Senior Cybersecurity Analyst

Job Title

Senior Cyber Security Engineer (7+ Years Experience)

Location

NY/NJ, United States (Onsite / Hybrid / Remote options)

Job Type

Full-Time / Contract

Overview

We are seeking a highly skilled Senior Cyber Security Engineer with 7+ years of hands‑on experience to design, implement, and manage enterprise‑level security solutions. The ideal candidate will have deep expertise in threat detection, incident response, cloud security, and modern security frameworks, ensuring the protection of organizational systems, applications, and data.

This role requires a proactive mindset, strong analytical skills, and the ability to collaborate across engineering, DevOps, and compliance teams to build a robust security posture.

Key Responsibilities

• Design, implement, and maintain enterprise security architecture across on‑prem and cloud environments (AWS, Azure, GCP)
• Monitor, detect, and respond to security incidents using SIEM tools like Splunk, QRadar, or Microsoft Sentinel
• Lead incident response, root cause analysis, and remediation efforts for security breaches and vulnerabilities
• Conduct vulnerability assessments and penetration testing using tools like Nessus, Qualys, Burp Suite, and Metasploit
• Implement and manage Identity & Access Management (IAM), including SSO, MFA, and RBAC policies
• Secure cloud‑native applications and infrastructure using best practices (Zero Trust, least privilege, etc.)
• Collaborate with DevOps teams to integrate security into CI/CD pipelines (DevSecOps practices)
• Perform code and application security reviews (SAST, DAST, SCA tools such as Checkmarx, Veracode, Snyk)
• Ensure compliance with industry standards and frameworks (NIST, ISO 27001, SOC 2, CIS benchmarks)
• Develop and maintain security policies, procedures, and incident response plans
• Conduct security awareness training and guide teams on secure coding practices
• Stay updated with emerging threats, vulnerabilities, and cybersecurity trends

Required Technical Skills

• Security Tools: SIEM (Splunk, QRadar, Sentinel), EDR/XDR (CrowdStrike, Defender), SOAR platforms
• Cloud Security: AWS Security Hub, Azure Security Center, GCP Security tools
• Vulnerability Management: Nessus, Qualys, Rapid7
• Application Security: SAST, DAST, SCA tools (Snyk, Veracode, Checkmarx)
• Network Security: Firewalls, IDS/IPS, VPNs, Zero Trust Architecture
• Programming/Scripting: Python, Bash, PowerShell
• DevSecOps: CI/CD tools (Jenkins, GitHub Actions, GitLab CI), container security (Docker, Kubernetes)
• Identity & Access Management: Okta, Azure AD, Ping Identity
• Compliance Frameworks: NIST, ISO 27001, SOC 2, HIPAA (if applicable)

Preferred Qualifications

• Bachelor’s or Master’s degree in Computer Science, Cybersecurity, or related field
• 7+ years of experience in cybersecurity, information security, or related roles
• Certifications such as CISSP, CISM, CEH, OSCP, or Security+
• Experience with threat intelligence platforms and MITRE ATT&CK framework
• Strong understanding of Zero Trust architecture and modern security models
• Hands‑on experience with container and Kubernetes security
• Excellent problem‑solving, communication, and stakeholder management skills

Nice to Have

• Experience in regulated industries (Finance, Healthcare, Insurance)
• Knowledge of data security, encryption, and DLP tools
• Exposure to AI/ML‑based threat detection or security automation

Compensation

Pay: $102,830.84 - $133,839.28 per year

Benefits

• Dental insurance
• Health insurance

Work Location

In person