Job Requirements
Gunter AFB, AL
Top Secret/SCI Polygraph not specified
Mid Level Career (5+ yrs experience)
Salary not specified
Join Premium to unlock estimated salaries 
Job Description
The Cybersecurity Engineer will play a critical role in strengthening the organization’s security posture through threat detection, incident response, vulnerability management, and secure systems engineering.
The ideal candidate possesses strong technical expertise in cybersecurity operations, infrastructure security, and risk mitigation, with the ability to work collaboratively across IT and business teams in a fast-paced environment.
________________________________________
Key Responsibilities
Security Engineering & Administration
• Design, implement, configure, and maintain cybersecurity technologies and controls across enterprise environments.
• Manage and support firewalls, intrusion detection/prevention systems (IDS/IPS), endpoint protection platforms, VPNs, and security monitoring solutions.
• Implement system hardening standards and secure configuration baselines for servers, workstations, cloud platforms, and network devices.
• Support identity and access management (IAM), multi-factor authentication (MFA), and privileged access management initiatives.
• Develop and maintain security architecture documentation, procedures, and technical standards.
Threat Detection & Incident Response
• Monitor security events and alerts through SIEM and endpoint detection tools.
• Investigate cybersecurity incidents, conduct root cause analysis, and coordinate remediation activities.
• Perform threat hunting and support proactive detection initiatives.
• Respond to security breaches, malware infections, phishing incidents, and unauthorized access attempts.
• Document incident findings and provide recommendations for improving security controls.
Vulnerability & Risk Management
• Conduct vulnerability assessments and coordinate remediation efforts.
• Perform security risk analyses and support compliance initiatives.
• Assist with penetration testing activities and remediation validation.
• Support audit readiness efforts and maintain compliance with applicable security frameworks and regulatory requirements.
________________________________________
Required Qualifications
• Active TS/SCI required.
• Certifications: IAM certification
• Familiarity with zero-trust architecture, identity and access management (IAM)
• Experience with cloud security platforms such as AWS, Azure, or Google Cloud
• Knowledge of scripting or automation tools such as Python, PowerShell, or Bash.
• Experience supporting Security Operations Center (SOC) activities.
• Knowledge of cybersecurity principles, threat vectors, attack methodologies, and defense strategies.
• Experience with enterprise security tools including SIEM, IDS/IPS, EDR, vulnerability scanners, and firewalls.
• Understanding of networking concepts including TCP/IP, DNS, VPNs, routing, and switching.
The ideal candidate possesses strong technical expertise in cybersecurity operations, infrastructure security, and risk mitigation, with the ability to work collaboratively across IT and business teams in a fast-paced environment.
________________________________________
Key Responsibilities
Security Engineering & Administration
• Design, implement, configure, and maintain cybersecurity technologies and controls across enterprise environments.
• Manage and support firewalls, intrusion detection/prevention systems (IDS/IPS), endpoint protection platforms, VPNs, and security monitoring solutions.
• Implement system hardening standards and secure configuration baselines for servers, workstations, cloud platforms, and network devices.
• Support identity and access management (IAM), multi-factor authentication (MFA), and privileged access management initiatives.
• Develop and maintain security architecture documentation, procedures, and technical standards.
Threat Detection & Incident Response
• Monitor security events and alerts through SIEM and endpoint detection tools.
• Investigate cybersecurity incidents, conduct root cause analysis, and coordinate remediation activities.
• Perform threat hunting and support proactive detection initiatives.
• Respond to security breaches, malware infections, phishing incidents, and unauthorized access attempts.
• Document incident findings and provide recommendations for improving security controls.
Vulnerability & Risk Management
• Conduct vulnerability assessments and coordinate remediation efforts.
• Perform security risk analyses and support compliance initiatives.
• Assist with penetration testing activities and remediation validation.
• Support audit readiness efforts and maintain compliance with applicable security frameworks and regulatory requirements.
________________________________________
Required Qualifications
• Active TS/SCI required.
• Certifications: IAM certification
• Familiarity with zero-trust architecture, identity and access management (IAM)
• Experience with cloud security platforms such as AWS, Azure, or Google Cloud
• Knowledge of scripting or automation tools such as Python, PowerShell, or Bash.
• Experience supporting Security Operations Center (SOC) activities.
• Knowledge of cybersecurity principles, threat vectors, attack methodologies, and defense strategies.
• Experience with enterprise security tools including SIEM, IDS/IPS, EDR, vulnerability scanners, and firewalls.
• Understanding of networking concepts including TCP/IP, DNS, VPNs, routing, and switching.
group id: 10110967