Principal Cybersecurity Engineer
The Information Technology
Boston, United States of America
14 days ago
Role details
Contract type
Permanent contract Employment type
Full-time (> 32 hours) Working hours
Regular working hours Languages
English Experience level
Senior Compensation
$ 180KJob location
Boston, United States of America
Tech stack
Microsoft Windows
Amazon Web Services (AWS)
User Authentication
Azure
Business Software
Cloud Computing Security
Computer Security
Data Control
Data Security
Monitoring of Systems
Identity and Access Management
Intrusion Detection and Prevention
Python
Network Security
Powershell
Systems Development Life Cycle
Role-Based Access Control
Zero Trust Network Access
Security Information and Event Management
Systems Integration
Software Vulnerability Management
Data Logging
Scripting (Bash/Python/Go/Ruby)
Cloud Platform System
Data Classification
Mitre Att&ck
Information Technology
Cybercrime
Network Server
Devsecops
Job description
- Design and maintain security controls across network, endpoint, cloud, and identity platforms.
- Support Zero Trust architecture across systems, applications, infrastructure, and access models.
- Define and validate security requirements for new systems, applications, platforms, and technology changes.
- Embed security into system design, SDLC, and DevSecOps processes.
- Develop, tune, and improve detection use cases across SIEM, XDR, and related monitoring tools.
- Lead incident response activities, including investigation, containment, eradication, recovery, remediation, and post-incident analysis.
- Perform threat hunting for suspicious activity, adversary behavior, indicators of compromise, and potential incidents.
- Improve security operations through automation, orchestration, playbooks, and response workflows.
- Secure AWS, Azure, Microsoft 365, and other cloud platforms through control design, configuration, logging, monitoring, and workload protection.
- Implement and manage CSPM, cloud workload protection, and cloud security posture capabilities.
- Review cloud architectures, services, integrations, and deployments for security risk.
- Strengthen IAM, PAM, authentication, authorization, access governance, privileged access management, least privilege, and identity-based controls.
- Support identity-driven Zero Trust initiatives involving access policy, device trust, segmentation, and continuous verification.
- Support data classification, data protection, data monitoring, secure handling, and governance of sensitive information.
- Improve data protection capabilities beyond traditional DLP.
- Ensure secure data exchange with third parties, vendors, external partners, applications, and business platforms.
- Support vulnerability management through risk-based prioritization, remediation guidance, exposure analysis, and coordination with technology owners.
- Use threat intelligence to improve detection coverage, vulnerability prioritization, response planning, and control effectiveness.
- Evaluate emerging threats, attacker techniques, exploitation trends, and security control gaps.
- Support cybersecurity compliance related to internal policies, SEC, FINRA, audit requirements, regulatory obligations, and industry frameworks.
- Partner with risk, audit, compliance, governance, engineering, infrastructure, cloud, application, and business teams.
- Contribute to cybersecurity metrics, leadership reporting, governance documentation, and SIRT activities.
- Support vendor management, tool evaluation, process improvement, security awareness, and continuous improvement of cybersecurity capabilities.
Requirements
- Bachelor's degree in Cybersecurity, Information Technology, Computer Science, or related field, or equivalent experience.
- 8+ years of experience in cybersecurity engineering, security infrastructure, enterprise security operations, or related technical security roles.
- Experience with network security, endpoint security, cloud security, identity security, infrastructure security, or security engineering.
- Experience with detection engineering, incident response, threat detection, investigations, SIEM, XDR, or security monitoring tools.
- Experience with IAM, PAM, authentication, authorization, access governance, privileged access management, and least privilege.
- Strong knowledge of cybersecurity principles, security architecture, control design, and NIST CSF.
- Experience with incident response, including triage, investigation, containment, eradication, remediation, recovery, and post-incident review.
- Knowledge of networks, servers, operating systems, endpoints, cloud platforms, identity systems, and business applications.
- Strong analytical, problem-solving, documentation, collaboration, and communication skills., * CISSP, GIAC, GCIA, GCIH, GCED, or related security certifications.
- Cloud security certification or hands-on experience with AWS, Azure, Microsoft 365, or similar cloud environments.
- Experience in financial services, banking, capital markets, fintech, insurance, or highly regulated environments.
- Knowledge of SEC, FINRA, audit requirements, internal security policies, regulatory expectations, and control frameworks.
- Experience with Python, PowerShell, scripting, automation, workflow optimization, or operational tooling.
- Knowledge of MITRE ATT&CK, threat frameworks, adversary tactics, and attack techniques.
- Experience with Zero Trust, DevSecOps, CSPM, cloud workload protection, threat hunting, vulnerability management, identity security, SIEM, XDR, IAM, PAM, and security operations improvement.
- Additional Requirements
- Risk-based decision making.
- Ability to work across cybersecurity, engineering, infrastructure, application, cloud, risk, compliance, audit, and business teams.
- Ability to operate in a fast-paced environment with evolving threats and priorities.
- Commitment to staying current on cybersecurity threats, tools, technologies, frameworks, and industry trends.
Benefits & conditions
Pulled from the full job description
- Referral program
- Professional development assistance
- Tuition reimbursement
- Parental leave
- 401(k)
- Health insurance
- Retirement plan, * 401(k)
- 401(k) matching
- Dental insurance
- Employee assistance program
- Employee discount
- Flexible schedule
- Flexible spending account
- Health insurance
- Health savings account
- Life insurance
- Paid time off
- Parental leave
- Professional development assistance
- Referral program
- Retirement plan
- Tuition reimbursement
- Vision insurance