Cyber Security Engineer II safeguarding systems at MSK, involved with complex technologies in cancer care security. Lead threat investigations and apply technical knowledge for security improvements.
About the role
- Security Software Engineer with Red Team penetration testing expertise for advanced cybersecurity operations. Engaging in vulnerability assessments and secure software development for mission-critical systems.
Responsibilities
- Conduct Red Team operations and penetration testing in MDE environments
- Debug and reverse engineer software and analyze system logs (Windows Events, Linux syslog, boot logs, dmesg)
- Identify and mitigate vulnerabilities in compiled and source code
- Operate and administer systems running HP-UX, UNIX, Solaris, Linux, and Windows
- Apply DISA STIGs and NSA encryption technologies
- Design and implement deceptive technologies (e.g., honeypots)
- Perform static source code analysis and participate in code reviews
- Author recommendations for secure software design and contribute to SSAOM documentation
- Integrate and manage identity and access across hybrid environments using Entra ID
- Extend on-premises Active Directory with cloud identity solutions
- Conduct security research leading to CVE publication
- Participate in Capture the Flag (CTF) exercises (e.g., DEFCON, Hack the Box, OTW)
Requirements
- 5+ years in software engineering applied to program development, modeling, and simulation for DoD or IT systems
- 5+ years of hands-on experience with Linux and Windows environments
- COMPTIA Linux+ or FedVTE Linux+
- Microsoft MCSA or equivalent Windows training
- IAT Level II certification per DoD 8570.01 (or successor)
- Penetration Testing Certification (one or more of the following): Offensive Security: OSCP, OSCE, OSEE, OSWP; SANS: GPEN, GWAPT, GXPN, SEC642, SEC564; OSD Cyber Operation Academy Course (COAC) graduate
- Top Secret clearance
- SCI eligible
Benefits
- Health insurance
- Paid time off
- Professional development opportunities
Job title
Job type
Experience level
Salary
Not specified
Degree requirement
No Education Requirement
Tech skills
Location requirements
Principal Security Engineer working on network security lifecycle and threat management for Verizon’s 4G/5G Cloud Networks. Collaborating with multiple teams to enhance cybersecurity posture.
Cybersecurity Engineer at Verizon responsible for security lifecycle and effectiveness across networks. Leading incident response and vulnerability management in a hybrid work role.
Director of Security and Compliance safeguarding digital assets and data with a focus on cybersecurity and compliance. Leading risk management, stakeholder engagement, and team leadership initiatives.
Information Security Risk & Compliance Analyst at AAB managing compliance with ISO 27001, supporting enterprise risk assessments and enhancing information security systems.
Information Security Risk & Compliance Analyst at AAB focusing on ISO 27001 compliance and information security management. Collaborating across teams to ensure robust risk and compliance frameworks.
Information Security Risk & Compliance Analyst supporting the maintenance of ISO 27001 standards. Contributing to risk assessments and compliance across AAB’s Business Protection Team.
Security Principal at Optiv designing AI security solutions for clients, leveraging advanced security services and technologies. Driving pipeline generation and maintaining strong client relationships as a trusted advisor.
Cloud Security Architect supporting federal customer projects focused on architecture and security solutions. Conducting risk assessments and defining security requirements within a cloud environment.
Information Security Specialist responsible for enhancing cybersecurity posture through incident management and compliance. Collaborating with cross - functional teams to monitor threats and implement security measures.