• Review and understand common frameworks such as: NIST CSF, NIST 800-53 series, HIPAA, CJIS, ISO 27001, and NIST 800-171 • Assist in applying frameworks to a real organization or system. • Capture documentation for meeting the requirements of a framework or certification • Assist with preparing an organization to align with 1 or more common cybersecurity frameworks. • Create slide shows to communicate information to customers in written format. • Help generate reports on customer's alignment with common frameworks. • Depending on the individual's skill set, there may be some system administration and programming tasks available.

• Own strategy and roadmap across Admin & IAM, Enterprise Security, and Customer Insights. • Lead discovery and definition on complex, high-impact initiatives. • Lead, coach, and develop a team of PMs across multiple domains. • Represent the voice of admins, IT, and security in product decisions. • Actively hands-on in shaping strategy, discovery, and execution across the portfolio.

• Perform first-level alert triage and response for security monitoring tools (SIEM, EDR, email security, etc.) • Investigate and document security alerts, escalating issues when appropriate • Support the organization’s phishing awareness and response program, including reviewing reported emails and assisting with user education efforts • Assist with general security operations tasks, including log review, ticket management, and tool optimization • Create and update security documentation, playbooks, and standard operating procedures (SOPs) • Participate in light threat hunting activities, analyzing logs and telemetry for suspicious activity • Assist in writing or tuning detection rules under guidance from senior security team members • Contribute to improving operational workflows and automation where possible

Role Description We are currently interviewing for a Senior Cybersecurity Engineer. This role sits within a centralized technology function supporting a complex, multi-site environment with high standards around data protection, operational continuity, and regulatory alignment. This position blends hands-on security operations with longer-term engineering and risk mitigation initiatives. The Senior Cybersecurity Engineer will play a key role in monitoring, responding to, and reducing security risk across infrastructure, applications, and cloud platforms while contributing to broader security architecture efforts. Key Responsibilities - Security Operations - Monitor and analyze security events using enterprise tools such as SIEM, EDR, and related platforms. - Investigate alerts and support incident response activities, including documentation and remediation tracking. - Execute and maintain a structured vulnerability management process to reduce exposure across production systems. - Administer and optimize core security technologies including endpoint protection, email security, application controls, threat intelligence platforms, and security-focused automation tools. - Track, report, and help remediate security findings and risk metrics. - Support third-party risk reviews and internal compliance initiatives. - Contribute to security awareness and policy adherence efforts. - Participate in a rotating on-call schedule for security support. - Security Engineering and Risk Management - Evaluate new technologies, applications, and SaaS platforms for security impact and provide practical mitigation guidance. - Participate in formal change management processes and provide security review input. - Research emerging threats and industry trends and recommend improvements to strengthen the overall security posture. - Assist in developing and refining security policies, standards, and technical controls. - Support access management, data protection strategies, and infrastructure security controls across on-premises and cloud environments. Qualifications - Four-year degree preferred; equivalent experience will be considered. - Minimum of three years of experience in information security or a related IT role with significant security responsibilities. Requirements - Experience supporting Windows and Linux environments, including identity and directory services. - Strong understanding of networking fundamentals such as TCP/IP, DNS, DHCP, HTTP/HTTPS, and routing concepts. - Hands-on experience with authentication protocols, cryptography, application security, endpoint security, and cloud security. - Experience working with SIEM, EDR, vulnerability management platforms, and related enterprise security tooling. - Comfort using automation and artificial intelligence tools to improve security workflows. - Ability to communicate complex technical information clearly to both technical and non-technical audiences. - Strong written documentation and reporting skills. - Sound judgment, discretion, and professionalism in handling sensitive information. - Strong organizational skills with the ability to manage multiple initiatives simultaneously. - Self-directed, dependable, and comfortable working in both collaborative and remote environments. Additional Expectations - Periodic travel as required. - Flexibility to work additional hours during security events or critical initiatives. Compensation The anticipated base salary range for this position is $130,000 to $159,000. Actual compensation will depend on experience, education, certifications, geographic location, and overall alignment with the scope of the role.