Cyber Security Engineer

About The Position

Requirements

• A bachelor’s Degree in IT, Cyber Security, or a related field.
• Ability to maintain confidentiality when working with sensitive information.
• Two (2) or more years of relevant IT or Cyber Security experience.
• Technical experience in the following areas: Microsoft Windows and Linux operating systems, Microsoft Active Directory and Group Policy Objects, SIEM administration, Intrusion detection and prevention system administration, Endpoint detection and response tool administration, and Advanced cyber security toolkits for malware analysis and digital forensics.
• Working knowledge of cyber security best practices and system protection requirements (e.g., NIST frameworks, DISA STIGs, etc.).
• Familiarity with open-source and commercial tools used for detection, prevention and analysis of security threats.
• Excellent written and verbal communications skills.
• Must be a U.S. citizen.
• Must be able to obtain and maintain a U.S. Department of Energy (DOE) Q clearance.

Nice To Haves

• Six (6) or more years of relevant experience.
• One or more advanced certifications: CCNA, Security+, GCIH, CYSA+, CISSP.

Responsibilities

• Design, configure, deploy, and maintain core cyber security technologies, including SIEM platforms, Vulnerability management tools, EDR solutions, Data loss prevention systems, and Intrusion detection/prevention systems.
• Evaluate threat intelligence by reviewing advisories, exploit reports, and vendor notifications from trusted government, academic, and industry sources, then delivering clear, actionable recommendations to internal teams.
• Conduct vulnerability assessments using industry‑standard tools to uncover configuration gaps, security risks, missing patches, outdated software, and identify remediation needs.
• Develop meaningful custom dashboards to track the organization’s security posture and generate reports to support Cyber Security metrics for both executives and operational teams.
• Participate as a member of the Cyber Security Incident Response Team (CSIRT) by serving as a technical consultant during security incident investigations, guiding first responders during security events and conducting advanced response actions for escalated incidents, and performing digital forensic evidence collection, preservation, analysis, and malware examination as required.
• Directing first responders and executing advanced response actions, and conducting forensic evidence collection, analysis, and malware examination.
• Perform risk assessments and threat modeling to strengthen the security of new technologies and business initiatives.
• Collaborate closely with IT Operations, IT Applications, and other technical partners to rapidly troubleshoot and resolve complex system and security issues.

Benefits

• health, dental, and retirement plans
• Flexible work schedules
• paid time off
• Professional development opportunities, including mentorship programs and sponsorship for continuing education.
• Opportunities for continuous learning and training