Associate Cybersecurity Engineer
Gray
Cyber SecurityFirewalls
Cybersecurity Engineer
Gray
full-time
Posted on:
Location Type: Office
Location: Lexington • Kentucky • 🇺🇸 United States
Visit company websiteJob Level
Mid-LevelSenior
Tech Stack
AzureCloudCyber SecurityReact
About the role
- Serve as technical subject matter expert for the design, configuration and operation of security aspects of Gray’s IT infrastructure components, ensuring they are maintained in accordance with Gray specifications, control frameworks such as ISO27001, NIST CSF, SP800-171, CMMC, and industry best practices.
- Participate in technology and security roadmap decisions, providing architectural guidance for systems that best fit into Gray’s overall IT strategy and business needs.
- Work closely with the IT Operations team to drive the secure implementation, configuration, and maintenance of Gray’s IT platforms and application components such as Microsoft Azure, Microsoft365, Egnyte, and Gray SaaS, IaaS, and PaaS environments.
- Perform monitoring and security control testing of systems and resources to ensure ongoing compliance to standards for secure operations.
- Assess, track, report, and remediate any security exceptions and incidents as they arise.
- Correlate activity across the Gray IT ecosystem to identify unauthorized activity.
- Provide cybersecurity incident response support, including detection and analysis, mitigating activities, and facilitating forensics analysis when necessary.
- Research and stay informed of potential information security threats, industry trends, emerging technologies, and response alternatives.
- Perform additional duties as needed.
Requirements
- Certified Information Systems Security Professional (CISSP) or Certified Information Security Analyst (CISA) preferred.
- 5+ years of work experience managing information security platforms and tools.
- Knowledge of information security standards, data privacy laws, security frameworks.
- Demonstrated experience managing incident detection, incident response, and forensics activities.
- Possess a strong foundation in networking and server, and cloud operating environments and security configurations, penetration testing, and incident response, coupled with hands-on experience in managing security infrastructure components.
- Expertise in incident response processes and tools to detect, analyze, respond, and contain cyber security threats.
- Significant awareness of cybersecurity trends and attacker tactics and techniques.
- Outstanding analytical, problem-solving, oral, and written communication skills as well as excellent judgment and self-motivation.
- Proficiency in problem-solving, analytical thinking, and penetration testing and vulnerability scanning methodologies.
- Ability to react quickly, decisively, and deliberately in high-stress, high-impact situations.
- Strong decision-making capabilities, with a proven ability to weigh the relative costs and benefits of potential actions and identify the most appropriate one.
- Ability to effectively influence others to modify their opinions, plans or behaviors.
- Must have a willingness to educate fellow team members, have patience and the capability to provide support as necessary.
- Must be well organized, efficient, detail-oriented, and able to work independently as well as a member of a team.
Benefits
- Overtime may be required
Applicant Tracking System Keywords
Tip: use these terms in your resume and cover letter to boost ATS matches.
Hard skills
information securityincident detectionincident responseforensicspenetration testingvulnerability scanningnetworkingcloud securitysecurity configurationssecurity control testing
Soft skills
analytical skillsproblem-solvingcommunication skillsdecision-makinginfluenceself-motivationpatienceorganizationdetail-orientedteamwork
Certifications
Certified Information Systems Security Professional (CISSP)Certified Information Security Analyst (CISA)