Cyber Security Engineer

About The Position

Requirements

• Bachelor’s degree in Cybersecurity, Computer Science, Engineering, or a related field (or equivalent experience)
• 5-10 years of progressive experience in cybersecurity engineering, infrastructure security, or related roles within critical infrastructure, transportation, or regulated environments.
• Strong knowledge in securing complex networks, servers, virtualization, and storage environments
• Demonstrated experience performing vulnerability management, patching, and remediation in always-on environments
• Hands-on experience with security tools such as firewalls, SIEM, EDR, and vulnerability scanners
• Familiarity with cloud security
• Understanding of scripting or automation (PowerShell, Python, Bash)
• Experience supporting NIST RMF processes and security authorization activities for cloud-based systems
• Understanding of common attack vectors and defensive techniques
• Familiarity with Zero Trust architecture implementation
• Familiarity with Pen-Test Tools, Cloud container security, and Virtual/Hyperconvergence technologies
• Experience supporting and coordinating formal audits and compliance assessments
• Ability to operate independently and prioritize work
• Excellent written and verbal communication skills for audit coordination and technical documentation
• Ability to pass TSA background checks required for airport badge clearance.
• Ability to obtain CBP clearance.
• Willingness to work onsite at ORD as required and participate in an on-call rotation.

Nice To Haves

• CISSP certifications a plus

Responsibilities

• Subject Matter Expert: Cybersecurity SME for airport security systems
• Risk management: Identifying and prioritizing potential threats
• Defense in depth: Layered security measures like firewalls and intrusion detection
• Incident response and recovery: Planning for, mitigating, and responding to incidents
• Engineering and Operations: Own day-to-day cybersecurity execution for airport security, access control, safety, and emergency systems within defined operational and prioritization frameworks
• Monitor security infrastructure (SIEM) for threats, vulnerabilities, and suspicious activity
• Perform hands-on security engineering, including system hardening, configuration, patching, reviews, remediation, and security tooling administration across cloud and on prem environments
• Compliance, Audit & Risk Management: Support/Align compliance initiatives (e.g., NIST, ISO 27001, SOC 2)
• Coordinate and lead audits and assessments with auditors, including evidence collection, remediation tracking, and follow-up
• Support cybersecurity testing programs (e.g., vulnerability assessments, penetration testing, and control validation).
• Governance & Policy Contributions: Handle and execute cybersecurity requests originating from the CISO organization.
• Provide input into cybersecurity policies, standards, and procedures, ensuring they are practical, operationally effective and aligned to commonly accepted standards used in airport and critical infrastructure environments
• Translate policy and compliance requirements into executable technical controls
• Evaluate and recommend security tools, technologies, and best practices
• Collaboration & On-Call Support: Work closely with the network and infrastructure team to embed security into daily operations
• Collaborate with project teams to integrate security into system design and development (DevSecOps)
• Participate in a shared on-call rotation supporting a 24×7 airport operational environment | Est. 1x Primary and 1x Secondary (backup) every quarter.

Benefits

• Medical, Dental, Vision, company-provided Life Insurance, Short and long-term disability. Matched Retirement Savings, Wellness Program, Paid time off and much more!