Senior Cyber Security Engineer

A Senior Cyber Security Engineer provides intermediate support to the information security and information systems teams through managing information security technologies and responding to requests for support. This role involves working with multiple technologies to implement, monitor, and maintain solutions that support the organization’s Information Security Mission and Primary Objectives. The primary focus will be on SIEM configuration, optimization, and detection engineering, while also supporting other areas such as incident response, threat detection, vulnerability scanning, and risk management.
This position emphasizes key solution delivery and support, with strong tactical implementations. The engineer will assist management with planning, coordination, development, and administration of programs and projects, and handle day-to-day tasks. Responsibilities include complex solution design and analysis, technical leadership, and project management across multi-functional areas. The role may also serve as a subject matter expert and participate in industry or knowledge reference groups.


Duties and Responsibilities:

• Support the organization’s Enterprise SIEM in a hybrid on-premises and cloud network configuration, including installations, upgrades, and end-to-end problem identification and remediation. Experience with Microsoft Sentinel and Azure is preferred.

• Perform log source configuration, parsing, and building data collection rules (DCRs) in the SIEM.

• Utilize KQL to onboard new log sources and support troubleshooting of log-related issues in the SIEM solution.

• Manage, review, analyze, and document current information security solutions and capabilities to ensure optimal functionality.

• Possess working knowledge of antivirus/anti-malware and EDR tools and threat detection techniques. Experience with Microsoft Defender for Endpoint, Defender for Cloud Apps, Defender for Identity, and Purview is preferred.

• Automate and integrate security technologies using APIs and scripting to enable information sharing across platforms and facilitate automated responses to identified issues.

• Perform IT and systems design and analysis, proposing solutions to complex and undefined problems.

• Demonstrate functional knowledge of multiple technologies to implement, monitor, and maintain solutions.

• Work across various technical domains, including Windows and Linux operating systems, firewalls, VPNs, network segmentation, data flows, and application security concepts.

• Mentor IT engineers in engineering tasks and perform IT engineering design and analysis.

• Supervise lifecycle upgrades.

• Provide Level 3 operational support.