US LBM Engineer - Cybersecurity Solutions

About The Position

Requirements

• Demonstrated ability leading security-based project with a mindset towards proactive solutions, automation, cloud-based, and emerging technologies.
• Must have technical competency in IT/Systems, combined with business acumen to understand and translate between business and technical requirements.
• Experience and strong understanding of security frameworks and concepts such as Zero Trust model, NIST Cybersecurity Framework, and Microsoft Cloud Security Benchmark.
• Able to support multiple efforts in parallel, in a highly matrix, fast-paced, multi-site organization experiencing rapid growth.
• Proficient in performing risk, business impact, control and vulnerability assessments, and in defining treatment strategies.
• Strong interpersonal skills required, with a positive approach to collaboration and relationship building.
• Must have excellent written and verbal communication skills.
• Strong analytical, organizational and demonstrated problem solving and conflict resolution skills.
• Must be a self-starter with an attitude to 'get things done' and an excellent understanding of information security concepts, protocols, industry best practices and strategies.
• Travel required to various operating locations along with business-related meetings & conferences.

Nice To Haves

• Working experience on Microsoft Cloud Security Solutions (365 Defender, Sentinel, Defender for Cloud, Azure Policy, Defender for Endpoint, Defender for Cloud Apps, Defender for Identity, Intune, Conditional Access, Microsoft Purview).
• Microsoft Entra ID (Azure Active Directory), and solid understanding of Identity security.
• Microsoft Azure Resource configuration such as Virtual Machines, Logic Apps, Automation Accounts, Storage Accounts.
• Kusto Query Language (KQL) scripting, Powershell Scripting, and other scripting language.
• Window Active Directory and Windows Server Administration (Group Policy, ADUC).
• Experience with Linux OS is a plus.
• Experience with User Lifecycle Management is a plus.
• Experience with Microsoft 365 is a plus.

Responsibilities

• Perform threat intelligence collection, enrichment, and technical analysis to identify malicious activities and support proactive threat detection.
• Maintain adversary profiles and map threat actor behaviors using frameworks such as MITRE ATT&CK, Cyber Kill Chain, and the Diamond Model.
• Research, draft, and present intelligence reports and briefings tailored to both technical teams and leadership audiences.
• Monitor, analyze, and respond to security incidents using threat detection tools and SIEM technologies.
• Support incident response efforts by providing threat context, detection recommendations, and post-incident analysis.
• Assist in identifying, assessing, and prioritizing vulnerabilities across US LBM's networks, systems, and applications as part of exposure management efforts.
• Contribute to attack surface reduction initiatives by recommending strategies to minimize potential attack vectors.
• Participate in regular security assessments, vulnerability scans, and penetration testing activities to identify and mitigate risks.
• Collaborate with IT and development teams to integrate security best practices into system designs and deployments.
• Help develop, update, and maintain security policies, standards, procedures, and technical documentation.
• Stay informed on evolving cyber threats, vulnerabilities, and security technologies, sharing relevant insights with the broader security team.
• Support the design and implementation of security solutions and architectures under the guidance of the Cybersecurity Architect.