Senior Cyber Security Engineer

Job DescriptionJob Description

Title: Senior Cyber Security Engineer - Financial Services

Location: Remote US

Salary: $160-170K

No sponsorship

The Senior Cyber Security Engineer is a critical member of the team, responsible for protecting the organization’s technology infrastructure and digital assets. This role involves designing, implementing, and maintaining security measures to safeguard computer systems, networks, and data against cyber threats. The Senior Cyber Security Engineer will play a key role in adhering to Cyber Security program, ensuring compliance with regulatory standards, and providing clear reports on the organization’s security posture. This position will also focus on identifying vulnerabilities, mitigating risks, and ensuring a robust defense against cyber intrusions.

Key Responsibilities:

• Security Tools Management & Administration (40%)
  • Oversee and manage security tools, including Azure, O365, endpoint security, email and web filtering, vulnerability management, OLP, IPS systems, SIEM, and host-based security agents.
  • Monitor, update, and ensure the proper configuration of security systems to protect organizational assets.
• Collaboration and Risk Mitigation (15%)
  • Work closely with various business units to identify security risks and provide recommendations for protective controls.
  • Assist in securing both internal and perimeter networks, ensuring electronic information is protected against breaches.
• Project Leadership & Audit Support (15%)
  • Lead and assist in security projects and initiatives, including penetration testing and security reviews.
  • Actively participate in internal and external audits, providing support for security control assessments and the remediation of audit findings.
• Reporting & Metrics Development (15%)
  • Generate detailed reports from multiple security systems to provide insight into the organization’s security posture and risk levels.
  • Develop and distribute relevant metrics that illustrate the effectiveness of security measures and the organization’s overall security stance.
• Audit & Compliance Assistance (10%)
  • Assist with regulatory, internal, and external audits, collaborating with the team to ensure compliance with applicable standards.
  • Play a role in preventing audit findings and leading remediation efforts.
• Additional Responsibilities (5%)
  • Perform other duties as assigned to support the overall security and technology needs of the organization.

key Responsibilities:

• Security Tools Management & Administration (40%)
• Oversee and manage security tools and platforms, including:
• CrowdStrike EDR/MDR
• Zscaler ZIA/SkyHigh, ZPA, CASB
• Proofpoint, KnowBe4 (Email Security and Awareness Training)
• IPS/IDS - Zscaler SecureWorks
• M365 Defender
• Forescout
• DMARC
• Qualys Vulnerability Management, CSAM
• CrowdStrike Secure Cloud
• Data Security Zscaler
• Security Architecture
  • Zscaler CASB
  • Monitor, update, and ensure the proper configuration of these security systems to safeguard organizational assets.

Required Skills & Experience:

• Experience with Specific Technologies:
• Hands-on experience with a wide range of security platforms and tools, including:
• Zscaler (ZIA, ZPA, CASB, SecureWorks)
• CrowdStrike (EDR, MDR, Secure Cloud)
• Qualys (Vulnerability Management, CSAM)
• Proofpoint, KnowBe4 for email security and awareness
• Forescout for network visibility and control
• M365 Defender for endpoint security
  • DMARC for email authentication

Other Skills & Requirements:

• Cloud Security Expertise:
  • Strong understanding and experience with cloud security solutions, particularly Zscaler, CrowdStrike, and M365 Defender.
  • Experience with Qualys Vulnerability Management, CSAM, and Zscaler CASB to address security vulnerabilities across cloud platforms.

Required Skills & Experience:

• Experience:
  • 5-8 years of experience in cyber security, with a focus on security platform administration, risk assessment, and vulnerability management.
  • Proven expertise in managing security tools (SIEM, endpoint security, vulnerability scanners) and cloud security solutions (e.g., Azure, O365).
  • Experience with endpoint security technologies like DLP, antivirus, and anti-malware.
  • Familiarity with security assessments for network infrastructure, hosts, and applications.
  • Experience in incident response and mitigation of cyber threats.
• Technical Skills:
  • Strong proficiency in cloud security, especially Microsoft-based solutions (Azure, O365).
  • Familiarity with intrusion detection/prevention systems (IPS/IDS) and network security protocols.
  • Strong troubleshooting skills and familiarity with server administration in virtualized environments.
  • Knowledge of FFIEC guidelines and regulatory compliance standards (e.g., OCC, FDIC) is highly .
• Certifications:
  • Bachelor’s degree in computer science, Management Information Systems, or a related field.
  • Security certifications such as SANS, CEH, and Azure Security are highly desirable.

Personal Attributes:

• Communication Skills:
  • Strong written and verbal communication skills, with the ability to document security findings clearly and concisely.
  • Ability to work collaboratively in a team and interact effectively with business units and regulatory bodies.
• Problem Solving & Analytical Skills:
  • Strong analytical thinking and problem-solving abilities, with a focus on identifying security vulnerabilities and implementing solutions.
  • Detail-oriented, with excellent organizational skills to manage multiple security initiatives simultaneously.
• Project Management:
  • Prior experience in managing or contributing to security projects and initiatives.
  • Ability to work independently, meet deadlines, and adhere to project budgets.

Other Skills & Requirements:

• In-depth understanding of data protection, incident handling, and security tools such as email filters, endpoint security, and web filtering.
• Ability to travel when necessary to support security operations and audits.
• Availability to adapt to evolving security challenges and technologies.

Addison Group is an Equal Opportunity Employer. Addison Group provides equal employment opportunities (EEO) to all employees and applicants for employment without regard to , , , , , , , , genetic information, marital status, amnesty, or status as a covered veteran in accordance with applicable federal, state and local laws. Addison Group complies with applicable state and local laws governing non-discrimination in employment in every location in which the company has facilities. Reasonable accommodation is available for qualified individuals with disabilities, upon request.

IND 005-009