Cybersecurity Engineer

The Cybersecurity Engineer will work closely with the Information Security Officer to design, implement, and manage cybersecurity solutions across the enterprise. 

This position plays a vital role in ensuring system integrity, securing infrastructure, and maintaining compliance with regulatory frameworks. 

The engineer will manage and monitor tools such as Azure NSG, WAF, firewalls, VPNs, and identity platforms, while also leading various cybersecurity projects and initiatives to strengthen the organization's security posture.

Key Responsibilities

• Identify and mitigate risks to data and system security; manage the vulnerability and patch management program.
• Ensure ongoing compliance with standards such as PCI, NYDFS, and NIST.
• Collaborate with the Information Security Officer on developing security architecture and threat protection strategies.
• Lead end-to-end execution of cybersecurity projects and initiatives.
• Monitor and manage internal and outsourced IPS/IDS services.
• Maintain a robust information security program with current policies, controls, and procedures.
• Implement multi-layered defense strategies to protect against malware and other threats.
• Apply a risk-based approach to securing infrastructure, applications, and databases.
• Conduct vulnerability assessments, third-party scans, penetration testing, and related analysis.
• Manage and maintain Identity and Access Management platforms including OKTA and Azure AD.
• Administer tools like Illumio and Zscaler to enforce micro-segmentation and zero trust principles.
• Conduct employee phishing simulation training.
• Investigate and resolve security incidents escalated by Level 1 support.
• Handle complex proxy issues requiring vendor escalation.
• Maintain documentation and continuously improve network, infrastructure, and audit standards.
• Oversee antivirus, encryption, access controls, and authentication technologies.
• Supervise offshore support resources and vendors for email and security operations.

Required Qualifications

• Bachelor’s degree in Computer Science or a related discipline.
• 5–7 years of hands-on experience in technical security roles.
• 3+ years of experience with SIEM tools including tuning and reporting.
• 5–7 years of experience managing enterprise authentication, access controls, and directory integration.
• Proficiency with Identity Access Management, Web Access Management, and Single Sign-On systems.
• Solid knowledge of security frameworks and regulatory standards.
• Strong background in cloud security environments.
• Technical proficiency in authentication, identity management, encryption, data loss prevention, and security validation.
• Deep understanding of network protocols (TCP/IP, HTTP, TLS/SSL) and OSI layers.
• Experience with enterprise security tools, documentation, and vendor coordination.
• Excellent written and verbal communication skills for interacting with cross-functional teams and stakeholders.

Preferred Qualifications

• Experience negotiating contracts and coordinating vendor relationships related to security hardware/software.
• Strong initiative, innovation, and problem-solving abilities in cybersecurity domains.

Certifications

• CompTIA Security+ – Required
• Certified Information Systems Auditor (CISA) – Required
• Proficiency in Microsoft Office Suite and MS Project