ASRC Federal, a wholly owned subsidiary of Alaska’s largest Alaskan-owned and operated company, the Arctic Slope Regional Corporation (ASRC), is a leading pro
Senior Cyber Security Engineer
Location
United States
Posted
2 days ago
Salary
$135K - $170K / year
Seniority
Senior
Job Description
Senior Cyber Security Engineer
ASRC Federal
Role Description ASRC Federal is looking for an experienced Senior Cyber Security Analyst (Incident Response & Threat Operations) to join our team in a government contracting (GovCon) environment. This is a full-time remote position with occasional on-site support (Beltsville, MD or Reston, VA). The Senior Cyber Security Analyst is responsible for advanced incident response, threat detection, and Tier II/Tier III Security Operations Center (SOC) support within an enterprise environment. This role focuses on: - Investigating security events - Identifying malicious activity - Responding to cyber incidents - Improving detection capabilities across the organization The ideal candidate has strong hands-on experience in: - Intrusion detection - Threat hunting - Phishing investigations - Endpoint and network analysis - Operational cybersecurity support Key Responsibilities - Serve as a Tier II/Tier III escalation point for complex SOC investigations and cybersecurity incidents. - Investigate and respond to security alerts involving phishing, malicious URLs, malware activity, credential compromise, suspicious authentication activity, and endpoint threats. - Conduct proactive threat hunting activities using SIEM, EDR/XDR, firewall, DNS, email security, and network telemetry data. - Monitor security tools, logs, alerts, and reports to identify suspicious or malicious activity and coordinate appropriate response and remediation actions. - Identify, analyze, and mitigate cybersecurity threats, vulnerabilities, and system weaknesses to reduce organizational risk exposure. - Analyze security events and logs to identify indicators of compromise, attack patterns, and unauthorized activity. - Perform incident response activities including triage, containment, eradication, recovery, and root cause analysis for security incidents. - Support and enhance enterprise security monitoring and detection capabilities across SIEM, EDR/XDR, IDS/IPS, email security, and firewall platforms. - Develop and tune detection rules, alerting logic, and threat detection use cases to improve SOC effectiveness and reduce false positives. - Create scripts and automation solutions using PowerShell, Python, or similar tools to streamline investigations and response activities. - Collaborate with infrastructure, networking, cloud, and endpoint teams during investigations and remediation efforts. - Evaluate emerging threats, vulnerabilities, attack techniques, and security technologies to strengthen enterprise detection and response capabilities. - Provide technical guidance and support for escalated cybersecurity investigations and operational issues. - Document investigative findings, incident timelines, and remediation recommendations. - Participate in on-call incident response support as required. Qualifications - Must be a U.S. Citizen or Permanent Resident (Green Card Holder). - Bachelor’s degree in Cybersecurity, Computer Science, Information Technology, or equivalent professional experience. - 7+ years of hands-on experience in cybersecurity operations, incident response, or SOC environments. - Experience supporting Tier II/Tier III SOC investigations and incident handling. - Strong experience with: - SIEM platforms - EDR/XDR technologies - IDS/IPS systems - Email security platforms - Firewall and network security tools - Experience investigating phishing attacks, URL click alerts, malware infections, and account compromise activity. - Strong understanding of TCP/IP, DNS, HTTP/S, VPNs, Active Directory, and enterprise networking concepts. - Experience supporting Windows and Linux environments. - Proficiency in PowerShell, Python, or similar scripting languages. - Strong analytical, troubleshooting, and communication skills. - Ability to work independently in a fast-paced operational environment. Preferred Qualifications - Certifications such as CISSP, GCIH, GCIA, CEH, Security+, or equivalent (at least one is required). - Experience with MITRE ATT&CK, threat intelligence platforms, or SOAR technologies. - Familiarity with cloud security monitoring and enterprise-scale security operations. Benefits - Competitive pay and benefits packages - Health care, dental, vision, life insurance - 401(k) - Education assistance - Paid time off including PTO, holidays, and any other paid leave required by law Additional Information - Reports to: Cybersecurity Governance, Risk & Compliance Leadership - Travel: None - Clearance: Secret clearance preferred but not required; may be required based on project needs. EEO Statement ASRC Federal and its Subsidiaries are Equal Opportunity employers. All qualified applicants will receive consideration for employment without regard to race, gender, color, age, sexual orientation, gender identification, national origin, religion, marital status, ancestry, citizenship, disability, protected veteran status, or any other factor prohibited by applicable law.
