Senior Cybersecurity Engineer

• Design, integrate, and implement cybersecurity architectures for systems and networks with multilevel security requirements.
• Lead the development and maturity of the organization’s Application Security Program, including secure code review, penetration testing, and remediation guidance.
• Build and optimize the Vulnerability Management (VM) Program, leveraging Rapid7 for risk-based prioritization (aligned with NIST IR 8286) and developing strategies for reducing exposure.
• Implement and maintain SIEM / Centralized Logging per NIST SP 800-92r1 guidelines, including log data identification, ingestion, normalization, and rule tuning.
• Advance the Information Security Continuous Monitoring (ISCM) program, ensuring consistent tracking and reporting of enterprise security posture.
• Lead cloud security initiatives, including designing and implementing secure architectures in Azure and AWS environments, along with developing policies, standards, and automation for cloud-native security services.
• Identify and integrate APIs for workflow automation to streamline vulnerability management, security operations, and compliance reporting.
• Provide subject matter expertise in incident response, including coordination of investigation, containment, eradication, and recovery activities for high-priority security events.
• Partner with IT and business leaders to align cybersecurity strategies with organizational objectives and regulatory requirements.
• Support and manage specialized projects such as DNSSEC implementation, advanced endpoint security, and email security hardening.
• Conduct regular risk assessments, maintain the enterprise security roadmap, and ensure compliance with NIST, ISO 27001, CIS Controls, and other frameworks.

• Bachelor’s degree in Computer Science, Information Security, or a related field.
• 8+ years of progressive experience in information security engineering and operations.
• Demonstrated expertise in cloud security (Azure, AWS) and enterprise security architecture.
• Strong knowledge of vulnerability management, SIEM, and application security programs.
• Hands-on experience with tools such as Rapid7, SIEM solutions, EDR, IDS/IPS, and vulnerability scanners.
• Proficiency in scripting and automation (Python, PowerShell, or Bash).
• Solid understanding of networking protocols, identity management, and email/DNS security.
• Familiarity with security frameworks and standards (NIST, ISO 27001, CIS Controls).
• Excellent analytical, problem-solving, and communication skills.

• Prior background in network engineering or security operations.
• Experience with CrowdStrike or other EDR platforms.
• Knowledge of Microsoft Entra ID (formerly Azure AD), including conditional access and identity security.
• Direct experience with DNSSEC and email security projects.
• Professional certifications such as CISSP, CISM, AWS Certified Security - Specialty, or Microsoft Azure Security Engineer Associate.

• Health Care Plan (Medical, Dental & Vision)
• Retirement Plan (401k, IRA)
• Paid Time Off (Vacation, Sick & Public Holidays)

Symmetrio