Sr. Cybersecurity Engineer

Sr. Cybersecurity Engineer

Miami FL (Onsite M-TH: Remote on Fri)

Requirements:

Must have strong Email Security (Be able to analyze a phishing email or file for malware).

Ports

logs

SIEM

Investigations

Role & Responsibilities:

• Lead secure software development lifecycle (SDLC) practices across engineering teams.
• Design implement and maintain secure CI/CD pipelines integrating tools for SAST DAST and dependency scanning (e.g. CodeQL GitHub Advanced Security).
• Configure and maintain security in source control systems preferably GitHub.
• Develop maintain and monitor security controls across cloud environments with a strong preference for AWS.
• Configure and manage security logging and monitoring solutions particularly SIEM tools.
• Guide secure infrastructure using Terraform and other Infrastructure-as-Code (IaC) tools.
• Ensure security in serverless environments and API-based architectures.
• Implement and support Zero Trust Network Architecture working with SASE platforms and identity-based access controls.
• Deploy and manage DLP (Data Loss Prevention) strategies across cloud services endpoints and email.
• Build and maintain Standard Operating Procedures (SOPs) and engineering documentation including internal guides playbooks and runbooks.
• Identify security gaps in systems workflows or architecture and develop actionable solutions to address them.
• Perform security investigations and respond to alerts; fine-tune detection rules to reduce false positives and increase detection accuracy.
• Build and implement automation to streamline and optimize repetitive security tasks and incident response procedures.
• Conduct threat modeling risk assessments and vulnerability management activities.
• Lead incident response and forensic investigations on both Windows and Linux systems.
• Work collaboratively with IT DevOps and engineering teams to drive security best practices.
• Guide and mentor junior team members fostering a knowledge-sharing culture.
• Educate developers and engineers on OWASP Top 10 and secure coding standards.
• Stay current with evolving threats tools and techniques in cybersecurity and cloud computing.

Qualifications:

• 5 years in security engineering with a strong application and cloud security background.
• Deep understanding of secure development practices and integrating security into the Software Development Life Cycle (SDLC).
• In-depth knowledge of OWASP Top 10 CWE and secure web practices.
• Hands-on experience with:
• Code scanning tools: CodeQL SAST/DAST dependency scanners.
• CI/CD tooling: GitHub Actions Jenkins or similar.
• SIEM: Implementation and log ingestion (e.g. Splunk ELK or equivalent).
• Cloud security: AWS preferred; experience with IAM VPCs KMS and other AWS services.
• Proven experience designing and implementing Zero Trust architectures and working with SASE platforms (e.g. Zscaler Netskope or Prisma Access).
• Strong experience with DLP solutions across endpoints cloud and messaging platforms.
• Strong grasp of networking protocols TLS DNS HTTP and web application architectures.
• Strong experience with both Linux and Windows environments.
• Experience with email security (e.g. DMARC SPF DKIM phishing detection).
• Ability to create and maintain technical documentation SOPs playbooks and automation scripts.
• Proficiency in scripting or programming languages (Python Bash JS etc.).
• Familiarity with bug bounty platforms or responsible disclosure programs.
• Experience with security frameworks like Zero Trust NIST 800-207 or ISO 27001.
• Infrastructure as Code: Terraform (primary) CloudFormation or others.
• Comfortable with on-call rotations
• Containers and orchestration: Docker Kubernetes including RBAC pod security policies etc.
• Serverless architectures: AWS Lambda or similar.