Cyber Security Engineer

Software Guidance & Assistance, Inc., (SGA), is searching for a Cyber Security Engineer for a CONTRACT assignment with one of our premier Financial Services clients in Midtown Manhattan, NYC. Hybrid: 2-3 days/week in the office.
Position Overview
We are seeking a Cyber Security Engineer to take ownership of security engineering and operations across a complex, multi-environment landscape. This role sits at the intersection of hands-on engineering and strategic execution, focused on building, scaling, and integrating security capabilities across endpoint, cloud, and network domains.
A key component of this role is supporting active mergers & acquisitions, solving integration challenges by unifying security controls, visibility, and processes across environments. This individual will play a critical role in delivering Day 1 readiness while building toward a more mature, scalable Day 2 security model.
This position is ideal for a candidate who thrives in fast-paced, ambiguous environments, takes full ownership, and drives measurable improvements in security posture.
Technology Environment: CrowdStrike, Microsoft Defender, Microsoft Sentinel, Sumo Logic, AWS, Azure, Wiz, Okta, Tenable, Microsoft Purview DLP, Cyberhaven, Expel, Zero Networks
What Success Looks Like :

• Strong ownership of security capabilities with measurable improvements across environments
• High-signal detection and response with reduced alert fatigue
• Seamless M&A integrations delivering Day 1 readiness and scalable Day 2 models
• Simplified, standardized, and scalable security tooling and processes
• Trusted partner across engineering, infrastructure, and leadership teams

Responsibilities
Endpoint Security / EDR / MDR

• Investigate and respond to endpoint alerts; partner with MDR providers to drive high-quality detection and response
• Lead incident response activities including containment, eradication, and recovery
• Drive endpoint security integration across merged environments, including tooling alignment and standardized response processes

Cloud Security (AWS / Azure)

• Build and operate security controls across AWS (required) and Azure (preferred) environments
• Partner with engineering teams to secure workloads, IAM, storage, and network configurations
• Define and enforce scalable cloud security baselines
• Lead cloud security integration efforts across pre- and post-M&A environments

Vulnerability Management

• Assess and prioritize vulnerabilities based on exploitability and business risk
• Drive remediation efforts across infrastructure, application, and cloud teams
• Consolidate tooling and normalize risk models across integrated environments

Network Security / Micro-Segmentation

• Implement and refine zero trust architecture through segmentation and policy enforcement
• Troubleshoot segmentation policies in live environments without business disruption
• Align network security strategies across legacy and acquired environments

Security Operations / Engineering

• Investigate SIEM, EDR, cloud, and network signals to detect and respond to threats
• Improve detection quality by reducing noise and increasing actionable signal
• Own security operations integration, including defining and executing Day 1 and Day 2 readiness
• Collaborate with IT, cloud, engineering, and leadership teams to align security capabilities with business objectives

Required Skills

• 5-10+ years of experience in a hands-on Cyber Security Engineering / Security Operations
• Strong hands-on experience with EDR/MDR platforms (e.g., CrowdStrike, Microsoft Defender)
• Proven experience securing cloud environments - AWS mandatory, Azure is preferred
• Experience with SIEM platforms (e.g., Microsoft Sentinel, Sumo Logic)
• Strong background in incident response and threat investigation
• Experience with vulnerability management tools (e.g., Tenable) and remediation workflows
• Hands-on experience with network security and micro-segmentation / zero trust architecture
• Strong understanding of IAM, data protection, and endpoint security controls
• Ability to work cross-functionally with engineering, infrastructure, and leadership teams
• Excellent problem-solving skills and ability to operate in fast-paced, ambiguous environments
• Financial Services or other highly regulated industry experience
• Excellent communication skills

Preferred Skills/Education/Certifications

• Experience with tools such as Wiz, Okta, Microsoft Purview DLP, Cyberhaven, Expel, Zero Networks
• Prior experience in financial services or regulated environments
• Experience supporting M&A integration / transformation initiatives
• Exposure to zero trust architecture design and implementation
• Experience integrating security tools and processes across multiple environments (M&A preferred)
• Investment Management, Asset Management, or Hedge Fund experience
• Bachelor's degree in Computer Science, Cybersecurity, Information Security, Information Technology, or related technical field
• Advanced degree (Master's) in Cybersecurity or Information Assurance

Certifications:

• CISSP, CISM, or CISA
• AWS Certified Security Specialty or AWS Solutions Architect
• Azure Security Engineer Associate
• GIAC certifications (GCIA, GCIH, etc.)

SGA is a technology and resource solutions provider driven to stand out. We are a women-owned business. Our mission: to solve big IT problems with a more personal, boutique approach. Each year, we match consultants like you to more than 1,000 engagements. When we say let's work better together, we mean it. You'll join a diverse team built on these core values: customer service, employee development, and quality and integrity in everything we do. Be yourself, love what you do and find your passion at work. Please find us at .

SGA is an Equal Opportunity Employer and does not discriminate on the basis of Race, Color, Sex, Sexual Orientation, Gender Identity, Religion, National Origin, Disability, Veteran Status, Age, Marital Status, Pregnancy, Genetic Information, or Other Legally Protected Status. We are committed to providing access, equal opportunity, and reasonable accommodation for individuals with disabilities in employment, and our services, programs, and activities. Please visit our company to request an accommodation or assistance regarding our policy.
#LI-NI1