Cybersecurity Engineer

Now Hiring: Cybersecurity Engineer – Safeguard Global Operations at The Pasha Group

At The Pasha Group, protecting what moves the world is at the core of our mission. With operations spanning terminals, vessels, data centers, and cloud platforms, our cybersecurity practices are critical to maintaining safety, integrity, and business continuity.

We’re seeking a skilled and proactive Cybersecurity Engineer to lead enterprise-wide efforts in threat detection, incident response, system hardening, and compliance. If you're ready to defend complex environments—from onshore offices to shipboard systems—and play a pivotal role in shaping modern security infrastructure, this is your opportunity to make a meaningful impact.

Your Mission: Engineer Secure Solutions Across Land, Sea, and Cloud

Design, deploy, and optimize tools and strategies that protect our systems and support safe global operations.

Threat Detection & Incident Response: Lead the full incident lifecycle—from detection and triage to containment, eradication, and recovery

Security Assessments & Compliance: Coordinate pen tests, threat analysis, and audits for facilities, vessels, and data centers; support frameworks including NIST, ISO, and CMMC

Tool Optimization: Configure and manage cybersecurity tools such as Microsoft Defender, SIEM, IDS/IPS, EDR, Intune, and Azure Conditional Access

Endpoint & Cloud Security: Harden Windows and Azure environments, protect M365 data, and implement enterprise-grade access controls

Vulnerability Management: Identify and mitigate security weaknesses through structured patching, monitoring, and continuous improvement

Cyber Education & Awareness: Deliver training, facilitate tabletop exercises, and drive adoption of security best practices across business units

Collaboration: Partner with IT, vessel crews, port teams, and leadership to align security initiatives with operational needs

What You’ll Secure and Strengthen

From port terminals to remote vessels and cloud platforms—this role secures our most critical systems and information.

Conduct routine monitoring of security logs and alerts from multiple data sources

Execute patch management, image hardening, and endpoint protection initiatives

Investigate and document incidents; lead after-action reviews and lessons learned

Administer and optimize PAM solutions to protect privileged access

Improve the Microsoft Defender security score and enforce policy compliance

Support daily operations while preparing for evolving threats and future regulations

What You Bring to the Team

Technical expertise, critical thinking, and a hands-on approach to cybersecurity defense.

Education:

Bachelor’s or Master’s in Cybersecurity, Information Systems, Network Engineering, or related field

Certifications (Preferred):

TWIC, (ISC), GIAC, ISACA, CompTIA or equivalent

Experience:

5+ years in cybersecurity with expertise in threat detection and incident response

10+ years in IT infrastructure, networking, or cloud operations with proven problem-solving abilities

Technical Skills:

SIEM, EDR, IDS/IPS platforms

Azure, Microsoft 365, Windows Server, Intune, GPO, PAM

Strong command of patching, forensics, vulnerability scanning, and log analysis

Familiarity with regulatory standards and security frameworks (NIST, CMMC, ISO)

Why The Pasha Group?

Because real-world security requires real-world innovation—and you’ll be leading the way.

Established & Evolving: Join a company with over 75 years of trusted logistics leadership—and a forward-looking technology strategy

Critical Role: Make an impact across multiple business lines, including terminals, logistics, transportation, and maritime operations

Values-Driven Culture: Thrive in a team that lives by Excellence, Honesty & Integrity, Innovation, and Teamwork

Professional Growth: Take ownership of enterprise security initiatives and expand your influence in a high-visibility position

Work Environment & Travel

Environment: Corporate offices, vessel decks, port terminals, and outdoor yards

Conditions: Includes exposure to shifting surfaces, temperature extremes, and operational noise

Travel: Occasional travel to U.S. locations, including Hawaii

Schedule: Flexibility required, including potential evenings, weekends, and holidays based on operational needs

Ready to engineer the future of cybersecurity in global logistics?

Apply now and become our next Cybersecurity Engineer at The Pasha Group—where your expertise keeps the mission secure.

Screening Requirements

Background Checks

Must be fully vaccinated against COVID-19, except as prohibited by law.

The information included in this description has been designed to indicate the general nature and level of work performed by employees within this classification. It is not designed to contain or be interpreted as a comprehensive or exhaustive inventory of all duties, responsibilities, and qualifications required of employees assigned to this job.

The salary range listed is based on the geographic zone associated with this role: San Rafael, CA. If you are applying to work from a different location, the salary range may vary to align with the cost of labor and market conditions in that area. For applicants from other zones, we encourage you to reach out to us to confirm the relevant salary range for your specific location. Starting pay will be determined by job-related factors including experience, education, and business needs and may be modified at any time.

Zone 1: $130,000 - $160,000

The Pasha Group family of companies are EOE/AA Employers - Minority/Female/Veteran/Disabled/and other Protected Categories