Description
About the job
The Cyber Security Engineer plays a vital role in our organization, focusing on research and reporting in various IT areas. This position involves conducting thorough risk assessments, leading incident response efforts, and collaborating closely with the VP of IT to refine and enforce security protocols. Ideal candidates are deeply involved in blue team operations, excel in dynamic, research-driven environments, and are committed to advancing cybersecurity defenses.
Responsibilities:
Conduct comprehensive risk assessments and propose mitigation strategies.
Lead incident response activities to maintain system integrity and security.
Contribute to organization-wide cybersecurity standards and awareness programs.
Advise stakeholders on best practices across multiple domains.
Configure and maintain security settings for systems and networks.
Manage and optimize various cybersecurity tools.
Requirements:
Extensive experience in blue team operations, incident response, and threat hunting.
Proficiency in SIEM, SOAR, XDR, and EDR solutions.
Expertise in malware prevention, analysis, and remediation.
Competency in KQL scripting for data analysis.
Understanding of authentication mechanisms and email security practices.
Familiarity with NIST CSF v2 guidelines.
Minimum five years of experience in cybersecurity with a focus on blue team operations.
Preferred, but not required:
Knowledge of networking protocols, web application penetration testing, and DevSecOps.
Relevant security certifications (OSCP, CEH, CISSP) are highly desirable.
Certifications in Microsoft Defender/Sentinel, Splunk, and Qradar.
Bachelor’s degree in information security.
.png)