Senior Cyber Security Engineer

About The Position

Requirements

• Strong hands-on understanding of modern security principles and threat models.
• Practical experience securing Linux and Windows systems.
• Solid networking fundamentals (firewalls, segmentation, VPNs, DNS).
• Experience operating security platforms such as SSE/CASB, EDR, vulnerability scanners, and SIEMs.
• Ability to automate and script security tasks using Python, Bash, or PowerShell.
• Experience securing cloud environments (AWS, Azure, or GCP).
• Familiarity with IAM, logging, monitoring, and cloud network security.
• Demonstrated experience investigating and responding to security incidents.
• Ability to analyze logs and alerts to distinguish real risk from noise.
• Calm, methodical approach to incident handling under pressure.
• Typically 3–7 years of experience in cybersecurity, systems engineering, or a closely related field.
• Experience operating security controls in production environments with real accountability.
• Experience working with Managed Service Providers while retaining internal ownership of outcomes.
• Ability to communicate security risks clearly to non-security stakeholders.
• Sound judgment balancing security requirements with business and research needs.
• Comfort operating in an environment where execution is shared, but accountability is not.

Nice To Haves

• Experience with containerized workloads, CI/CD pipelines, or HPC environments is a plus.
• Prior experience in regulated or high-scrutiny environments preferred.
• Direct experience with CMMC, NIST 800-171, SOC 2, or IPO readiness.
• Relevant certifications (e.g., CISSP, GCIH, GCED, CCSP).

Responsibilities

• Own day-to-day internal cyber security operations and outcomes.
• Monitor, triage, and investigate security alerts and incidents.
• Act as the primary internal technical responder for security events.
• Coordinate closely with the MSP on managed security services (including SentinelOne), retaining internal accountability.
• Implement, configure, and operate core security platforms, including Zscaler and Aurascape.
• Design and enforce security policies; integrate with identity, endpoint, and network systems.
• Serve as technical owner for MSP-managed platforms by defining standards, reviewing findings, and validating response actions.
• Lead implementation and operation of a SIEM platform, including logging standards, alerting, and workflows.
• Lead technical investigation, containment, and remediation of security incidents.
• Conduct post-incident reviews and recommend control improvements.
• Operate vulnerability scanning and configuration assessment tools.
• Prioritize and track remediation based on risk and business impact.
• Implement and operate technical controls supporting CMMC Level 2 and NIST 800-171.
• Maintain defensible documentation of security controls and operations.
• Support audits, investor due diligence, and third-party security assessments.
• Partner with leadership to identify and remediate gaps.
• Work closely with the Director of IT on priorities, risk acceptance, and escalation decisions.
• Advise IT, engineering, and research teams on secure system design and operational trade-offs.

Benefits

• Stock and share options 📈
• Relocation allowance 💰
• Insurance plans 🩺
• 401k retirement options 💸
• And many more great voluntary benefits 👀