Job title: Senior Cybersecurity Engineer (Cybersecurity Engineering – Penetration Testing & SIEM Integration)
Location: Austin, TX (Onsite)
Duration: 06+ Months Contract with possible extension
Job number: (529601632)
Due date: 03/05/2026
Interview: In-person required
The position is ONSITE at the location listed above (NO REMOTE WORK). The program will only accept LOCAL ONLY candidates for this position.
The program will only allow candidates who are LOCAL TO THE AUSTIN AREA ONLY.
Work Description:
(Cybersecurity Engineering – Penetration Testing & SIEM Integration)
Position Summary
The Software Developer III will serve within the client’s Chief Information Security Office (CISO) to design, develop, and support cybersecurity engineering solutions that enhance penetration testing capabilities, security automation, and Security Information and Event Management (SIEM) integrations. This role will focus on building secure APIs, automation scripts, and tool integrations that enable scalable security testing, continuous monitoring, and data-driven threat detection across client’s environments.
The position requires strong software development expertise combined with hands-on cybersecurity engineering skills, including Kali Linux server deployment, penetration testing toolchain support, SIEM data ingestion, and security automation scripting.
This role directly supports client’s Zero Trust, continuous monitoring, and security operations modernization initiatives.
Primary Responsibilities
Security Engineering & Development
Design and develop secure software components, APIs, and microservices to support penetration testing workflows and security automation.
Build custom integrations between penetration testing platforms, vulnerability scanning tools, and enterprise SIEM platforms.
Develop data ingestion pipelines to normalize and forward security telemetry into Splunk and other SIEM platforms.
Create automation scripts to orchestrate security testing, evidence collection, and reporting processes.
Support integration of security testing results into governance, risk, and compliance (GRC) platforms.
Penetration Testing Enablement
Build and maintain Kali Linux-based penetration testing infrastructure, including virtualized and cloud-hosted environments.
Configure and manage penetration testing toolchains, frameworks, and supporting services.
Develop custom exploit scripts, test harnesses, and proof-of-concept code to validate security findings.
Support red team and application penetration testing engagements through automation and tool development.
SIEM & Security Operations Integration
Develop APIs and connectors to integrate security tools with enterprise SIEM platforms.
Implement log parsing, enrichment, and normalization logic to improve detection fidelity.
Automate alert enrichment, correlation, and reporting workflows.
Collaborate with CSOC teams to align development efforts with detection and monitoring requirements.
Scripting & Automation
Develop scripts using Python, PowerShell, Bash, or similar languages to automate security operations and testing processes.
Implement CI/CD pipelines for security tooling and integration code.
Maintain version control repositories and documentation for developed solutions.
Security & Compliance Alignment
Ensure developed solutions comply with HHSC security standards, DIR security control requirements, and NIST-based frameworks.
Participate in architecture reviews, risk assessments, and technical design sessions.
Produce technical documentation, configuration guides, and operational runbooks.
Key Competencies
Secure software development
API and systems integration
Security automation and orchestration
Penetration testing toolchain engineering
SIEM and log pipeline development
Linux server administration
Technical documentation and collaboration
Engagement Type
• ITSAC Contract Resource
• Works under HHSC Office of the CISO
• Supports enterprise cybersecurity modernization initiatives
Business Value to HHSC
This role enables HHSC to:
• Scale penetration testing operations through automation
• Integrate security testing outputs into continuous monitoring
• Strengthen threat detection through enriched SIEM telemetry
• Reduce manual security operations effort
• Support Zero Trust and continuous compliance objectives
Required Skills:
Bachelor’s degree in Computer Science, Information Technology, or related field (or equivalent experience).
8 Years of Advanced experience building security automation and platform integrations.
8 Years of Hands-on experience with penetration testing tools and Kali Linux environments.
5-8 years of professional software development experience.
3-5 Years of Proficiency in one or more programming languages: Python, Java, JavaScript, or C#.
3-5 Years of Experience developing REST APIs and integrating enterprise platforms.
3-5 Years of Hands-on scripting experience (Python, Bash, PowerShell).
3-5 Years of Experience deploying and administering Linux systems.
3-5 Years of Familiarity with SIEM platforms (Splunk, Sentinel, or equivalent).
3-5 Years of Knowledge of cybersecurity fundamentals and secure coding practices
Preferred Skills:
3 Years of Experience developing security data pipelines and SIEM integrations.
3 Years of Ability to design scalable and resilient security tool architectures.
2 Years of Experience with containerization and virtualization (Docker, VMware, cloud-hosted labs)
2 Years of Experience working in regulated or government environments preferred.
2 Years of OSCP, CEH, or equivalent penetration testing certification.
2 Years of Splunk Certified Developer or SIEM integration experience.
2 Years of Security+, CISSP, or equivalent security certification.
2 Years of Linux administration certification
Never miss an opportunity! Create an alert based on the job you applied for.