Cybersecurity Engineer

Company Description

Aspen TESS is Aspen's technology enabled shared services business, established to be a partner in unlocking business value through digital innovation and process efficiency. Aspen TESS will eliminate repetitive effort and use technology to optimize standardized processes, by delivering cost-effective services and innovative solutions to Aspen business units globally.

OBJECTIVE

The Cybersecurity Engineer plays a crucial role in protecting Aspen’s infrastructure by implementing, maintaining, and enhancing security technologies and processes. This role works closely with the SOC, IT, and Compliance teams to ensure systems and data remain secure and threats are identified and mitigated.

Below is a general description of the key responsibilities, qualifications, and skills needed for this role:

Key Responsibilities

Incident Response and Escalation

• Act as a Tier 2/3 escalation point for complex security incidents raised by the SOC or IT teams.
• Lead and support incident response activities, including forensic analysis and root cause investigation.
• Support red/blue team exercises to test and improve detection, response, and defense capabilities.
  
  

Security Platform Management

• Manage configurations and policies for the Cyber Security platforms, ensuring optimal performance and alignment with security standards.
  
  

Vulnerability Management

• Analyze vulnerability scan reports to identify and assess security weaknesses.
• Coordinate remediation efforts with relevant teams and ensure timely closure of vulnerabilities
  
  

Secure Systems and Network Configuration

• Collaborate with IT teams to implement secure system and network configurations, following industry best practices and compliance requirements.
  
  

Training and Mentorship

• Provide training and mentorship to junior analysts, fostering their professional development and enhancing team capabilities.
  
  

Project Involvement

• Participate in cross-functional IT and business projects to ensure security requirements are identified, integrated, and enforced throughout the project lifecycle
  
  

SKILLS AND COMPETENCIES:

• Hands-on experience with Cisco Umbrella, Defender for Endpoint, Identity, Office, and Sentinel.
• Working knowledge of SIEM, SOAR, EDR, vulnerability and data protection tools.
• Scripting skills (e.g., PowerShell, Python, KQL) for automation and threat hunting.
• Strong understanding of networking, authentication, certificates and cloud security principles.
• Familiarity with MITRE ATT&CK, NIST CSF, and other industry frameworks.
• Strong analytical and problem-solving skills.
• Clear and concise communication for incident handling and documentation.
• Collaborative mindset with the ability to work independently when required.
• Effective multitasking under pressure.
  
  

Qualifications & Experience

• Bachelor’s degree in Computer Science, Information Technology, or related field (or equivalent experience).
• Preferred certifications:
  
  

Microsoft Certified: Security Operations Analyst Associate

Microsoft Security, Compliance, and Identity Fundamentals

Cisco Certified CyberOps Associate or CCNP Security

CompTIA Security+, CySA+, or similar

#NB