitment to ongoing learning and staying current with new security technologies and methods.
- Clear communicator able to document architectures, processes, and assessments thoroughly.
- Dedicated to professional growth through continuous learning of emerging threat landscapes, tactics, and security technologies.
- Experience developing or refining incident response playbooks, detection use cases, and SOC operational procedures.
Responsibilities
- Assist with or lead threat investigations, incident response, and vulnerability management activities.
- Provide rotating on-call support for enterprise security operations and documentation.
- Act as a technical SME in incident detection, analysis, and response, leveraging data from Splunk, CrowdStrike Falcon, and Proofpoint TAP to support investigations and remediation.
- Develop, tune, and maintain detection content — including SIEM rules, correlation logic, and alert playbooks — to improve fidelity and reduce mean time to detect (MTTD).
- Apply deep technical knowledge to secure systems and network architecture across diverse platforms.
- Work independently toward defined cybersecurity objectives while maintaining clear communication with stakeholders during active incidents and investigations.
- Contribute actively to technical discussions within multidisciplinary engineering teams.
- Strengthen solutions through hands-on development, design improvements, and implementation.
- Support and execute security projects, enterprise architecture, POCs, and remediation efforts.
- Develop and update organizational security policies, standards, and technical guidance.
Stand Out From the Crowd
Upload your resume and get instant feedback on how well it matches this job.
Upload and Match Resume
What This Job Offers
Job Type
Full-time
Career Level
Mid Level
Education Level
No Education Listed
Number of Employees
1,001-5,000 employees
