IT Security Engineer (Mid-Level)

Life Cycle Power•Houston, TX

2d•Onsite

About The Position

We are looking for an IT Security Engineer who is ready to contribute to a growing and maturing internal security program. This role provides mid-level security support to the IT department and serves as an escalation point for alerts and incidents generated through our external security monitoring partner. You will play an active part in strengthening our internal defenses, reviewing logs, responding to threats, and supporting compliance and audit work. Our environment is fast paced, collaborative, and committed to excellence. You will work closely with the IT Manager and team members to investigate events and help improve our posture. Strong communication, a willingness to learn, and a steady approach to problem solving are all essential. If you enjoy cyber defense, research, documentation, and hands-on incident response, you will be a great fit here.

Requirements

3 - 7 years of cybersecurity or equivalent experiences.
Hands-on experience reviewing security events or working with SIEM platforms.
Experience with incident response, alert investigation, and general threat analysis.
Strong understanding of identity, endpoints, networks, and core security concepts.
Experience working with various Windows and Linux server platforms, workstations, and Android and Apple mobile devices through direct support or MDM services.
Familiarity or experience with an overall governance, risk, and compliance (GRC) documentation processes.
Must live in the Houston area or planning on your own to relocate to the city.
Must have a valid driver license and current auto insurance.
Must live in the Houston area.

Nice To Haves

Security+, CYSA+, GIAC, SSCP, CEH, CCSP, CISSP, or other IT security-related certifications.
Vast experience working with security platforms of all kinds for SIEMs, EDR/XDR, SOAR, Email Protection, and more.
Deep understanding of support in critical infrastructures, i.e., IT/OT environments and First Responder emergency priorities.

Responsibilities

Liaison with our third-party SOC, providing support during security incidents, and provide coordination efforts for incident responses including documentation and remediation steps.
Review, analyze, and investigate all alerts within the security SIEM.
Identify weaknesses or gaps in SIEM playbooks, false positive detections, and respond to designated true positives immediately.
Provide systems engineering to support email security migration platforms consisting of URL isolation protections.
Monitor existing and new email security system for various email attacks.
Assist with identifying suspicious behavior, unusual log activity, and early-stage threat indicators.
Work with the designated IT Microsoft 365 Cloud Engineer to help identify threats within the Azure tenant (i.e., brute force attacks, account compromises, password reset requirements, OneDrive file sharing incidents, and more).
Provide reporting on a weekly basis and in real-time for all cyber-related findings to the IT Manager.
Assist with threat intelligence research and basic threat hunting activities.
Be prepared to learn reverse malware engineering, putting time toward such security activities for potential growth, opportunity, and for training the team.
Assist IT team members by participating in systems patch management, vulnerability assessments, patch schedules, and review patch deployment metrics results.
Employ writing and resources for all cybersecurity documentation, and diagrams where needed.
Participate in compliance work involving NIST, CIS, ISO 27001, SOC 2, HIPAA, NERC, NERF, and GDPR.
Prepare documentations of frameworks and troubleshooting guides.
Assist in preparation efforts for audits, penetration testing, and mitigation tracking.
Work closely with the IT team and all staff to help improve the security posture and culture of our entire company.
Help strengthen internal controls and contribute to a culture of security awareness.
Participate in on-call rotation.