Our client is currently seeking a Cyber Security Engineer responsible for designing, implementing, and maintaining the security infrastructure of the organization's computer systems and networks. They analyze potential threats, develop security measures, and monitor systems for any breaches or vulnerabilities. They also collaborate with other IT professionals to ensure that security protocols are in place and up to date. This Cyber Security Engineer will play a crucial role in protecting sensitive information and preventing unauthorized access to data.
This role is Hybrid in Scottsdale, AZ - must be comfortable going onsite!
Not open to relocation, not open to C2C!!
Must have experience with at least 2 of the following areas to be considered:
Rapid7 InsightVM
Netwrix PolicyPAK
Varonis
Google Chronicle
Reliaquest: Brand Protection
DarkTrace
This job will have the following responsibilities:
Design, implement, and manage security measures for the protection of computer systems, networks, and information.
Identify and define system security requirements and recommend solutions to improve security.
Configure and troubleshoot security infrastructure devices, including SSO/Federation services (Azure AD, Okta, Ping, etc.).
Develop and implement API authorization mechanisms, including OAuth2, shared key, dynamic secrets, key management, and certificates.
Ensure AD security through OU delegation, object-level security, domain security, group/role security, and management of authentication protocols such as Kerberos and NTLM.
Conduct User Access Reviews, analyzing entitlements, roles, permission sets, and identity correlation to prevent unauthorized access.
Manage the identity lifecycle, overseeing joiner, mover, and leaver processes across various identity platforms.
Implement and manage privileged access management solutions, including session management, secrets vaulting, and Just-in-Time access.
Oversee PKI security, including Certificate Authority management and TLS 1.2+ implementation.
Utilize PowerShell scripting for discovery and governance processes.
Develop and implement MFA strategies, including scoping conditional access and intelligent prompting.
Design and enforce an effective RBAC program with automated controls, understanding both business and technical roles.
Ensure segregation of duties, manage toxic combinations, and uphold the principle of least privilege, especially in DevOps environments.
Qualifications & Requirements:
Bachelor's degree in Computer Science, Information Security, or related field.
3-5 years minimum of experience in cybersecurity, with expertise in at least two of the six listed areas above (any candidate who does not meet this requirement will be immediately rejected).
Strong understanding of network security, protocols, and encryption technologies.
Proficient in scripting languages, particularly PowerShell.
Experience with cloud security principles and technologies.
Excellent problem-solving skills and the ability to work under pressure.
Strong communication and teamwork skills.
Contact: rhartmann@judge.com
This job and many more are available through The Judge Group. Find us on the web at www.judge.com
