Cyber Security Engineer

Trinity Life Sciences•New York, MA

6d•$115,000

About The Position

The Cyber Security Specialist will act as a core member of Trinity’s cyber defense program. They will posses the ability to identify, assess and prioritize threats and vulnerabilities across all of Trinity’s environment, while effectively communicating across multiple teams to help create a cohesive security ecosystem. The ideal candidate will be able to build strong relationships across the business to help identify gaps in security controls, as well as assist in internal audits. They will possess an ability to ‘think like an adversary’ and promote security throughout the organization.

Requirements

BS in computer sciences or equivalent work experience
5+ years of security engineering and vulnerability remediation
Advanced proficiency with Azure services (Entra ID, Key Vault, Sentinel, Defender for Cloud, Application Gateway, NSGs, Private Endpoints).
Advanced proficiency with AWS services (IAM, CloudTrail, GuardDuty, Security Hub, VPC, KMS, Secrets Manager).
Experience with SIEM/logging tools (Splunk, or similar); log analysis and KQL/SPL query writing.
Proficiency with vulnerability management (InsightVM and AppSec or other), endpoint detection & response (SentinelOne EDR or similar), and patch management tools (Automox or similar).
Strong scripting/automation skills (PowerShell, Python, Bash) to automate security tasks and infrastructure hardening.
Knowledge of secure SDLC tools (SAST, DAST, code repositories, CI/CD pipeline security).
Demonstrated experience with cloud security frameworks (Azure Security Benchmark, AWS Well-Architected Security Pillar, CIS Controls).
Understanding of modern threats and exploits
Ability to assist in designing correction plans, mitigations, and full remediation actions
Ability to understand and communicate attack chains to management and key stakeholders
Develop, execute and track the performance of security measures to protect information and network infrastructure and computer systems.
Identify, define and document system security requirements and recommend solutions to management.
Configure, troubleshoot, and maintain security infrastructure software and hardware.
Implement software that monitors systems and networks for security breaches and intrusions.
Monitor systems for irregular behavior and set up preventive measures.
Identify and document security requirements and recommend solutions to management.
Knowledge of WAFs and SD-WAN
Experience with network monitoring and breach monitoring tools.
Cloud experience including Windows and Linux administration and/or engineering
Understanding of all phases of the Cyber Security kill chain
Experience with email security and phishing
Knowledge and experience updating and creating Incident Response Playbooks
Solid understanding of secure messaging best practices and security training best practices

Nice To Haves

CISSP
CEH
GSEC
ECSA & Security+

Responsibilities

Assist in designing correction plans, mitigations, and full remediation actions
Understand and communicate attack chains to management and key stakeholders
Develop, execute and track the performance of security measures to protect information and network infrastructure and computer systems.
Identify, define and document system security requirements and recommend solutions to management.
Configure, troubleshoot, and maintain security infrastructure software and hardware.
Implement software that monitors systems and networks for security breaches and intrusions.
Monitor systems for irregular behavior and set up preventive measures.
Identify and document security requirements and recommend solutions to management.

Stand Out From the Crowd

Upload your resume and get instant feedback on how well it matches this job.

Upload and Match Resume