Security Engineer

Security Engineer

Job Category: Security Engineering & Infrastructure

Role Summary

We are seeking a proactive Security Engineer to build, deploy, and maintain our organization's security infrastructure. In this role, you will move beyond legacy perimeter defenses to engineer a Zero Trust-ready environment. You will be responsible for configuring and optimizing our defensive stack, automating threat containment using AI-driven tools, and ensuring our infrastructure meets the rigorous demands of NIST CSF 2.0 governance.

Key Responsibilities

• Infrastructure Defense: Engineer and maintain Next-Generation Firewalls (NGFW) and Secure Access Service Edge (SASE) solutions to secure hybrid work forces
• Endpoint Security: Manage and tune Endpoint Detection and Response (EDR) and Extended Detection and Response (XDR) agents to ensure 100% coverage and efficacy
• Cloud Security: Implement Cloud Security Posture Management (CSPM) tools to detect misconfigurations in AWS/Azure/GCP environments
• Automation: Develop playbooks for Security Orchestration, Automation, and Response (SOAR) platforms to automate routine containment tasks
• AI Integration: Leverage AI-enhanced anomaly detection tools to identify subtle indicators of compromise (IoC) that bypass traditional rules

Requirements

Tech Categories: EDR/XDR, SASE/SSE, CSPM, SOAR, NGFW

Compliance (Q4 2025):
Knowledge of NIST Cybersecurity Framework (CSF) 2.0, specifically the "Protect" and "Detect" functions

Experience:

3-5 years in engineering or system administration with a security focus

NIST NICE Framework Mapping

Primary Work Role:
Systems Security Analyst
Work Role
-ANA-001

Selected TKS Statements:

• T0011:
  Develop and implement information assurance/security standards and procedures
• T0128:
  Implement specific cybersecurity countermeasures for systems and/or applications
• T0262:
  Employ approved defense-in-depth principles and practices
• K0005:
  Knowledge of cyber threats and vulnerabilities