Cybersecurity Engineer

About The Position

Requirements

• 3+ years in security engineering, cloud engineering, or security operations with hands-on responsibility for implementing controls.
• Strong fundamentals in at least one of: identity and access management, network segmentation, vulnerability management, cloud security, endpoint security, centralized logging.
• Experience with at least one major cloud platform (Azure, AWS, GCP) in an engineering capacity.
• Comfortable executing vulnerability and patch workflows (scan, prioritize, remediate, validate).
• Ability to write clear operational documentation — runbooks, evidence artifacts, change records.
• Strong collaboration skills across Security, IT, and delivery teams.
• Comfortable mentoring Associate Engineers on day-to-day work

Nice To Haves

• Regulated-environment exposure (CMMC, NIST 800-171, FedRAMP-aligned, SOC 2, ISO 27001).
• Scripting / automation experience (Python, PowerShell, Bash); infrastructure-as-code familiarity a plus.
• Security certifications (Security+, SSCP, GSEC, AZ-500, AWS Security Specialty, or cloud/security engineering equivalents).
• Familiarity with incident-response procedures and evidence handling.
• Bachelor’s degree in Computer Science, Information Systems, Cybersecurity, or related field — or equivalent applicable years of experience

Responsibilities

• Own small-to-medium engineering projects end-to-end — scoping, design partnership with a Senior, build, test, deploy, document, and hand off to operations. Deliver them on time without surprises.
• Configure and operate security controls across identity, network, cloud, endpoint, logging/monitoring, encryption/key management, and vulnerability management. Execute against approved patterns and standards.
• Develop deepening expertise in at least one control domain (e.g., endpoint, identity, vulnerability management, cloud security, IAM, monitoring). Become a real go-to on that domain for the team.
• Run vulnerability and patch workflows — scan, prioritize, remediate, validate. Track remediation against SLA and close the loop.
• Participate in change reviews, assess security impact for in-scope systems, implement approved changes, and validate post-change posture.
• Produce clean operational documentation — runbooks, change records, evidence artifacts — that holds up under audit and peer review.
• Partner with the SOC and Detection Engineering on logging coverage, telemetry quality, and the engineering pieces of response (access tooling, isolation capabilities, evidence capture).
• Pair with Associate engineers on day-to-day execution. Review their tickets, walk them through the toolset, and grow them toward independence.
• Contribute scripts and automation to reduce manual toil (validation checks, evidence collection, repeatable deployments) under the guidance of Senior+ engineers.

Benefits

• Medical, Dental, and Vision Insurance on the first day of employment
• Flexible Spending Account and Dependent Care Account
• 401k with Profit Sharing
• 9+ holidays and discretionary time off structure
• Parental Leave – coverage for both primary and secondary caregivers
• Tuition Assistance Program and CPA support program with cash incentive upon completion
• Discretionary incentive compensation based on firm, group and individual performance
• Incentive compensation related to origination of new client sales
• Top rated wellness program
• Flexible working environment including remote and hybrid options