Cyber Security Engineer

About Eightpoint

Eightpoint is an internet technology company specializing in the agile development of products and content that address real-world interests, captivating users and driving significant growth for partners. With offices in the United States and Cayman Islands, Eightpoint collaborates with partners globally on the next generation of user-centric offerings. Our growing ecosystem includes innovative products like Weather Now, a sleek app that delivers real-time forecasts with clarity and ranks among the top three most-used weather apps in the U.S.; Check Heart Rate Now, a quick and easy wellness monitor; and Wave Browser, a powerful and secure way to search the web. Every product we launch is designed to engage users, enhance daily life, and deliver real-world value. Backed by data and driven by a relentless commitment to quality, Eightpoint moves fast, thinks big, and builds digital experiences that people love.

About the Role

Eightpoint is seeking a motivated and detail-oriented Cybersecurity Engineer I to join our IT & Cybersecurity team. This role is primarily focused on strengthening the organization’s security posture through compliance program support, security monitoring, vulnerability management, and incident response. The successful candidate will also contribute to DevOps activities including CI/CD pipeline maintenance and cloud infrastructure support as a secondary function. This is an ideal position for someone looking to build a career in cybersecurity within a fast-paced, multi-entity environment.

Key Responsibilities

Cybersecurity Monitoring, Vulnerability Management, and Incident Response (~45%):

• Deploy, configure, and maintain security monitoring tools (SIEM, EDR, vulnerability scanners) across cloud and on-premises environments.
• Perform regular vulnerability assessments and coordinate remediation efforts with infrastructure and development teams.
• Investigate and respond to security incidents, conduct root cause analysis, and document findings and remediation actions.
• Manage security patching cadence and track remediation SLAs across systems and applications.

DevOps and Infrastructure Support (~35%):

• Assist in maintaining CI/CD pipelines and integrating security scanning into build and deployment workflows.
• Support cloud infrastructure management on AWS, including provisioning, configuration, and cost optimization.
• Troubleshoot pipeline and infrastructure issues as needed to support development and operations teams.

Compliance and Policy Support (~20%):

• Support compliance initiatives and audits (e.g., CIS Benchmarks, NIST CSF/800-53) by gathering evidence, maintaining documentation, and tracking control implementations.
• Assist in developing, reviewing, and maintaining security policies, standards, and procedures.
• Conduct security awareness training and phishing simulations for end users.

Collaboration and Continuous Improvement:

• Work closely with cross-functional teams to promote a security-first culture and integrate security practices into development and operations workflows.
• Participate in knowledge-sharing sessions, document processes, and provide training to team members as needed.
• Identify opportunities to improve security controls, automate compliance workflows, and enhance operational efficiency.

Who You Are

• Bachelor’s degree in Computer Science, Information Technology, Cybersecurity, or a related field and 2 years of relevant experience, or a Master’s degree in CS, IT, or Cybersecurity.
• Foundational knowledge of cybersecurity principles, including vulnerability management, incident response, and security monitoring tools (SIEM, EDR).
• Understanding of compliance and security frameworks (e.g., CIS Benchmarks, NIST CSF/800-53) and experience supporting audit or evidence-gathering processes.
• Basic understanding of AWS services (e.g., EC2, S3, RDS, IAM) and familiarity with CI/CD tools (e.g., GitHub Actions, Jenkins).
• Experience with scripting languages (e.g., Python, Bash) for automation tasks.
• Strong problem-solving skills and attention to detail.

Preferred

• Certifications such as CompTIA Security+, CySA+, AWS Certified Security - Specialty, or equivalent.
• Familiarity with containerization and orchestration tools (e.g., Docker, Kubernetes).
• Experience with security tools such as SIEM platforms, vulnerability scanners, WAFs, or endpoint protection solutions.
• Understanding of Agile methodologies and experience working in cross-functional security and engineering teams.
• Experience with using Jira Project Management Suite