Cybersecurity Engineer

About The Position

Requirements

• 3-10 years in cybersecurity, preferably with SIEM and SOC experience.
• Familiarity with incident response frameworks (NIST, SANS).
• Experience with SASE/ZTNA platforms (e.g., Check Point Harmony, CATO Networks).
• Proficiency in email security technologies (Microsoft 365 Defender, Abnormal Security, Barracuda Networks).
• Strong understanding of Windows/Linux administration and networking fundamentals.

Nice To Haves

• Preferred certifications: CISSP, GCIA, GCIH, CCNP Security, or vendor-specific.

Responsibilities

• Administer and optimize the enterprise SIEM platform (log sources, parsing, correlation rules, dashboards).
• Perform incident detection, response, and remediation, including forensic investigation and root cause analysis.
• Support SASE and ZTNA solutions, ensuring secure remote access and enforcing least-privilege connectivity.
• Manage and tune email security systems (secure email gateways, phishing defense, DMARC/SPF/DKIM enforcement).
• Provide systems administration support (patching, vulnerability remediation, system hardening, general administration).
• Collaborate with IT, networking, and compliance teams to align on security controls.
• Participate in on-call security incident rotation and lead technical response efforts.
• Document security processes, runbooks, and incident postmortems.
• Participate in major incident response.