Senior Cybersecurity Specialist

About The Position

Requirements

• Minimum 5 years of experience in cybersecurity disciplines such as governance and compliance, risk management, vulnerability management, cloud security, and incident response
• Hands-on expertise with platforms including Microsoft Defender, CrowdStrike, Azure, and AWS
• Strong knowledge and application of the CIS Controls and NIST Cybersecurity Framework.
• Familiarity with regulatory and compliance standards (e.g., NIST, GDPR, ISO, SOC 2).
• Proven ability to manage the full security incident response lifecycle: detection, analysis, containment, eradication and recovery.
• Demonstrated success in project management within collaborative environments
• Excellent communication and interpersonal skills (written and verbal)

Nice To Haves

• Relevant certifications (e.g., Security+, GSEC) are a plus

Responsibilities

• Identify and escalate cybersecurity risks related to Rhythm’s systems, data, and third-party relationships and drive timely remediation efforts
• Execute the vulnerability management program, ensuring vulnerabilities are addressed within defined SLAs
• Serve with others as a first responder during security incidents, performing detailed technical analysis and coordinating response activities
• Support threat hunting and digital forensics initiatives to uncover threats and assess overall risk exposure
• Partner with cross-functional teams on projects impacting confidentiality, integrity, or availability of critical assets
• Review and validate security requirements within third-party contracts, including data protection clauses, breach notification obligations, and compliance with relevant regulations
• Conduct thorough third-party data security assessments to evaluate controls, risk posture, and alignment with organizational standards
• Provide and maintain general cybersecurity training and education for all Rhythm employees
• Maintain clear, accurate, and up-to-date documentation for cybersecurity policies, procedures, and standards. Ensure incident response playbooks, vulnerability management workflows, and system hardening guides are well-documented and easily accessible
• Monitor adherence to established cybersecurity frameworks and internal policies across all IT operations

Benefits

• A discretionary annual bonus may be available based on individual and company performance.
• This role may be eligible for benefits and other compensation such as restricted stock units.