Cybersecurity Engineer

Job Description

We are seeking a Cybersecurity Engineer to strengthen our security posture, ensuring compliance with industry frameworks such as FedRAMP, ISO 27001, SOC 2, and HIPAA. This role will focus on technical security controls, threat monitoring, incident response, and cloud security while collaborating with cross-functional teams to enhance cloud security and governance and will report directly to the Compliance Officer.

Responsibilities:

• Implement and manage IAM policies (AWS IAM, Okta, Azure AD), enforce MFA, and ensure proper RBAC; conduct periodic User Access Reviews and implement access logging per compliance requirements.
• Configure, deploy, and monitor security solutions (EDR, XDR, SIEM); analyze security logs, lead incident investigations, and ensure audit logging and retention meet regulatory standards. (Experience implementing a SIEM is a plus.)
• Develop and maintain incident response playbooks, ensuring compliance with framework requirements (FedRAMP, ISO 27001, SOC 2, HIPAA).
• Implement Continuous Monitoring (ConMon) strategies to detect security anomalies, unauthorized access, and policy violations.
• Strengthen container security by implementing vulnerability scanning, runtime protection, and least-privilege access controls in cloud workloads.
• Perform security assessments, remediate vulnerabilities, and collaborate with DevOps teams to remediate security gaps. Work with third-party penetration testers to validate security controls and address findings.
• Strengthen security configurations to ensure encryption compliance (FIPS 140-2/140-3), and configure and enforce cloud security best practices in AWS, Azure, ensuring proper network segmentation and data protection.
• Work closely with DevOps and engineering teams to enforce secure-by-design principles and integrate security best practices into CI/CD pipelines.
• Deploy and manage Endpoint Detection & Response (EDR) / Extended Detection & Response (XDR) solutions, analyze threats, and coordinate response efforts with third-party security partners.
• Integrate and analyze threat intelligence feeds (e.g., VirusTotal, CrowdStrike) to detect and mitigate advanced threats.
• Implement secure communication protocols, monitor data transmission, and enforce DLP (Data Loss Prevention) policies to prevent data exfiltration.
• Provide technical evidence for audits, track compliance with security frameworks, and contribute to security policy development and enforcement.

Qualifications:

• Proven technical skills with the ability to work across cross-functional teams, foster collaboration, and maintain a results-driven, positive culture while ensuring strong communication at all levels.
• Strategic thinker with a track record of developing and executing cybersecurity strategies, driving improvements in security posture, and aligning efforts with business goals.
• Highly organized with exceptional analytical and problem-solving skills, and capable of making informed, timely decisions, especially during incidents or critical situations.
• 5+ years of experience in cybersecurity, cloud security, or compliance-driven security roles, with hands-on experience managing and improving security processes in fast-paced environments.
• Hands-on experience with SIEM (e.g., Splunk, ELK stack), EDR/XDR (e.g., CrowdStrike, SentinelOne), IAM (e.g., Okta, Azure AD), and security automation tools (e.g., Ansible, Chef, Terraform).
• Proficiency in cloud security (AWS, Azure) and infrastructure hardening (network segmentation). GCP experience is a plus.
• Strong understanding of regulatory frameworks and security best practices (e.g., NIST, FedRAMP, ISO 27001), and their practical implementation in cloud and on-prem environments.
• In-depth knowledge of network security, encryption standards (e.g., FIPS 140-2/140-3), secure coding practices, and incident response methodologies.
• Proven incident response and forensic investigation experience, with the ability to manage critical security incidents and lead cross-functional teams during high-pressure situations.
• Relevant certifications such as CISSP, CEH, Azure – Specialty, or similar cloud security certifications are a plus.

Compensation: USD 66,000 -84,000