Senior Cybersecurity Engineer

Senior Cybersecurity Engineer - Permanent - Raleigh, NC/Hybrid - $99,000 - $140,000.

The final salary or hourly wage, as applicable, paid to each candidate/applicant for this position is ultimately dependent on a variety of factors, including, but not limited to, the candidate's/applicant's qualifications, skills, and level of experience as well as the geographical location of the position.

Applicants must be legally authorized to work in the United States. Visa sponsorship not available.

Our client is seeking a Senior Cybersecurity Engineer in Raleigh, NC/Hybrid.

Role Description

Seeking a Senior Security Engineer to join a Cybersecurity team, reporting directly to the Director of Cybersecurity Infrastructure and Operations. In this role, you'll play a key part in shaping and strengthening our security landscape. You'll collaborate with cross-functional business units to define secure enterprise architecture standards, meet compliance objectives across multiple frameworks, and drive continuous improvement through automation.
You'll be part of a small, high-performing team responsible for identity and access management, infrastructure security, vulnerability management, and incident response. This role also involves close partnership with the Governance, Risk, and Compliance team, as well as the broader parent companies Cybersecurity organization, ensuring alignment with enterprise-wide standards and initiatives.
The ideal candidate brings a blend of business acumen, technical expertise, and strategic thinking. You'll demonstrate versatility across business, technology, and security domains, with strong analytical skills and the ability to bridge organizational boundaries to implement effective risk mitigation strategies. Success in this role requires a proactive mindset, collaborative spirit, and a commitment to driving security objectives to completion - meeting or exceeding compliance requirements while enabling business outcomes.

Skills & Requirements

Bachelor's degree in a related discipline (i.e. Computer Science, Information Security, Engineering, or GRC)
and 4 years' experience in network security within a critical infrastructure environment.. The right candidate could also have a different combination, such as a master's degree and 2 years' experience; a Ph.D. and up to 1 year of experience; or 8 years' experience in a related field
Experience building or operating within enterprise-scale cloud implementations . They should be comfortable in hybrid and multi-cloud environments, especially AWS and Azure. They should understand cloud-native security controls, posture management, and shared responsibility. They should have a strong ability to discuss real cloud security implementations and decisions. Candidates with NO cloud security will not be a fit.
Must have generalist cybersecurity engineering expertise with a wide breadth across all security domains - they are NOT looking for someone who is silo'd in one particular technical area. This is a true generalist
Must have hands-on builder experience (not just a policy or tooling owner). This is a true doer role, someone possessing solid problem solving skills
Must have experience in most of the following:
Network security fundamentals (firewalls, segmentation, routing concepts)
Identity and access management fundamentals (IAM, RBAC, MFA)
Privileged Access Management exposure (CyberArk, similar or equivalent projects)
Endpoint Security or EDR experience (CrowdStrike would be a home run)
Security tooling implementation projects, not just operations
The emphasis is on breadth plus understanding, not mastery of all
Strong understanding and demonstrated experience with multi-factor authentication and role-based access control methodologies.
At least one relevant certification - CISSP, CCSP, Cloud Specific Associate/Professional, CISM, CISA, etc.
Hands-on experience with Identity and Access Management (IAM) platforms, such as SailPoint, CyberArk, Password Manager Pro, or similar technologies, including integration and lifecycle management.
Deep understanding of core networking technologies, including IP networking, VPNs, DNS, load balancing, and firewall configuration in enterprise environments
Practical experience securing and operating across multi-cloud and hybrid environments, including AWS,
Azure, Google Cloud Platform, and private cloud platforms.
Demonstrated ability to translate complex business requirements into scalable, secure, and cost-effective technical solutions.
Familiarity with remote access technologies and best practices for secure implementation in distributed workforce environments.
Proficiency in scripting and automation using languages such as PowerShell, Python, Bash, JavaScript, Node.js, Ruby, or Perl to streamline security operations and infrastructure tasks.

Benefits/Other Compensation:

The Company offers eligible employees the flexibility to take as much vacation with pay as they deem consistent with their duties, the company's needs, and its obligations; seven paid holidays throughout the calendar year; and up to 160 hours of paid wellness annually for their own wellness or that of family members. Employees are also eligible for additional paid time off in the form of bereavement leave, time off to vote, jury duty leave, volunteer time off, military leave, and parental leave.

Why Hays?

You will be working with a professional recruiter who has intimate knowledge of the industry and market trends. Your Hays recruiter will lead you through a thorough screening process in order to understand your skills, experience, needs, and drivers. You will also get support on resume writing, interview tips, and career planning, so when there's a position you really want, you're fully prepared to get it.

Nervous about an upcoming interview? Unsure how to write a new resume?

Visit the Hays Career Advice section to learn top tips to help you stand out from the crowd when job hunting.

Hays is committed to building a thriving culture of diversity that embraces people with different backgrounds, perspectives, and experiences. We believe that the more inclusive we are, the better we serve our candidates, clients, and employees. We are an equal employment opportunity employer, and we comply with all applicable laws prohibiting discrimination based on race, color, creed, sex (including pregnancy, sexual orientation, or gender identity), age, national origin or ancestry, physical or mental disability, veteran status, marital status, genetic information, HIV-positive status, as well as any other characteristic protected by federal, state, or local law. One of Hays' guiding principles is 'do the right thing'.
We also believe that actions speak louder than words.
In that regard, we train our staff on ensuring inclusivity throughout the entire recruitment process and counsel our clients on these principles. If you have any questions about Hays or any of our processes, please contact us.

In accordance with applicable federal, state, and local law protecting qualified individuals with known disabilities, Hays will attempt to reasonably accommodate those individuals unless doing so would create an undue hardship on the company. Any qualified applicant or consultant with a disability who requires an accommodation in order to perform the essential functions of the job should call or text .

Drug testing may be required; please contact a recruiter for more information.

#LI-DNI