Cyber Security Engineer

Cyber Security Engineer

Employment Type: Full-Time/Direct Hire

Workplace Type: Onsite

Location: El Monte, CA

Industry: Utilities / Government

Compensation: $120,000-$150,000

Work Schedule: 9/80 Schedule (Every other Friday Off)

SUMMARY:

We are looking for a Cyber Security Engineer to help our client with managing and securing the organization's information systems and operations technology, ensuring compliance with security policies, and protecting sensitive data from cyber threats. The Cyber Security Engineer will play a critical role in implementing security measures, monitoring systems for vulnerabilities, and responding to security incidents.

DUTIES & ESSENTIAL FUNCTIONS:

• Provident oversights and ensure best practices for securing the organizations on premise IT infrastructure, public cloud environment, and operational technologies.


• Implement, manage, and maintain information security tools and technologies, including firewalls, intrusion detection/prevention systems (IDS/IPS), SIEM platforms, internal/external threat hunting, penetration testing, and endpoint protection solutions.


• Monitor and analyze security logs and alerts to detect and respond to potential security incidents.


• Drive the organization's IAM practice, including implementing and managing Identity and Access Management/Governance solution, including user provisioning and de-provisioning for Office 365 and Azure environments and configuring and integration IAM solutions with downstream systems


• Implement and manage multi-factor authentication (MFA) to strengthen security for Office 365 and other critical applications.


• Configure and enforce conditional access policies to ensure secure access to applications and data based on user context and risk levels.


• Respond to and investigate security incidents, coordinating with IT and other departments to remediate vulnerabilities.


• Maintain incident response plans and participate in post-incident reviews to improve security processes.


• Conduct regular internal and external vulnerability scans to identify security weaknesses and ensure compliance.


• Perform penetration testing and threat assessments to simulate attacks and evaluate the security posture of the organization.


• Develop, implement, and maintain security policies, procedures, and guidelines specific to Office 365, Azure, and other cloud services.


• Ensure compliance with regulatory requirements and industry standards.


• Provide security awareness training to employees to promote a culture of cybersecurity within the organization.


• Develop materials and resources to support ongoing security education.


• Maintain detailed documentation of security configurations, incidents, and response actions.


• Generate regular security reports for management and compliance audits.

REQUIRED SKILLS & EXPERIENCE:

• Bachelor's degree in Cyber Security, Information Technology, or a related field.


• 6+ years of experience working in a cyber security focused role, with a strong emphasis on designing, implementing, and managing IT Security architectures on-premise and Azure


• Strong knowledge of security technologies, including firewalls, VPNs, IDS/IPS, and antivirus solutions.


• Strong track record of gathering technical and business requirements for IT Security projects, including conducting POCs of third-party vendors to evaluate and implement into a corporate IT environment.


• Several years of hands-on expeirnece implementing, configuring, and managing Microsoft Azure security suite of products.


• Deep working knowledge and experience with Azure security suite of products including endpoint protection, IAM, MFA, MDM, SIEM, etc. (i.e., Intune, EntraID, MS Defender, etc..)


• Understanding of internal and external threat hunting concepts and methodologies and expeirnece working with and implementing penetration testing tools and frameworks.


• Proficiency in Azure cloud security concepts and best practices


• Familiarity with internal and external scanning tools and techniques.


• Strong working knowledge of security frameworks and regulatory compliance standards.


• Strong problem-solving and analytical skills and excellent communication and collaboration skills.


• Ability to work independently and manage multiple priorities effectively.


• Ability to perform repetitive physical activities using feet, legs, hands, and arms, and which include use of keyboard, walk, stand, bend, stoop, climb stairs, lift up to 35 lbs., reach, grasp, push, and pull.


• Valid California Driver's License and acceptable driving record.

DESIRED SKILLS & EXPERIENCE:

• Relevant certifications such as CompTIA Security+, Certified Information Systems Security Professional (CISSP), Certified Ethical Hacker (CEH), Azure Cloud Security certifications, ect.

All qualified applicants will receive consideration for employment without regard to race, color, national origin, age, ancestry, religion, sex, sexual orientation, gender identity, gender expression, marital status, disability, medical condition, genetic information, pregnancy, or military or veteran status. We consider all qualified applicants, including those with criminal histories, in a manner consistent with state and local laws, including the California Fair Chance Act, City of Los Angeles' Fair Chance Initiative for Hiring Ordinance, and Los Angeles County Fair Chance Ordinance. For unincorporated Los Angeles county, to the extent our customers require a background check for certain positions, the Company faces a significant risk to its business operations and business reputation unless a review of criminal history is conducted for those specific job positions.