Senior Cyber Security Engineer

About The Position

Requirements

• 8–12 years of experience in cyber security engineering, with hands‑on expertise in both cloud and on‑prem environments.
• Strong experience with cloud platforms (AWS, Azure, or GCP) and associated security services.
• Proven background in security architecture, design reviews, and infrastructure security.
• Hands‑on experience with vulnerability scanning tools, risk assessment methodologies, and remediation processes.
• Solid understanding of network security, operating system security, and identity and access management.
• Strong analytical and communication skills, with the ability to explain security risks to both technical and non‑technical stakeholders.
• Bachelor's Degree in Computer Science or “STEM” Majors (Science, Technology, Engineering and Math) with advanced experience (for roles outside USA).
• Bachelor's Degree in Computer Science or “STEM” Majors (Science, Technology, Engineering and Math) with minimum years of experience 4 years (for roles in USA).

Nice To Haves

• Experience working in regulated environments (healthcare, medical devices, finance, or similar).
• Familiarity with security frameworks and standards such as NIST, ISO 27001, CIS, OWASP.
• Experience with container and Kubernetes security.
• Security certifications such as CISSP, CCSP, CISM, or equivalent.
• Experience supporting hybrid or large‑scale enterprise environments.
• Experience with cyber security framework (NIST 800-53, ISO 27001, IEC 62443, etc.) implementation and governance
• Program and Project Management experience; expertise with Agile development teams
• Experience with secure coding principles; code signing; secure boot
• Experience with penetration testing and ethical hacking
• Knowledge of CI/CD and automation tools (Chef, Git, Jenkins)
• Knowledge of Identity management and identity federation (SAML, Oauth, SCIM, XACML)
• Experienced in developing web services (SOAP/REST)
• Knowledge of application risk identification and evaluation techniques
• Knowledge of Cyber Security and full knowledge of multiple related engineering functions
• Experience securing applications within cloud platforms such as AWS, Azure and alike.
• Experience with broad set of information security technologies and processes within a SaaS, IaaS, PaaS, or cloud environment

Responsibilities

• Design, review, and govern security architectures for cloud (AWS/Azure/GCP) and on‑prem infrastructure.
• Ensure alignment with enterprise security standards, threat models, and regulatory requirements.
• Provide security design guidance for new platforms, applications, and services.
• Participate in architecture and design reviews to identify risks early and recommend mitigations.
• Implement and manage cloud security controls including IAM, network security, data protection, logging, and monitoring.
• Secure on‑prem environments including servers, networks, virtualization platforms, and hybrid integrations.
• Support secure configuration baselines and hardening standards for cloud and on‑prem systems.
• Own and drive the vulnerability management lifecycle, including discovery, triage, risk scoring, remediation guidance, and verification.
• Analyze scan results and penetration test findings to determine true risk and business impact.
• Partner with engineering and infrastructure teams to prioritize remediation efforts.
• Perform security risk assessments, threat modeling, and impact analysis for systems and services.
• Translate technical findings into clear risk statements and actionable recommendations.
• Support ongoing risk tracking and reporting for leadership and audit readiness.
• Contribute to incident response investigations from a technical analysis perspective.
• Support compliance initiatives (e.g., ISO, SOC, HIPAA, IEC 62304, NIST) by providing technical evidence and assessments.
• Develop and maintain security standards, patterns, and reference architectures.

Benefits

• professional development
• challenging careers
• competitive compensation
• Relocation Assistance Provided: Yes