Job description
Join NexaSec Technologies, a leading cybersecurity solutions provider, as a Senior Cybersecurity Engineer in New York City. You will design, implement, and optimize security controls across cloud and on-prem environments for enterprise clients.
In this role, you will partner with product and engineering teams to enforce defense-in-depth, drive threat modeling, and ensure rapid containment of incidents.
Responsibility
- Lead security architecture reviews and threat modeling across cloud, containers, and microservices.
- Design and implement secure-by-default configurations, IAM, and access controls.
- Develop and maintain incident response playbooks; lead post-incident analyses and improvements.
- Oversee vulnerability management lifecycle: scanning, prioritization, and remediation coordination.
- Develop detections and security automation within SIEM/EDR platforms; drive proactive threat hunting.
- Collaborate with DevOps and engineering teams to implement security into CI/CD pipelines and IaC.
- Mentor engineers, lead security trainings, and promote a security-first culture.
Qualification
- Bachelor's degree in Computer Science, Cybersecurity, or related field; advanced degree preferred.
- 5+ years of cybersecurity engineering, secure software development, or equivalent
- Strong cloud security experience (AWS/Azure/GCP), IAM, network security, encryption, and data protection.
- Proficiency in threat modeling (STRIDE, MITRE ATT&CK) and incident response processes.
- Hands-on experience with SIEM (e.g., Splunk, QRadar), EDR (e.g., CrowdStrike), and security orchestration tooling.
- Scripting and automation skills (Python, PowerShell, Bash); familiarity with secure CI/CD pipelines.
- Excellent communication, collaboration, and ability to influence across teams.