Senior Cybersecurity Engineer

Senior Cybersecurity Engineer - Permanent - Raleigh, NC/Hybrid - $99,000 - $140,000.

Seeking a Senior Security Engineer to join a Cybersecurity team, reporting directly to the Director of Cybersecurity Infrastructure and Operations. In this role, you'll play a key part in shaping and strengthening our security landscape. You'll collaborate with cross-functional business units to define secure enterprise architecture standards, meet compliance objectives across multiple frameworks, and drive continuous improvement through automation.

Architect and implement IP networks, routing protocols, and segmentation strategies to support secure enterprise infrastructure.
Configure and optimize VPN technologies, DNS, load balancing, and firewall policies to ensure resilient and secure connectivity.
Evaluate existing architectures to identify security design gaps and lead the development of enhancement strategies.
Oversee role-based access control (RBAC) for privileged accounts, ensuring alignment with least privilege principles.
Work on multiple high-impact projects concurrently, ensuring timely delivery and alignment with cybersecurity goals.
Lead project for deployment and integration of Privileged Access Management platforms across diverse environments, including public and private cloud.
Apply deep expertise in cloud network security across AWS, Azure, Google Cloud Platform, and private cloud platforms to safeguard hybrid workloads.
Assess and harden network infrastructure in complex hybrid and cloud-native enterprise environments.
Advise product teams on security and privacy best practices, aligning technical standards with business objectives and compliance mandates.
Champion security and privacy by design through strategic collaboration with product, architecture, and operations teams.
Serve as a trusted advisor on secure access management strategies, influencing enterprise-wide implementation decisions.
Collaborate with executive leadership to align cybersecurity initiatives with organizational priorities and risk appetite.
Collaborate with leadership to align cybersecurity strategies with organizational goals and priorities.
Develop and deliver clear, data-driven presentations and reports that articulate security risks, mitigation strategies, and business impact.
Influence strategic decision-making by framing cybersecurity initiatives in terms of business value, risk reduction, and regulatory compliance.
Operate and maintain logging and monitoring tools to analyze audit data for threat detection and anomaly investigation.
Lead incident response efforts using SIEM, EDR, and logging platforms to detect, triage, and remediate security events.
Mentor junior engineers and contribute to team development through coaching, knowledge sharing, and technical leadership.

Skills & Requirements

Bachelor's degree in a related discipline (i.e. Computer Science, Information Security, Engineering, or GRC)
and 4 years' experience in network security within a critical infrastructure environment.. The right candidate could also have a different combination, such as a master's degree and 2 years' experience; a Ph.D. and up to 1 year of experience; or 8 years' experience in a related field
Experience building or operating within enterprise-scale cloud implementations . They should be comfortable in hybrid and multi-cloud environments, especially AWS and Azure. They should understand cloud-native security controls, posture management, and shared responsibility. They should have a strong ability to discuss real cloud security implementations and decisions. Candidates with NO cloud security will not be a fit.
Must have generalist cybersecurity engineering expertise with a wide breadth across all security domains - they are NOT looking for someone who is silo'd in one particular technical area. This is a true generalist
Must have hands-on builder experience (not just a policy or tooling owner). This is a true doer role, someone possessing solid problem solving skills
Must have experience in most of the following:
Network security fundamentals (firewalls, segmentation, routing concepts)
Identity and access management fundamentals (IAM, RBAC, MFA)
Privileged Access Management exposure (CyberArk, similar or equivalent projects)
Endpoint Security or EDR experience (CrowdStrike would be a home run)
Security tooling implementation projects, not just operations
The emphasis is on breadth plus understanding, not mastery of all
Strong understanding and demonstrated experience with multi-factor authentication and role-based access control methodologies.
At least one relevant certification - CISSP, CCSP, Cloud Specific Associate/Professional, CISM, CISA, etc.
Hands-on experience with Identity and Access Management (IAM) platforms, such as SailPoint, CyberArk, Password Manager Pro, or similar technologies, including integration and lifecycle management.
Deep understanding of core networking technologies, including IP networking, VPNs, DNS, load balancing, and firewall configuration in enterprise environments
Practical experience securing and operating across multi-cloud and hybrid environments, including AWS, Azure, Google Cloud Platform, and private cloud platforms.
Demonstrated ability to translate complex business requirements into scalable, secure, and cost-effective technical solutions.
Familiarity with remote access technologies and best practices for secure implementation in distributed workforce environments.
Proficiency in scripting and automation using languages such as PowerShell, Python, Bash, JavaScript, Node.js, Ruby, or Perl to streamline security operations and infrastructure tasks.

Benefits/Other Compensation:

Medical, Dental, Life Insurance, 401K.

Why Hays?

You will be working with a professional recruiter who has intimate knowledge of the industry and market trends. Your Hays recruiter will lead you through a thorough screening process in order to understand your skills, experience, needs, and drivers. You will also get support on resume writing, interview tips, and career planning, so when there's a position you really want, you're fully prepared to get it.

Nervous about an upcoming interview? Unsure how to write a new resume?

Visit the Hays Career Advice section to learn top tips to help you stand out from the crowd when job hunting.

Hays is committed to building a thriving culture of diversity that embraces people with different backgrounds, perspectives, and experiences. We believe that the more inclusive we are, the better we serve our candidates, clients, and employees. We are an equal employment opportunity employer, and we comply with all applicable laws prohibiting discrimination based on race, color, creed, sex (including pregnancy, sexual orientation, or gender identity), age, national origin or ancestry, physical or mental disability, veteran status, marital status, genetic information, HIV-positive status, as well as any other characteristic protected by federal, state, or local law. One of Hays' guiding principles is 'do the right thing'.
We also believe that actions speak louder than words.
In that regard, we train our staff on ensuring inclusivity throughout the entire recruitment process and counsel our clients on these principles. If you have any questions about Hays or any of our processes, please contact us.

In accordance with applicable federal, state, and local law protecting qualified individuals with known disabilities, Hays will attempt to reasonably accommodate those individuals unless doing so would create an undue hardship on the company. Any qualified applicant or consultant with a disability who requires an accommodation in order to perform the essential functions of the job should call or text .

Drug testing may be required; please contact a recruiter for more information.

#LI-DNI