Senior Cybersecurity Engineer

Consider joining a leading provider of Tech-enabled cybersecurity solutions in Albuquerque, NM!

Securin dba Cyber Security Works (CSW) has been a leader in the cybersecurity industry. We have continuously improved the security posture of our customers against evolving and emerging cyber threats through our services in Vulnerability Management, Penetration Testing, Cloud security and a wide range of cybersecurity products. We are a Common Vulnerabilities and Exposures (CVE) Numbering Authority which is a US Department of Homeland Security-sponsored program that helps MITRE validate new vulnerabilities and expedite their entry into the National Vulnerability Database. Securin delivers its solutions effectively by combining human intelligence and automation while providing its customers with full coverage, extensive support, and guided remediation, helping them improve their security posture. 

At Securin, we live by a people-first approach and we firmly believe that our employees should enjoy what they do. We provide a hybrid work environment with a competitive best in industry pay, providing an inclusive environment to learn, thrive, and grow. For the right candidate, this will feel like your second home!

Please note we are prioritizing candidates interested in relocation to Albuquerque, NM. We provide a relocation package.

To learn more about us, please visit our website: https://cybersecurityworks.com/

Job Purpose

The Senior Cybersecurity Engineer is primarily responsible for managing a team who is identifying, establishing, enhancing, and performing operational functions of vulnerability management for a portfolio of clients. The team will perform the following duties: establishing and maintaining scanning capabilities, identifying vulnerabilities through scanning capabilities, and providing remediation oversight of vulnerabilities on Securin Client’s servers, databases, applications, network elements, and other systems. The Senior Cybersecurity engineer is responsible for managing the team and assisting with realizing strategic security initiatives to improve the team capabilities associated with vulnerability management and vulnerability scanning methodology.  

Qualifications 

Minimum qualifications:

• Undergraduate degree in Information Security, Computer Science, Computer Engineering, or related field, or equivalent experience.
• General knowledge of cybersecurity threats, vulnerabilities, and technologies. 
• Broad knowledge of Information Security and Information Technology (IT) systems as well as a reasonable understanding of all disciplines of networking, programming, application development, and system administration. 
• Effective oral and written communication skills to provide remediation oversight of vulnerabilities, document team procedures, and processes, and assist with documents intended for executive review and approvals. 
• Prior management experience managing a client facing team. The ability to work independently, as well as collaboratively with others, to foster consulting relationships with internal partners and external client teams.
• Knowledge of current and emerging cybersecurity threats, vulnerabilities, and technologies.
• Awareness of NIST Vulnerability Database pertaining to vulnerability severity ratings.

Preferred qualifications:

• General understanding of common networking protocols.
• General understanding and experience of UNIX derivative operating system distributions as well as various Windows operating systems.
• Effective oral and written communication skills and comfort with presenting technical issues to all levels of management, as well as non-technical staff.
• General understating on API integration concepts.

Duties and Responsibilities

• Manage a team who perform operational support of vulnerability management systems and applications for an external client portfolio.
• Manage the Vulnerability Management Service team according to defined documented procedures and processes. Manage the team’s ability to coordinate and lead routine vulnerability scanning and remediation oversight on Securin client’s systems as required for compliance of Payment Card Industry Data Security Standard (PCI DSS), Cybersecurity Maturity Model Certification (CMMC), and other industry compliance standards as necessary.
• Assist the team by contributing to strategic security initiatives to improve vulnerability management and vulnerability scanning capabilities through automation development, processes enhancements, and infrastructure expansion.
• Assist the team to identify deficiencies within vulnerability management and vulnerability scanning tools, procedures, and processes and provide recommendations for improvement and automation.
• Review the team’s clients reports which generate vulnerability metrics for executive management levels to utilize in making informed business decisions that impact the security of Securin Client’s and its customers.
• Identify vulnerabilities on Securin Client’s systems through vulnerability scanning for Securin Client’s infrastructures, products, and services encompassing network elements, operating systems, databases, and applications across the corporate enterprise.
• Review and coach the team to perform active cyber defense activity – threat hunting by proactively and iteratively searching through networks to detect and isolate advanced threats that evade existing security solutions and zero day vulnerabilities specific to the Securin client’s infrastructure.
• Contribute to develop, facilitate, and maintain the Information Security Policy, Methods & Procedures, Technical Standards, Technical Best Practices, and general processes for vulnerability management.
• Instill a security culture company-wide through vulnerability awareness and remediation mindset in your team and external clients.

Working conditions

Work is generally conducted indoors on carpeted floors, typically during regular business hours, Monday through Friday, as well as non-regular business hours.

Physical requirements

Stand or sit for extended periods of time.