Senior Cybersecurity Engineer

About The Position

Requirements

• 7–10 years of experience in a Security Engineering role or Systems Engineering role with previous Security experience.
• Candidate has moved beyond troubleshooting and has experience designing and implementing technical solutions.
• Demonstrated ability to use PowerShell, Python, or Bash to automate security workflows, interact with APIs, and manage infrastructure as code.
• Strong understanding of how security tools integrate with core infrastructure, including Active Directory/Entra ID, Virtualization (VMware/Hyper-V), and Cloud Platforms (GCP/Azure).
• Experience leading security incident response activities.
• Proficiency with XDR telemetry, secure system configuration, and SIEM management.

Nice To Haves

• Hands-on experience managing and hardening network infrastructure, including firewall policy logic, VPN architecture, and VLAN segmentation for security.
• Experience securing Generative AI/LLM implementations, including familiarity with the OWASP Top 10 for LLMs, AI red teaming, or data privacy controls for AI models.
• Specific experience with Identity Management (IAM) platforms (like Fischer Identity, Okta, or SailPoint), including experience managing automated user lifecycles.
• Familiarity with the unique security needs of a campus environment, including HECVAT assessments and navigating decentralized "Shadow IT."
• CISSP, GIAC (GCDE, GCIH, GCIA), or CISA certifications.
• Experience applying security controls within frameworks such as NIST CSF, ISO 27001, etc.

Responsibilities

• Drive the end-to-end incident response lifecycle with a focus on leading our response to active incidents, utilizing automation to speed up containment and recovery.
• Own the relationships with our Managed Security Service Providers to ensure service level agreements are met, expanding their reach and maximizing service value.
• Expand and optimize our SIEM and XDR capabilities to enhance our MDR service and streamline threat hunting capabilities. Develop and tune custom alerting logic and automated playbooks to reduce dwell times.
• Search for malicious activity within our environment and take appropriate action to reduce risk of data loss.
• Stay up-to-date on emerging security trends, vulnerabilities, and threat actors and recommend enhancements to our security defenses.
• Partner with Director, Information Security to develop and implement the cybersecurity strategic plan to improve program maturity and compliance.
• Drive risk-based prioritization of discovered vulnerabilities and collaborate with technical owners to ensure remediation of critical flaws.
• Engineer and maintain technical controls for the secure deployment of AI/LLM tools, ensuring proper data governance and protection against AI-specific attack vectors (e.g., prompt injection).
• Serve as the security lead in cross-functional technical projects, conducting security reviews of system configurations and cloud environments to balance College business needs while reducing risk.
• Own our security technologies to maximize their value and measure their efficacy against evolving threats. Evaluate new tools and services to enhance our security posture with a focus on automation.
• Act as the technical lead for our Identity Management system, optimizing the automated lifecycle of student and faculty accounts. Lead the annual access review process for critical systems to ensure enterprise-wide adherence to the principle of least privilege.