Related Guides
Related Categories
Related Job Pages
More Security Engineer Jobs
Cloud Network Engineer
TEKsystemsWe're partners in transformation. We help clients activate ideas and solutions to take advantage of a new world of opportunity. We are a team of 80,000 strong, working with over 6,000 clients, including 80% of the Fortune 500, across North America, Europe and Asia.
Role Description We are hiring a DevOps Engineer to build and operationalize our Azure platform for a production React + Java + MySQL application. This role will own cloud infrastructure, CI/CD, release automation, networking, security integration, and disaster recovery preparation as we move from proof of concept into a maintainable in-house production environment. Responsibilities: - Design and implement Azure infrastructure for application hosting, data services, and supporting platform components. - Build and maintain infrastructure as code using Terraform. - Design and operate CI/CD pipelines for application and infrastructure delivery. - Implement blue/green or staged release patterns, including deployment slots where appropriate. - Partner with security/networking teams on firewall, routing, and Palo Alto integration. - Establish monitoring, alerting, logging, and operational dashboards. - Create and validate backup, restore, and disaster recovery procedures. - Document the maintenance playbook and support transition to internal ownership. - Support production cutover, troubleshooting, and post-deployment stabilization. What success looks like: - Azure environment is production-ready and reproducible. - Deployment process is automated and low-risk. - Operational documentation is complete and usable by internal staff. - Disaster recovery steps are tested and documented. - Internal handoff is smooth and sustainable. Qualifications - Strong hands-on experience with Azure. - Practical experience with Terraform. - Experience building CI/CD pipelines. - Solid understanding of networking and cloud security. - Experience with release engineering and production support. - Ability to document operational procedures clearly. Requirements - Experience with App Service deployment slots and blue/green releases. - Experience with Argo CD or GitOps concepts. - Experience working with Palo Alto or similar enterprise network controls. - Experience with backups, restore testing, and disaster recovery planning. Benefits - Medical, dental & vision - Critical Illness, Accident, and Hospital - 401(k) Retirement Plan – Pre-tax and Roth post-tax contributions available - Life Insurance (Voluntary Life & AD&D for the employee and dependents) - Short and long-term disability - Health Spending Account (HSA) - Transportation benefits - Employee Assistance Program - Time Off/Leave (PTO, Vacation or Sick Leave) Company Description This is a Contract position based out of Menasha, WI. The pay range for this position is $60.00 - $72.00/hr. This position is anticipated to close on Jul 13, 2026.
Cybersecurity or IT Security Engineer (Associate)
Echelon Risk + CyberWe are committed to creating an inclusive environment for our team with unquestioned integrity. One of our core values is "People with Personality," and we want to allow you the space to bring your full self to work. We value a diverse workforce and a culture of inclusivity and belonging. All employment decisions shall be made without regard to age, race, creed, color, religion, gender, national origin, ancestry, disability status, veteran status, sexual orientation, gender identity or expression, genetic information, marital status, citizenship status, or any other basis as protected by federal, state, or local law. Echelon Risk + Cyber is an Equal Opportunity Employer.
