Principal Cybersecurity Engineer

The Cybersecurity Engineer will proactively defend Array's systems and networks from malicious cyber attacks. You will report to the Director of Information Security.

Responsibilities:

• Lead incident response and remediation efforts for all system and network security events.
• Iteratively plan, prioritize, and monitor security measures for protecting our data, systems, and networks.
• Analyze security event logs, application & network data, correlation rules and develop analytics to enhance shared situational our information security risk posture.
• Manage regular checks of IT security levels.
• Protect & harden the production environment.
• Ensure that our data and infrastructure are protected by promoting the appropriate security controls.
• Passively test and identify network and system vulnerabilities.
• Identify new information security threats and develop suitable defense measures.
• Evaluate architectural changes for security implications and recommend enhancements. Contribute cyber security expertise in architecture reviews and help harden the future evolution of Array's API platform.
• Develop information security activity monitoring reports.
• Produce assessments; communicate with relevant departments in the organization.

Skills/Qualifications:

• Degree in computer science, computer engineering, IT, systems engineering, or related qualification.
• 3+ years of work experience with incident detection, incident response, and forensics.
• Proficient in Go / Python /Java / Node.
• Experience with GitLab DevSecOps features.
• Familiarity with NIST standards and OWASP protocols.
• Experience with Firewalls (functionality and maintenance), IDS/IPS, Security, VSX, and Endpoint Security.
• Awareness of cybersecurity trends and hacking/exploitation techniques.
• Interest in securing cloud environments from cyber exploitation.
•  

Nice To Haves:

• Knowledge of Cloud Security, Google Cloud Platform Security & monitoring.
• Experience securing APIs and hosted infrastructure from cyber exploitation & attack.
• Knowledge of Security Across Multi-Vendor Platforms.
• Experience with ethical hacking.
• RE experience.
• Certified Ethical Hacker (CEH), Offensive Security Certified Professional (OSCP), GIAC Certified Incident Handler, (GCIH), Certified Information Systems Security Professional (CISSP).

• Full medical, dental, and vision, premiums covered at 100% for employees and 50% for dependents
• Unlimited PTO and sick leave + 14 company holidays to encourage a healthy work-life blend
• In-house wellness concierge and partnership with TalkSpace to support mental health
• 100% 401k match with immediate vesting
• Generous and competitive parental leave for all parents
• $2,000 medical travel coverage
• $1,000 desk setup subsidy to set-up your unique remote office
• $100/month to subsidize wifi/cell phone expenses