Cybersecurity Engineer

Job Summary

We are seeking a Cybersecurity Engineer to design, implement, and maintain security controls that protect the company’s systems, applications, and data. The successful candidate will work closely with Engineering, IT, Product, and Security teams to secure cloud-native platforms, support secure development practices, detect and respond to threats, and continuously improve the organization’s security posture. This role requires practical hands-on technical skills, a collaborative mindset, and the ability to translate security requirements into engineering solutions.

Key Responsibilities

Security Engineering & Controls

• Design, deploy, and maintain security controls and tooling across cloud (AWS, Azure, GCP) and on-premise environments, including network security, host hardening, endpoint protection, and application security controls.

• Implement and manage identity and access management solutions, least-privilege models, and secure authentication/authorization mechanisms.

• Integrate security into CI/CD pipelines and automate security testing (SAST, DAST, dependency scanning) and infrastructure-as-code (IaC) security checks.

Threat Detection & Incident Response

• Develop and tune detection rules, alerts, and playbooks for Security Operations using SIEM, EDR, and cloud-native monitoring tools.

• Participate in incident response activities, perform root cause analysis, and implement remediation and prevention measures.

• Collaborate with SOC, IT, and engineering teams to ensure timely containment, eradication, and recovery from security incidents.

Secure Architecture & Advisory

• Advise product and engineering teams on secure design principles, threat modeling, and security requirements for new features and integrations.

• Review architecture and code for security risks, provide actionable recommendations, and help implement secure design patterns.

• Participate in design and architecture reviews to ensure security and compliance requirements are addressed early in the development lifecycle.

Vulnerability Management & Continuous Improvement

• Manage vulnerability scanning, prioritize remediation activities, and coordinate patching and configuration changes with engineering and IT teams.

• Drive continuous improvement through automation of security controls, monitoring, reporting, and incident lessons learned.

• Evaluate and recommend security tools and services to strengthen detection, prevention, and response capabilities.

Documentation, Training & Collaboration

• Develop and maintain security runbooks, architecture diagrams, control documentation, and operational playbooks.

• Provide security awareness, developer-focused training, and practical guidance to engineering and operations teams.

• Work cross-functionally to ensure security requirements are integrated into project plans, vendor selections, and deployment workflows.

Required Qualifications - Skills & Experience

• Bachelor’s degree in Computer Science, Information Security, Cybersecurity, or a related field, or equivalent practical experience.

• 3+ years of hands-on experience in cybersecurity engineering, cloud security, DevSecOps, or related roles.

• Practical experience with cloud platforms (AWS, Azure, GCP), containerization (Docker, Kubernetes), and infrastructure-as-code (Terraform, CloudFormation).

• Strong knowledge of secure software development practices, application security testing (SAST/DAST), and vulnerability management processes.

• Experience with security tooling such as SIEM, EDR, vulnerability scanners, secrets management, and IAM solutions.

• Solid scripting or programming skills (e.g., Python, Go, Bash) to automate tasks and integrate security tooling.

• Excellent written and verbal communication skills with the ability to document technical controls and communicate with technical and non-technical stakeholders.

Preferred Qualifications

• Relevant certifications such as CISSP, OSCP, GCP/AWS/Azure security certifications, or equivalent practical credentials preferred.

• Experience working in cloud-native, DevSecOps environments and integrating security into CI/CD pipelines.

• Prior involvement in incident response, threat hunting, or security operations is advantageous.

• Familiarity with compliance frameworks (SOC 2, ISO 27001, NIST) and experience supporting security controls for audits is a plus.

Work Environment & Compensation

• Full-time role with a hybrid onsite/remote work model; occasional travel may be required for stakeholder meetings, audit support, or incident response coordination.

• Competitive salary commensurate with experience and a comprehensive benefits package, including health insurance, retirement plan options, and paid time off.

• Opportunities for professional development, certification support, and career progression within Security and Engineering functions.

• Inclusive and respectful workplace culture that values diversity, equity, and work-life balance.