Role Description At Echelon Risk + Cyber, we believe in defending basic human rights to security and privacy. We are seeking motivated and client-focused cybersecurity professionals to join our CrowdStrike Training Program in Mexico. This opportunity is designed for early-career professionals with approximately 2 years of relevant cybersecurity or IT security experience who are looking to grow their expertise within the CrowdStrike Falcon ecosystem. This is more than a support role - it is an opportunity to join a focused training cohort designed to develop the next generation of CrowdStrike Falcon experts. Participants will gain hands-on experience with one of the world's most advanced AI-native cybersecurity platforms, building deep technical expertise in: - Endpoint security - Threat detection - Response - Technologies organizations rely on to stop modern breaches Through structured enablement, mentorship, and practical exposure from an experienced CrowdStrike partner team, candidates will be prepared to deliver real-world security operations and grow into trusted Falcon platform specialists. The ideal candidate is passionate about cybersecurity, eager to learn, comfortable interacting with clients, and motivated to develop consulting and communication skills - all while building a career path around one of the most recognized and innovative platforms in the industry. One of our core values is Turning Pro. To us, being a true professional means committing to continuous learning, growth, and steady improvement. We believe professionals do not wait for inspiration or perfect conditions - they take action, embrace challenges, and develop through experience. We encourage our team members to roll up their sleeves, expand their skills, and continuously evolve both technically and professionally. Joining our team means becoming part of a culture that values curiosity, accountability, and a mindset of ongoing development. Qualifications - 2 years of relevant experience in cybersecurity, security operations, systems administration, technical consulting, or related IT security roles. - Familiarity with the CrowdStrike Falcon platform and core concepts related to: - Endpoint Detection and Response (EDR) - Threat detection and response - Endpoint security - Experience working with security technologies such as: - EDR/XDR platforms - SIEM tools - Identity and access solutions - Endpoint security technologies - Strong client-facing and consulting mindset with the ability to interact professionally with customers. - Professional working proficiency in English (written and verbal) is required. - Strong analytical and problem-solving skills. - Ability to learn quickly and adapt in fast-paced environments. - Ability to manage multiple priorities and work effectively in a team environment. - Bachelor's degree in Computer Science, Information Security, Information Technology, or related field preferred. - Applicants must have authorization to work in Mexico. - Only resumes submitted in English will be considered. Requirements - Hands-on exposure to CrowdStrike Falcon administration or implementation activities. - Exposure to Microsoft 365 security technologies. - Exposure to cloud platforms such as Azure or AWS. - Understanding of cybersecurity frameworks and best practices such as: - NIST - CIS - MITRE ATT&CK - Previous experience in consulting, managed security services (MSSP), or customer-facing technical roles. - CrowdStrike certifications are a plus: - CrowdStrike Certified Falcon Administrator (CCFA) Benefits - Access to private medical insurance through MetLife. - Life insurance policy via MetLife. - 30-day Christmas bonus and a monthly technology stipend. - Contribution of 8% of the employee's salary to a savings fund. - Flexible vacation policy that allows you to manage your schedule and rest and recharge when you need to. - Family-friendly benefits, extended parental leave for when you need to spend critical time with new family members, and employer-paid short-term and long-term disability. - Support for individual development through certifications, continued learning, conferences, and more.
Cybersecurity Assessment and Authorization Subject Matter Expert – SME
Beshenich Muir & AssociatesBMA is a SDVOSB dedicated to performance excellence leveraging people, processes, technology, and the ideas that grow.
• Serves as a Cybersecurity Subject Matter Expert (SME) for Assessment and Authorization (A&A) activities supporting DoD information systems • Performs cybersecurity activities required to authorize information systems in accordance with the Risk Management Framework (RMF) • Provides technical expertise for information systems undergoing the authorization process • Applies National Institute of Standards and Technology (NIST) Special Publication 800-53 security controls during the assessment and authorization process • Evaluates cybersecurity requirements across complex enterprise IT environments, including enclaves, applications, and outsourced IT services • Identifies security control deficiencies and determines the appropriate severity of vulnerabilities • Assesses the impact of identified vulnerabilities on an information system's current or future authorization • Develops recommendations to address cybersecurity risks and improve system compliance • Briefs senior management on the status, progress, and results of RMF and authorization activities • Ensures compliance with applicable DoD cybersecurity policies, procedures, and security standards
Senior Offensive Security Engineer – Red Team
Salesforce👋 We're Salesforce, the customer company. CRM + Data + AI + Trust.
• Execute hands-on red team operations simulating real-world threat actors across applications, platforms, cloud infrastructure, and enterprise environments. • Identify, exploit, and chain high-impact vulnerabilities and weaknesses to achieve defined attacker goals. • Perform advanced offensive activities, including: Manual exploitation and attack chaining, Abuse of identity, authorization, and trust relationships, Bypassing security controls and detections. • Contribute to the design and execution of end-to-end attack campaigns under the guidance of the Red Team Director. • Develop a deep understanding of products and systems through the lens of adversary abuse and exploitation. • Collaborate closely with: Detection & Response teams to test alerts, visibility, and response workflows, Incident Response teams during simulated incidents, Engineering and platform teams to explain exploitation paths and root causes. • Produce clear, technically detailed findings that translate into actionable remediation guidance. • Contribute to tooling, automation, and tradecraft improvements, including collaboration with the AI-Automation team. • Share knowledge and mentor junior red team engineers, helping raise overall tradecraft quality.

