Cyber Security Engineer

About The Position

Requirements

• 5+ years of experience as a security engineer or DevSecOps engineer supporting development, infrastructure, and incident response teams in cloud environments (Azure, AWS).
• Bachelor’s or Master’s degree in Computer Science, IT, Cyber Security, or related field.
• Demonstrated understanding of Cyber Security Engineer principles, secure SDLC, and incident detection and response.
• Deep knowledge of secure coding practices, security gateways, and threat modeling as part of the secure software development lifecycle.
• Hands-on experience with CI/CD pipelines (GitHub Actions, Azure DevOps, Jenkins), container security, and automation scripting (Shell, Python, Perl).
• Proficiency with infrastructure automation (Terraform, Ansible), service mesh (Istio), and monitoring/logging tools (Grafana, Prometheus, Elastic Stack).
• Experience with advanced persistent threats, phishing, social engineering, and enhanced authentication methods.
• Familiarity with cyber security frameworks (NIST CSF, ISO 27001) and compliance requirements.
• Strong attention to detail, QA skills, and a proactive approach to problem-solving.

Nice To Haves

• Professional certifications such as Certified Ethical Hacker (CEH), Certified Information System Security Professional (CISSP), Certified Information Security Manager (CISM), Certified Information Systems Auditor (CISA), or Certified Cloud Security Professional (CCSP) are preferred.

Responsibilities

• Kubernetes & Microservices Security Architect and enforce security policies for Kubernetes clusters and containerized applications, including Azure Kubernetes Service (AKS) and integration with service meshes (e.g., Istio).
• Integrate security checks into CI/CD pipelines (e.g., GitHub Actions, Azure DevOps), automate vulnerability scanning (e.g., SonarQube, Coverity, Kube-Bench, Kube-Hunter, Falco), and manage secure base container images.
• Apply security hardening using distroless images and CIS benchmarks for Kubernetes.
• Automate infrastructure provisioning and security controls using tools like Terraform and Ansible.
• Network & Web Security Configure and maintain network and web firewalls, ACLs, secure routing, and SSL/TLS termination at ingress points.
• Implement encryption, MFA, and secure access controls across services, including integration with CDNs (e.g., Akamai) and OAuth providers (e.g., Apigee).
• Model after AWS and Azure security best practices, staying current on the latest trends and features.
• Threat Detection & Incident Response Deploy and manage tools such as Falco, GuardDuty, IDS/IPS, and X-ray for container image scanning.
• Monitor logs and metrics using platforms such as Grafana, Prometheus, and the Elastic Stack (Kibana, Fluentd).
• Lead incident response efforts, including investigation, documentation, and remediation of security events.
• Develop and automate expiration reporting for secrets, keys, and certificates, and implement proactive alerting for expiring credentials.
• Compliance & Documentation Ensure adherence to frameworks such as NIST CSF and ISO 27001.
• Maintain and update security documentation, playbooks, and standard operating procedures.
• Assist with maintaining and updating the incident response policy, plan, and playbooks.
• Automation & DevSecOps Drive automation of security and infrastructure tasks using Infrastructure-as-Code (Terraform, Azure Bicep), configuration management (Ansible, Ansible Tower), and GitOps tools (ArgoCD, Flux).
• Lead migration initiatives from on-premises to cloud and from licensed to open-source tools, optimizing for cost and security.
• Mentor and train team members on security automation and best practices.

Benefits

• Market competitive pay based on education, experience, and location.
• Highly competitive medical, dental, vision, Life w/ AD&D, Short-Term Disability insurance, Long-Term Disability insurance, pet insurance, identity theft protection, and a 401(k) retirement savings plan.
• Employee wellness program.
• Employee rewards, discounts, and recognition programs.
• Generous company-paid holidays (12 per year), vacation, and sick time.
• Paid paternity/maternity leave.
• Monthly connectivity/home office stipend if working from home 5 days a week.
• A supportive and positive space for you to grow and expand your career.