Sr. Cybersecurity Engineer

Job#: 3039948

Job Description:

POSITION SUMMARY

We are looking for a highly experienced Senior Cybersecurity Engineer responsible for leading advanced cybersecurity operations focused on incident response, cyber recovery, and forensic investigation. This role plays a critical part in designing and executing secure clean and recovery room environments, enabling rapid and trustworthy recovery from cyber incidents, and conducting forensic analysis to support containment, eradication, and legal/compliance actions. The ideal candidate possesses robust analytical skills and a track record of assisting in the environmentally hardening of systems. Uses extensive information security implementation and support experience to analyze, evaluate, design, develop, implement, and support Information Security technology solutions. Ensures that the IT infrastructure, including the network perimeter is protected, investigates security breaches and threats and recommends changes to address security issues. Recommends and implements new standards and procedures for existing security systems. Leads and/or supports the security governance functions related to the supported technologies. Travel may be required.

KEY ACCOUNTABILITIES AND RESPONSIBILITIES

• Design, implement, and maintain secure clean and recovery room environments to support malware-free recovery of critical systems.
• Root Cause Analysis: Conduct comprehensive root cause analysis on security incidents, ensuring lessons learned are integrated into our cybersecurity posture.
• Environmental Hardening: Provide expert consultation to internal teams on best practices for hardening systems, networks, and applications against threats.
• Analytical Leadership: Use strong analytical skills to identify patterns, trends, and anomalies in intricate data sets related to security incidents. Identifies and implements cybersecurity improvements in the design and/or infrastructure of existing systems.
• Perform technical cyber security investigations on security incidents, root cause analysis, recommend and mitigate the effects caused by an incident. Ability to respond to multiple incidents at the same time or large-scale incidents.
• Working in an environment containing a mix of on-premises and cloud solutions.
• Competency and understanding in Continuous Integration (CI)/Continuous Deployment(CD) pipeline.
• Ability to apply the MITRE ATT&CK and Killchain frameworks to security operations.
• Collaboration: Work closely with other departments, ensuring cybersecurity considerations are integrated into all aspects of the business.
• Stay Updated: Keep abreast of the latest cybersecurity trends, threats, and best practices to ensure the company's defenses are always one step ahead.
• Mentoring: Provide guidance and mentorship to junior cybersecurity team members, fostering a culture of continuous learning and improvement.
• Assesses, recommends, designs, tests, customizes and implements/installs cybersecurity hardware and software products, as well as the related standards and procedures.
• Uses hands-on cybersecurity experience to represent the IT Security team as a subject matter expert for various projects.
• Assists with deployment and ongoing operational support of cybersecurity products and processes, including Identity and Access Management tools, Data Loss Prevention (DLP) and Data Classification products, Intrusion Detection, Incident Response, Vulnerability & Threat Management as well as other cybersecurity technologies.
• Deploy, configure, and maintain OT security monitoring platforms (e.g., Cisco Cyber Vision, Nozomi Networks, Claroty, Dragos).
• Develops, socializes, and implements product lifecycle roadmaps for supported cybersecurity technologies.
• Acts as the key vendor contact and participates in managing vendor relationships, partnerships, and expectations.

JOB REQUIREMENTS

Required:

• Hands-on experience with:
• Clean room or isolated recovery environments
• Ransomware recovery and cyber resilience programs
• Forensic analysis across endpoints, network, and/or cloud
• Strong track record in Incident Handling and Response, including leading the response to cyber security incidents, including presenting root cause analysis to executive level
• Technical expertise and depth in two or more of the following areas: Detection creation, threat hunting, cloud security, OT Security, programming/automation, penetration testing.
• Experience with SIEM log analysis. Experience documenting and automating repetitive tasks and playbooks.
• Creates and executes plans for cybersecurity projects which include timelines, resolving problems on scheduling, controlling projects, ensuring deadlines are met.
• Understands business needs and provides innovative technical cybersecurity solutions to business opportunities.
• Leads second level technical support efforts, as needed for supported cybersecurity products, processes and services.
• May be required to provide 24-hour on call support.
• Self-driven and able to work without direct supervision.
• Analyzes patterns and trends and recommends/implements innovative solutions within IT and with applicable cybersecurity vendors.
• Trains and mentors new and/or less experienced team members in areas of expertise.

Preferred:

• Familiarity with OT/ICS or critical infrastructure recovery scenarios
• Familiarity with OT security monitoring platforms (e.g., Cisco Cyber Vision, Nozomi Networks, Claroty, Dragos)
• Experience in an information security group in a manufacturing industry
• Information Security industry certifications such as Certified Information Systems Security Professional (CISSP), Certified Ethical Hacker (CEH) or Offensive Security Certified Professional (OSCP)

Education and Related Experience

Education

• Bachelors degree in Computer Science or related field

Years of Experience

• A minimum of 7 years of technical experience across one or more given areas with a minimum of 5 years direct hands-on experience with relevant cybersecurity technologies.

Everforth Apex is a world-class IT services company that serves thousands of clients across the globe. When you join Everforth Apex, you become part of a team that values innovation, collaboration, and continuous learning. We offer quality career resources, training, certifications, development opportunities, and a comprehensive benefits package. Our commitment to excellence is reflected in many awards, including ClearlyRateds Best of Staffing in Talent Satisfaction in the United States and Great Place to Work in the United Kingdom and Mexico.

Everforth Apex uses a virtual recruiter as part of the application process. Click for more details. By applying for this job, you agree to receive calls, AI-generated calls, text messages, or emails from Everforth Apex and its affiliates, and contracted partners. Frequency varies for text messages. Message and data rates may apply. Carriers are not liable for delayed or undelivered messages. You can reply STOP to cancel and HELP for help. You can access our privacy policy at

Everforth Apex Benefits Overview: Everforth Apex offers a range of supplemental benefits, including medical, dental, vision, life, disability, and other insurance plans that offer an optional layer of financial protection. We offer an ESPP (employee stock purchase program) and a 401K program which allows you to contribute typically within 30 days of starting, with a company match after 12 months of tenure. Everforth Apex also offers a HSA (Health Savings Account on the HDHP plan), a SupportLinc Employee Assistance Program (EAP) with up to 8 free counseling sessions, a corporate discount savings program and other discounts. In terms of professional development, Everforth Apex hosts an on-demand training program, provides access to certification prep and a library of technical and leadership courses/books/seminars once you have 6+ months of tenure, and certification discounts and other perks to associations that include CompTIA and IIBA. Everforth Apex has a dedicated customer service team for our Consultants that can address questions around benefits and other resources, as well as a certified Career Coach. You can access a full list of our benefits, programs, support teams and resources within our 'Welcome Packet' as well, which an Everforth Apex team member can provide.

Everforth Apex Systems is an equal opportunity employer. We do not discriminate or allow discrimination on the basis of race, color, religion, creed, sex (including pregnancy, childbirth, breastfeeding, or related medical conditions), age, sexual orientation, gender identity, national origin, ancestry, citizenship, genetic information, registered domestic partner status, marital status, disability, status as a crime victim, protected veteran status, political affiliation, union membership, or any other characteristic protected by law. Everforth Apex will consider qualified applicants with criminal histories in a manner consistent with the requirements of applicable law.

If you require an accommodation under the Americans with Disabilities Act to participate in an interview with a virtual recruiter or to use our website for a search or application, please contact our Benefits Department at or . Please note that this contact information is strictly to be used for medical ADA accommodations and that no other inquiries will be answered.

UnitedHealthcare creates and publishes the Transparency in Coverage Machine-Readable Files on behalf of Everforth Apex Systems.