Cybersecurity Engineer (Senior Level)
Primary Purpose
The Cybersecurity Engineer is responsible for designing, building, and implementing security controls and secure architectures across cloud, enterprise, and operational technology environments. This role helps ensure security practices align with frameworks such as Zero Trust, NIST, and CMMC.
Key Responsibilities
- Security Architecture & Design: Develop secure architectures for enterprise, cloud, and isolated environments aligned with Zero Trust, NIST, and CMMC principles.
- Tool Implementation & Integration: Deploy and integrate security tools across the environment.
- Cloud & Infrastructure Security: Support security for Azure and AWS environments, including regulated enclaves such as CMMC.
- Security Controls & Hardening: Establish baselines and implement preventive and detective security controls.
- Network & Email Security: Manage firewalls, secure web gateways, and email security platforms.
- OT / ICS Security: Support security controls, segmentation, and monitoring in industrial environments.
- Endpoint & Application Controls: Define and manage application allow/block rules and endpoint security policies.
Key Performance Indicators
Successful implementation of security controls, reduction of security risk, adherence to security standards and frameworks, and reliable operation of security platforms.
Core Competencies
Strong technical and analytical skills, clear communication, a security-by-design mindset, ability to lead technical work, and strong collaboration across teams.
Qualifications
7+ years of cybersecurity engineering experience, strong knowledge of cloud and security architecture, and hands-on experience with frameworks such as Zero Trust, NIST, and CMMC. Solid understanding of networking, IAM, and endpoint security is required.
Experience
Experience with Azure/AWS security, firewall management, OT/ICS security, scripting (PowerShell/Python), secure enclave design, endpoint security controls, and regulated environments.
Determining compensation for this role (and others) at Vaco/Highspring depends upon a wide array of factors including but not limited to the individual’s skill sets, experience and training, licensure and certifications, office location and other geographic considerations, as well as other business and organizational needs. With that said, as required by local law in geographies that require salary range disclosure, Vaco/Highspring notes the salary range for the role is noted in this job posting. The individual may also be eligible for discretionary bonuses, and can participate in medical, dental, and vision benefits as well as the company’s 401(k) retirement plan. Additional disclaimer: Unless otherwise noted in the job description, the position Vaco/Highspring is filing for is occupied. Please note, however, that Vaco/Highspring is regularly asked to provide talent to other organizations. By submitting to this position, you are agreeing to be included in our talent pool for future hiring for similarly qualified positions. Submissions to this position are subject to the use of AI to perform preliminary candidate screenings, focused on ensuring minimum job requirements noted in the position are satisfied. Further assessment of candidates beyond this initial phase within Vaco/Highspring will be otherwise assessed by recruiters and hiring managers. Vaco/Highspring does not have knowledge of the tools used by its clients in making final hiring decisions and cannot opine on their use of AI products.
Never miss an opportunity! Create an alert based on the job you applied for.