Senior Cyber Security Engineer I

Stratus•Irving, TX

12d•Onsite

About The Position

The Senior Cybersecurity Engineer I is a security expert who addresses security events in both cloud and enterprise environments. They are responsible for monitoring, triaging, and responding to these events. This role is crucial to the Security Operations function, as it contributes to incident response, threat detection, and the implementation of security controls aligned with SOC 2. The ideal candidate should have extensive experience with fundamental security practices and a solid understanding of cloud security. They must be able to follow structured processes while making informed decisions during security investigations. This position requires close collaboration with senior engineers, IT Operations, and DevOps teams to ensure that security events are quickly identified, reported, and documented, all while continuously improving security measures and operational efficiency.

Requirements

Bachelor’s degree in Information Technology, Cybersecurity, Computer Science, or a related field.
Minimum of six (6) years of experience in IT infrastructure, cybersecurity, or related technical roles.
Demonstrated experience supporting or implementing SOC 2 compliance controls in a cloud-based environment.
Prior experience working in or alongside a Security Operations Center (SOC) or equivalent security function.
3+ years of experience in information security, with at least 2 years focused on cloud environments.
Hands-on experience with at least one major cloud provider: AWS, Azure, or GCP.
Solid understanding of: Networking concepts (TCP/IP, DNS, HTTP/S) Operating systems (Windows and Linux fundamentals) Common cyber threats, attack vectors, and defensive techniques
Familiarity with security tools such as: SIEM platforms Endpoint Detection & Response (EDR/XDR) Log analysis and monitoring tools (Academic, lab, or professional experience acceptable)
Strong attention to detail with the ability to follow structured procedures and playbooks.
Clear written and verbal communication skills.

Nice To Haves

Certifications: AWS Certified Security Specialty, Azure Security Engineer Associate, Google Professional Cloud Security Engineer, CCSP, CISSP.
Experience with containers, Kubernetes security, and service mesh (e.g., Istio).
Knowledge of DevSecOps practices and CI/CD pipeline security.
Experience with third-party security tools (e.g., Rapid7, Zscaler, CrowdStrike, Palo Alto Prisma).
Strong analytical and problem-solving skills.
Ability to communicate technical risks to non-technical stakeholders.
Collaborative mindset and ability to work across IT, DevOps, and business units.
Detail-oriented with a proactive approach to risk mitigation.

Responsibilities

Security Monitoring & Alert Triage Monitor SIEM, EDR, and security dashboards for alerts and suspicious activity.
Perform initial analysis and triage of security alerts based on established playbooks.
Distinguish false positives from legitimate security events and escalate when required.
Incident Support Assist senior analysts during security incident investigations.
Collect logs, evidence, and basic indicators of compromise (IOCs).
Document incidents accurately in ticketing and case management systems.
Threat Awareness & Analysis Identify common attack techniques such as phishing, malware, brute force, and credential misuse.
Use basic threat intelligence sources to support alert validation.
Follow MITRE ATT&CK–aligned detection and response procedures.
Operational Support Maintain accurate records and incident documentation.
Follow SOC processes, runbooks, and escalation procedures.
Learning & Development Continuously develop cybersecurity skills through hands-on experience and training.
Stay current on emerging threats and security best practices.