Role Description We are seeking a Cybersecurity Engineer with 3-5 years of hands-on experience to join our growing cybersecurity team. In this role, you will be responsible for the day-to-day engineering, administration, and optimization of our security tools and infrastructure. You will work closely with the Cybersecurity Manager and the broader IT team to implement, monitor, and improve the security controls that protect our Microsoft Azure / M365 cloud environment, endpoints, and data. This is a hands-on technical role with meaningful exposure to compliance frameworks, incident response, and vendor management - making it an excellent opportunity for someone who wants to grow their career across the full breadth of cybersecurity in a regulated financial services environment. Qualifications - 5 - 7 years of hands-on experience in cybersecurity engineering, security operations, or a closely related technical security role. - Strong working knowledge of Microsoft Azure and M365 security capabilities, including Entra ID (Azure AD), Conditional Access, Defender suite, and Purview. - Experience deploying, managing, and tuning EDR platforms (e.g., SentinelOne, CrowdStrike, Microsoft Defender for Endpoint). - Experience with SIEM platforms - log ingestion, correlation rule development, alert tuning, and dashboard creation (e.g., FortiSIEM, Sentinel, Splunk, or comparable). - Demonstrated experience managing enterprise patching programs across Windows endpoints and servers, with familiarity in patch management tooling (e.g., WSUS, Intune, SCCM/MECM, or third-party solutions). - Hands-on experience with vulnerability scanning platforms (e.g., Tenable, Qualys, Rapid7) including scan configuration, result analysis, and remediation workflow management. - Ability to assess and prioritize vulnerabilities using contextual risk factors beyond raw CVSS scores, including asset exposure, exploit availability, and business impact. - Solid understanding of identity and access management concepts including MFA, SSO, RBAC, and privileged access management. - Familiarity with endpoint management tools such as Microsoft Intune and application control technologies like AppLocker. - Experience with vulnerability management tools and processes (e.g., Tenable, Qualys, Rapid7). - Working knowledge of common security frameworks and standards (NIST CSF, CIS Controls, MITRE ATT&CK). - Competency in scripting for automation and reporting (PowerShell preferred; Python a plus). - Strong analytical and problem-solving skills with the ability to investigate complex security events across multiple data sources. - Excellent written and verbal communication skills - able to clearly explain technical security topics to both technical and non-technical audiences. - Bachelor's degree in Cybersecurity, Computer Science, Information Technology, or a related field - or equivalent practical experience. Requirements - Participate in incident detection, investigation, containment, and remediation activities. - Perform log analysis and forensic investigation across endpoint, network, identity, and cloud environments. - Document incidents thoroughly, including root cause analysis, timeline reconstruction, and lessons learned. - Coordinate with the managed SOC provider on alert escalation, tuning requests, and incident handoff procedures. - Contribute to the development and testing of incident response playbooks and procedures. - Support the ongoing maintenance of SOC 2 Type 2 compliance, including evidence collection, control testing, and audit coordination through our compliance automation platform (Drata). - Assist with the development, review, and enforcement of cybersecurity policies, standards, and procedures. - Contribute to vendor security assessments and due diligence reviews as part of our vendor risk management program. - Support Business Continuity Plan (BCP) documentation, tabletop exercises, and testing activities. - Help prepare materials and reporting for the Cyber Risk Steering Committee (CRSC) and other governance bodies. - Support the development and delivery of security awareness training and phishing simulation campaigns. - Serve as a knowledgeable security resource for IT colleagues and the broader organization, translating technical concepts into clear, actionable guidance. - Collaborate with cross-functional teams including IT infrastructure, compliance, and risk management to integrate security into business processes. Benefits - Health, dental, and vision insurance – day 1! - 401(k) savings and investment plan options with 4% match - Flexible PTO policy - Parental Leave - Financial assistance for advanced education and professional designations - Opportunity to give back time to local communities - Commuter benefits Company Description Cerity Partners is committed to providing an environment where all individuals can be their authentic selves. We are an Equal Opportunity Employer who respects each individual and supports the diverse cultures, perspectives, and experiences of our colleagues. We are dedicated to building an inclusive and diverse workforce and will not discriminate based on race, religion, national origin, sex, sexual orientation, age, veteran status, disability status, or any other applicable characteristics protected by law. Cerity Partners is committed to working with and providing accommodations to applicants with disabilities or special needs. For those needing accommodations, please reach out to careers@ceritypartners.com. Applicants must be authorized to work for any employer in the U.S.