Cyber Engineer

This role requires close collaboration across teams to strengthen security in multiple areas, including endpoint management, cloud platforms, DevOps pipelines, application architecture, and human/process elements. The ideal candidate is capable of connecting security tools and processes to business risk, and of influencing others to take action toward improvement.

Key Responsibilities:

• 
  

  Design and execute risk-reduction strategies using data-driven decision-making

  
  


• 
  

  Establish comprehensive security plans covering infrastructure, cloud, applications, devices, and third-party platforms

  
  


• 
  

  Collaborate with cross-functional teams to introduce secure-by-design practices early in the development lifecycle

  
  


• 
  

  Refine and implement security-related processes to ensure ongoing effectiveness beyond just technical controls

  
  


• 
  

  Facilitate remediation efforts by working directly with impacted teams

  
  


• 
  

  Coordinate response actions for critical security incidents and assist in triage with operational teams

  
  


• 
  

  Perform audits and reviews of systems and software to identify security gaps and corrective actions

  
  


• 
  

  Develop and maintain policies, procedures, and technical controls for IT systems and services

  
  


• 
  

  Promote and support the adoption of secure practices throughout the organization

  
  


• 
  

  Stay abreast of the latest threats, trends, and industry techniques and communicate relevant insights

  
  


• 
  

  Deliver training and awareness content to improve organizational security knowledge

  
  


• 
  

  Ensure alignment with relevant compliance obligations and regulatory frameworks

  
  


• 
  

  Partner with compliance personnel to maintain visibility and ensure proper governance

  
  


• 
  

  Incorporate security requirements into design and architecture from the outset of projects

  
  

Qualifications:

• 
  

  Degree in Computer Science, IT, Cybersecurity, or related field (or equivalent professional experience)

  
  


• 
  

  5+ years of hands-on security experience spanning cloud, SaaS, software, and infrastructure

  
  


• 
  

  Background in systems integration and security controls within complex environments

  
  


• 
  

  Proficiency with cloud environments and third-party platforms from a security perspective

  
  


• 
  

  Familiarity with secure software development and DevSecOps methodologies

  
  


• 
  

  Ability to evaluate security risks and lead mitigation strategies across different technical layers

  
  


• 
  

  Knowledge of common standards and frameworks (e.g., NIST, ISO 27001, CIS) and compliance practices

  
  


• 
  

  Strong analytical and troubleshooting skills in high-pressure or ambiguous situations

  
  


• 
  

  Excellent communication abilities, especially in team-based or cross-departmental contexts

  
  


• 
  

  Authorized to work in the U.S. without sponsorship

  
  


• 
  

  Security certifications such as CISSP, CISM, CCSP, or cloud-specific credentials are a strong plus

  
  

Determining compensation for this role (and others) at Vaco/Highspring depends upon a wide array of factors including but not limited to the individual's skill sets, experience and training, licensure and certifications, office location and other geographic considerations, as well as other business and organizational needs. With that said, as required by local law in geographies that require salary range disclosure, Vaco/Highspring notes the salary range for the role is noted in this job posting. The individual may also be eligible for discretionary bonuses, and can participate in medical, dental, and vision benefits as well as the company's 401(k) retirement plan.