Sr Security Engineer
Description:
Full-time
Description
The Sr Security Engineer is responsible for maintaining and improving the overall security posture, threat hunting, vulnerability management, and incident response for our infrastructure and application hosting environments. This role would also lead internal and external penetration testing exercises, perform risk assessments, and work with security service providers for any security investigations. You will play a crucial role in implementing and maintaining security controls to ensure compliance with FedRAMP, CMMC, and ITAR compliance requirements.
Responsibilities:
Threat Hunting. Proactive review of logs, security alerts, and actively scanning and monitoring to discover any potential threat actors or security risks in the environment.
Penetration Testing. Perform penetration tests on our internal networks and web applications upon the release of major version upgrades or implementations. Work with 3rd party providers on performing internal and external penetration tests as required. Work through remediation of any findings, collaborating with other teams as needed.
Security Improvements. Collaborate with other teams on the implementation of new security controls, technologies, or processes that will improve our overall security posture.
Architecture Reviews. Review application and infrastructure architectures to identify any potential security gaps. Validate or test security controls to ensure that client data is not accessible by unauthorized users.
Attack Surface Management. Provide regular scanning and investigations on Internet exposed services to identify any risks and validate that existing security controls are effective in blocking attackers’ attempts to penetrate our security defenses.
Vulnerability Management. Responsible for the ongoing management of vulnerability management tools and oversight of vulnerability remediation efforts working with IT infrastructure and applications teams. Perform vulnerability scanning on any new applications or infrastructure resources that are deployed. Report on vulnerabilities and perform risk assessment of any discovered vulnerabilities.
Incident Detection & Response. Responsible for working with and managing MDR services for security monitoring and reviewing any suspicious activity or incidents that are escalated. Lead the investigation, containment, and remediation efforts for any escalated security incidents.
SIEM. Leverage our SIEM platform for event correlation and threat hunting. Oversee the development of dashboards, event triggers, and alarms for incident management.
Infrastructure Hardening. Work with DevOps and Operations teams in hardening servers and other services following industry benchmarks such as CIS.
Collaboration and Integrations. Work in close collaboration with DevOps and Operations teams to integrate security practices and processes into the development and deployment processes. Work with teams to integrate tooling for vulnerability management and security log collections. Provide guidance and training to team members on security processes as needed.
Security Threat Research. Leverage industry resources to stay current on evolving threats and security risks.
Compliance & Risk Management. Develop and enforce security policies and procedures to maintain FedRAMP, CMMC, and ITAR compliance within our hosting environments. Collaborate with internal teams to ensure that all cloud deployments adhere to regulatory and compliance requirements. Prepare, manage, and present evidence for audits, compliance reviews, and certifications.
Requirements
Bachelor’s or Master’s degree in Computer Science, Cybersecurity, or related field.
Relevant certifications such as CISSP, OSCP, GIAC, or AWS Security Specialist.
Minimum of 5 years of experience in cybersecurity roles, with at least 2 years in a senior or lead capacity.
Proven expertise in cybersecurity best practices, threat hunting, and performing risk assessments.
Experience and strong understanding of NIST 800-53 security standards as well as FedRAMP and CMMC security controls.
Experience working with SIEM tools and performing log searches for event correlation.
Experience using vulnerability management platforms and penetration testing tools.
Experience using MDR/XDR endpoint protection services and network-based security solutions such as IPS firewalls, WAF, and traffic analyzers.
Experience scripting with PowerShell, Bash, Python and using Ansible or other DevOps tools
Strong understanding of Windows, Linux, Active Directory, database systems, storage systems, and virtualization platforms.
Strong knowledge of AWS security services and features, including IAM, KMS, CloudTrail, and Security Hub is a plus.
Ability to work independently and manage multiple priorities in a fast-paced environment.
Ability to collaborate with other teams across multiple time zones and geographies.
Strong analytical and problem-solving skills.
Excellent communication skills with the ability to convey complex security concepts to both technical and non-technical stakeholders.
Benefits & Work Conditions: Repario offers an extensive array of benefits that help our employees improve their quality of life. The following benefits create added value to the work experience and make us a premier employer:
100% Telecommute positions
Health, Dental and Vision Insurance
401K with Matching
Paid Family Leave
Flexible Time Off (FTO)
About the Business:
Repario is an international, end-to-end eDiscovery service provider founded in 2023. Established via the merger of five established eDiscovery companies, each bringing their own expertise and specialty areas to our consolidated practice, Repario offers a comprehensive suite of services unmatched elsewhere in the industry. We provide expert digital forensics, incident response, and eDiscovery solutions focused primarily on the legal sector. We are a growing, entrepreneurial company seeking top-tier talent to help us provide exceptional value to our existing clients, while assisting in growing our market share and geographic footprint. We prioritize accuracy, security and timely delivery and are dedicated to providing our clients with the highest level of service and support.
Salary Description
$80,000 - $120,000 per year