Cybersecurity Engineer

Stefanini Group is looking for Cybersecurity Engineer for a globally recognized company! For interested applicants, click the apply button or you may reach out to Alfher Hidalgo at / for faster processing. Thank you!





The Cybersecurity Engineer plays a critical role in protecting the global technology ecosystem. This position designs, builds, and operates security controls that safeguard enterprise systems, cloud services, applications, manufacturing environments, and data across the organization. Engineers in this role are hands on practitioners who lead technical investigations, continuously advance detection and response capabilities, and embed security into modern IT and OT (Operational Technology) environments.





Cybersecurity Engineers work closely with cross functional teams-including Infrastructure, Cloud, Network Engineering, Application Development, Governance/Risk/Compliance, and Manufacturing Technology-to implement secure architectures, automate protections, and proactively reduce organizational risk. This role requires a strong engineering mindset, the ability to analyze complex systems, and the discipline to operate reliably in mission critical environments.

The ideal candidate demonstrates deep curiosity, exceptional technical judgment, and a strong sense of ownership-balancing long term architectural improvements with the operational urgency required to respond to evolving threats.





Core Competencies:Advanced analytical, troubleshooting, and root cause analysis skills.Expert level understanding of network, endpoint, cloud and on-premise security and architecture.Hands on experience with Firewalls, Web Application Firewalls (WAFs), Security Information Event Monitoring (SIEM), Endpoint/Network Detection and Response (EDR/NDR) and modern security automation.Ability to communicate complex technical risks clearly to all audience levels.Team player with collaboration mindset across engineering, operations, and business functions.High sense of ownership, accountability, and operational discipline.





Skills/Abilities:





Security Engineering & ArchitectureDesign, deploy, and support enterprise security technologies, including:





Network & Perimeter SecurityFirewalls, Network Access Control (NAC) solutions, IDS/IPS systems.WAF and reverse proxy protections.





Endpoint & Host SecurityEDR/XDR platforms, next generation antivirus, anti malware.Windows, Linux, and Unix hardening baselines.





Identity, Authentication & CryptographyPublic Key Infrastructure (PKI), certificates, encryption servicesConditional Access Azure Entra ID and Active Directory





Operational (OT) SecuritySupervisory Control and Data Acquisition (SCADA) systems, Programmable Logic Controllers (PLCs), and other manufacturing automation equipment. Including supporting legacy backup and security-oriented solutions.Micro segmentation by restricting east west traffic within plants and distribution centers.





Cloud & Zero Trust SecurityCSPM, CWPP, SIEM/SOAR integrations, and Identity Access Management (IAM) controls in Cloud environments such as: Amazon AWS, Microsoft Azure, and Google Cloud Platform Google Cloud Platform.Hands on experience with Zero Trust Network Architecture (ZTNA), including: Secure Service Edge (SSE), Data Loss Prevention (DLP), Cloud Access Security Broker (CASB), API Protection, and remote access technologies.





AI & Application SecurityDeveloping secure coding practices, automation, and maintaining application security testing tools, including Static Application Security Testing (SAST), Dynamic Application Security Testing (DAST), Software Composition Analysis (SCA), Container Security, etc.,Ability to build automation via Security Orchestration Automation and Response (SOAR) tools in conjunction with custom scripts via established coding/scripting languagesFamiliarity with AI Governance and AI Security practicesIncident Response & MonitoringProvide on call support, including occasional nights, weekends, and holidays, ensuring rapid response to security and production-impacting events.Analyze and act on security events across SIEM, EDR, Intrusion Detection/Prevention Systems (IDS/IPS), NDR, firewall logs, cloud telemetry, and endpoint security tools to identify anomalous behavior, indicators of compromise (IOCs), and threats.





Threat Hunting & IntelligenceConduct threat hunting using User Event Behavioral Analytics (UEBA), and other technologiesCoordinate with other cybersecurity and IT teams to engineer and tune detection rules, and playbooks to reduce false positives and respond to emerging threats such as ransomware, supply chain attacks, and AI generated threats.





Vulnerability & Penetration TestingOrchestrate internal and external vulnerability assessments, penetration tests for networks, cloud infrastructure, IoT/OT, APIs, and web/mobile applications.Analyze exploitable weaknesses, produce detailed remediation guidance, and collaborate with system owners for determining appropriate security controls





Security Governance, Compliance & RiskSupport compliance and audit initiatives (e.g., GDPR, NIST, ISO 27001, PCI, SOX, HIPPA, SOC 2) by conducting risk assessments of hardware and software solutionsContribute to security policy development, standards, procedures, baselines, and operational runbooks.





Vendor & Financial ManagementManage relationships with security product vendors and service providers.Partner with sourcing on contract evaluations, renewals, and cost optimization for security tooling.Maintain financial comparisons and value assessments for security investments.





Security Awareness & CultureSupport security awareness initiatives, including training programs, phishing simulations, and security culture improvement activities.Training and mentoring individuals with an interest in Cybersecurity both internally and externally





Documentation & ReportingDocument findings, root causes, risks, and remediation activities.Prepare and deliver clear communication to both technical teams and non technical teams and leadership.Produce after action reports, engineering documentation, diagrams, and operational checklists.



Required QualificationsStrong hands-on cybersecurity engineering experience in enterprise environmentsDeep knowledge of network, endpoint, cloud, and on-prem security architectureExperience with firewalls, WAFs, SIEM, EDR/XDR, NDR, IDS/IPS, NAC, and automation platformsExperience securing AWS, Azure, and/or Google Cloud Platform environmentsKnowledge of IAM, Active Directory, Entra ID, PKI, certificates, and encryptionAbility to investigate incidents, analyze telemetry, and respond to threatsExperience with threat hunting, detection engineering, and alert tuningExperience with vulnerability management and penetration test coordinationFamiliarity with secure application practices and tools such as SAST, DAST, SCA, and container securityAbility to script or automate security workflows using SOAR and common scripting languagesAbility to document findings and communicate technical risk clearlyStrong troubleshooting, root cause analysis, and cross-functional collaboration skillsWillingness to participate in on-call support





Preferred QualificationsExperience with OT/manufacturing security, including SCADA and PLC environmentsExperience with Zero Trust technologies such as SSE, CASB, DLP, and ZTNAFamiliarity with AI governance and AI securityExperience supporting compliance frameworks such as NIST, ISO 27001, GDPR, PCI, SOX, HIPAA, and SOC 2Experience with vendor evaluation, contract support, and security tool cost/value analysisExperience mentoring others and contributing to security culture initiatives

#LI-AH1#LI-HYBRID