Cyber Security Specialist

Position Summary

We are seeking an experienced Cyber Security Specialist with 10 years of progressive, hands-on experience across multiple security domains. This role requires a self-directed, analytical professional with deep operational expertise in modern security environments.

The ideal candidate combines business acumen and strong technical capability with sound judgment, is comfortable operating across both information technology (IT) and operational technology (OT) environments, and can lead security investigations, advise on best practices, and drive measurable risk reduction across the organization.

Key Responsibilities

Endpoint Security & Hardening

• Develop and maintain secure configuration baselines for Windows, macOS, Linux, and mobile platforms.
• Administer and tune EDR/XDR solutions, validate detection efficacy, and optimize response workflows.
• Support application control, encryption, and secure configuration management initiatives.

Managed Detection & Response (MDR) & Threat Detection

• Serve as primary liaison to MDR/SOC providers; analyze escalated alerts and improve detection tuning.
• Integrate threat intelligence into detection strategies and risk mitigation efforts.
• Continuously evaluate detection coverage against evolving attack techniques.

Incident Investigation & Response

• Lead technical response efforts for security incidents, including containment, eradication, and recovery.
• Conduct log analysis, endpoint forensics, and root-cause investigations.
• Produce executive-ready incident summaries, lessons learned, and remediation plans.

Firewall & Network Security

• Perform advanced firewall and rule-set audits to ensure configuration integrity and policy alignment.
• Evaluate segmentation strategies, Zero Trust controls, and traffic flow architecture.
• Recommend improvements to perimeter and internal network security controls.

Governance, Risk & Continuous Improvement

• Apply NIST Cybersecurity Framework (CSF) and CIS Critical Security Controls to guide program maturity.
• Participate in risk assessments and contribute to development of security policies, standards, and procedures.
• Drive cross-functional collaboration to strengthen organizational security posture.

Cloud & Hybrid Security

• Assess and secure cloud-based infrastructure and SaaS platforms.
• Review identity, authentication, and access control models within hybrid environments.
• Support implementation of Zero Trust architecture principles.

Qualifications & Experience

• 10 years of progressive cybersecurity experience across multiple domains, including firewall management, network security, vulnerability management, incident response, threat hunting, MDR/SOC operations, endpoint security, or related areas.
• Strong working knowledge of TCP/IP, routing, switching, encryption, authentication protocols, system hardening, and modern attack techniques.
• Experience with cloud security principles and Zero Trust architecture.
• Demonstrated experience operating in or alongside Security Operations teams.
• Ability to work independently, take initiative, and drive outcomes with minimal oversight.
• Excellent written and verbal communication skills, including the ability to translate technical findings into business-aligned recommendations.
• Working knowledge of NIST CSF, CIS Controls, and general security governance practices.
• Industry certifications preferred (ISC2, ISACA, GIAC, or equivalent).

Preferred Attributes

• Strong analytical and problem-solving skills.
• Composed decision-making under pressure.
• Continuous learner who stays current on emerging threats and defensive techniques.
• Collaborative mindset with a willingness to mentor junior staff.
• Ability to build strong cross-functional relationships that enhance operational efficiency and risk reduction.
• Technical and business writing and presentation skills