Cyber Security Engineer

You will serve as a lead network forensic analyst and incident responder within the Information Protection Office. Responsibilities Lead security incident response, including application and network breach mitigation and root cause analysis. Perform analytical triage, prioritization, and in-depth analysis of network threat activity and trends. Conduct application penetration testing and vulnerability assessments on production systems. Correlate event data from IDS, firewalls, secure web gateways, and SIEMs to identify potential threats. Execute host and network-based log analysis using PCAp data and network indicators. Required Skills 5+ years of experience in cyber security. Proficiency in Python 3.x, JSON, and YAML. Experience with SecOps automation and Cloud Security Posture principles. Hands-on experience with AWS Security Hub, AWS Foundational Security Best Practices, and AWS Lambda. Familiarity with AWS services including CloudWatch, SNS, and Boto3. Knowledge of AWS CloudFormation and Infrastructure as Code principles. Experience with tools such as EnCase, Wireshark, Hex Rays, IDA Pro, or Hex Workshop. Industry certifications such as CISSP, GCFE, GCFA, GCIA, GPEN, GWAPT, CEH, or EnCE. Ability to use scripting languages like Perl or Python in incident handling environments. Preferred Skills Experience with AWS GuardDuty, AWS Macie, Cloud Custodian, or Crowdstrike APIs. Familiarity with Jira APIs, ServiceNow APIs, Azure Log Analytics, or PowerBI/Power Query.