Cyber Security Engineer

Our client, a highly reputable and long-standing mid-size real estate investment trust, is hiring a full-time Infrastructure Cyber Security Engineer. This is a hybrid position (3x/week onsite) and based in Midtown Manhattan (NYC). The schedule will typically be M-W onsite, Th-Fri remote. In order to be considered, you MUST be hands-on and technical. This is NOT an advisory role where you are writing policies, analyzing data, and simply responding to alerts. You will be in the systems building out secure infrastructure, work with both servers and networking, and much more. If you come from IT infrastructure and pivoted into Cyber Security, that would be a huge leg up. You will be a point person for the firm's MSSP, meaning if there is an alert from them, you will be the back and forth between that investigation. You will need to make security decisions based on the infrastructure. Reporting up to the Director of IT Infrastructure & Security, it is imperative that you also have strong communication skills to heavily interact with key high-level stakeholders, including up to the CIO. General Overview: You are responsible for safeguarding computer networks and systems against cyber threats. This includes designing, implementing, and maintaining security measures to prevent unauthorized access and attacks. You will oversee the management of the companies Incident response program. Job Responsibilities: Design and implement security controls for network, servers, storage, cloud, and virtualization platforms to protect against cybersecurity threats and exposed vectors Configure and maintain security settings within Azure/M365 tenant to align firms requirements Configure and maintain firewalls, IDS/IPS, VPNs Implement network segmentation to isolate critical assets Support, manage, and implement email security tools such as MS Defender Suite, Mimecast, and Qualys Improve core functions of Incident Response including threat detection/prevention, security monitoring, digital forensics, vulnerability management, and more Manage the MSSP and other Cyber Security vendors/projects Ideal Requirements: 5-7 years of Information Systems experience 5 years of relevant information/cyber security experience (Operations or Engineering) BS or MS Degree is preferred (although not required) Full working knowledge of the entire Microsoft 365 Suite, including M365 Administration Scripting and Automation experience (ideally using PowerShell) At least 1 year of experience in PowerShell Modules for Exchange Online/On-Prem, SharePoint, Teams, OneDrive, Azure AD, AD, and Windows (Client/Server) At least 1 year of experience with enterprise cyber security products such as Secure Email Gateway (Mimecast, Proofpoint, or Office365 Exchange) Hands-on experience managing security infrastructure (i.e. firewalls, IDS/IPS, WAFs, endpoint protection, SIEM, log management technology, vulnerability management, email security) Experience securing the deployment of applications and infrastructure into public cloud services Preferences: Full-stack knowledge of IT Infrastructure (i.e. applications, databases, Azure managed instances, Windows OS, Hypervisors, IP networks such as LAN/WAN, Containers/Kubernetes) Networking experience in routing, switching, and/or firewalls (Cisco ASAs or Palo Altos welcome) Direct experience designing IAM technologies and services (i.e. AD, LDAP, Okta, Ping, Azure AD) Strong working knowledge of IT Service Management (i.e. ITIL-related disciplines such as change/configuration/asset/incident/problem management)