Cyber Security Specialist

Location: Remote but must be local to NYC, Washington DC, Los Angeles or Kansas City.

Salary: 145k-185k DOE (+bonus)

This is a hands-on technical role responsible for managing, implementing, maintaining, and troubleshooting enterprise security technologies. The position includes daily monitoring and investigation of security incidents, performing security assessments and audits, and supporting the overall security posture of a highly regulated environment. Candidates with experience in financial services, government, or other regulated industries are strongly preferred.

This is a remote position with standard working hours of 6:00 AM – 2:00 PM Eastern Time, Monday–Friday
, and participation in an on-call rotation
.

Additional requirements include:

• Ability to travel as needed
• Availability outside normal business hours when required
• Ability to respond to emergency, after-hours security incidents

• Manage and support security technologies including firewalls, antivirus, web filtering, DLP, IDS/IPS, NAC, DDoS protection, remote access solutions, application whitelisting, and endpoint detection and response platforms
• Administer and monitor Security Information and Event Management (SIEM) systems
• Investigate and manage security events and incidents through resolution
• Manage privileged access management solutions
• Conduct technical security audits and risk assessments
• Review and audit firewall, network, and system configuration changes
• Perform vulnerability scanning across networks, servers, systems, and applications
• Produce weekly security reports and track information security metrics
• Collaborate with consultants and third-party vendors providing security services
• Participate in reviews of information security architecture for projects and initiatives
• Perform malware analysis and research emerging attack techniques
• Conduct proactive threat hunting activities
• Research, test, and evaluate new security technologies
• Maintain strong working relationships with third-party security providers (e.g., MSSP, SOC partners)
• Develop and maintain security processes to meet client and regulatory requirements
• Participate as a member of the Cyber Incident Response team

• 5–7+ years of experience in information security
• Hands-on experience with incident response, investigations, and forensic analysis
• Strong knowledge of security best practices for systems, networks, and telecommunications
• Analytical problem-solving skills with the ability to think beyond traditional security approaches
• Ability to manage multiple priorities in a fast-paced environment
• Customer-focused mindset with the ability to balance security and business needs
• Strong written and verbal communication skills
• Excellent documentation skills, including SOPs, guidelines, and architecture diagrams
• Ability to work independently with minimal supervision
• Demonstrated passion for cybersecurity and continuous improvement

• Palo Alto firewalls (advanced features and configuration)
• Privileged access management tools (Cyber Ark, Beyond Trust, or similar)
• SIEM platforms (Microsoft Sentinel or similar)
• IDS/IPS solutions (Vectra AI, Snort, Suricata, Alien Vault, or similar)
• Endpoint security tools (Carbon Black Application Control, Microsoft Defender, Defender for Endpoint)
• Vulnerability scanning and penetration testing tools (Nessus, Tenable, Rapid7 Nexpose, Cobalt Strike, or similar)
• Open-source security tools (Kali Linux, Metasploit, Nmap, Power Shell Empire, Kerberoast, Trusted Sec SET)
• Network traffic analysis and vulnerability management platforms (Tenable.io, Rapid7, Qualys, or similar)
• Windows operating systems, Active Directory, DNS, DHCP, and Microsoft SQL
• Windows server and workstation security
• Scripting languages (Power Shell, Python, VB, or similar)
• Microsoft 365 E5 security capabilities and Microsoft Azure

• Bachelor’s degree in Computer Science, Information Systems, or equivalent professional experience
• Required certifications:
  GIAC GSEC, PCNSE, OSCP