Cyber Security Engineer

Job Summary: The Cyber Security Engineer is a key member of the IT Security team, responsible for day-to-day security operations, security tooling management, and advancing Artera's cybersecurity maturity across cloud and on-premises environments. This role monitors and responds to internal and external security threats, performs in-depth technical analysis, and leads remediation efforts to restore and maintain secure business operations. This position plays a critical role in reducing risk to the organization and our customers by safeguarding Artera's systems, applications, and data., * Lead architecting and implementing cybersecurity solutions across cloud and on-premises environments

• Maintain secure configurations for systems, networks, and applications in alignment with industry standards (CIS Benchmarks, NIST, ISO 27001)
• Conduct security architecture reviews and risk assessments of third-party systems and applications
• Support the development and enforcement of enterprise security policies, standards, and access controls

Security Operations & Incident Management

• Coordinate security operations efforts with IT Operations to remediate vulnerabilities and reduce operational risk
• Lead technical investigation and response for high-severity security incidents, including alerts from Microsoft Defender, Microsoft 365 Security Center, and Microsoft Defender for Cloud Apps (CAS)
• Participate in incident response lifecycle activities, including containment, eradication, recovery, and post-incident reviews
• Stay current with emerging threats, vulnerabilities, and security technologies to continuously evolve defense mechanisms

Engineering & Automation

• Engineer, deploy, and maintain security tooling and endpoint protection platforms
• Develop and automate processes for vulnerability detection, remediation, and compliance reporting, leveraging Microsoft security solutions and other enterprise tools
• Partner with IT and DevOps teams to integrate security into CI/CD pipelines, infrastructure-as-code (IaC), and application development workflows

Documentation, Governance & Mentorship

• Create and maintain technical documentation, architectural diagrams, and incident response playbooks
• Contribute to security governance initiatives, audits, and risk assessments as needed
• Provide technical mentorship and guidance to junior analysts or engineers

• 5+ years of experience in cybersecurity engineering, security operations, or infrastructure security
• Bachelor's degree in Cybersecurity, Computer Engineering, Information Systems, or related field preferred, or equivalent practical experience
• Industry certifications such as Security certifications (AZ-500, SC-200, CISSP, GIAC, etc.)
• Ability to lead incident response and communicate effectively during high-severity events
• Strong understanding of security frameworks (NIST, CIS, ISO 27001)
• Expertise in endpoint security tools, vulnerability management systems (e.g., Qualys, Tenable), and SIEMs (e.g., Sentinel, Splunk)
• Proficiency in scripting languages (e.g., PowerShell, Python, or Bash) for automation.
• Solid understanding of network protocols, security controls, and secure system administration (Windows/Linux/Mac)
• Experience in the utility and/or construction industry is preferred
• Experience with a complex, multi-entity organization is preferred

Physical Requirements:

• Prolonged periods of sitting at a desk and working on a computer
• Must be able to lift up to 15 pounds at a time