Job description
Join NebulaSec Technologies as a Senior Cybersecurity Engineer. You will architect and implement secure systems, drive incident response, and advance our security roadmap. This role blends hands-on engineering with strategic leadership across cloud and on-prem environments.
We value proactive defenders who stay ahead of threats, design scalable security controls, and communicate clearly with stakeholders across product, engineering, and executive teams.
Responsibility
- Develop and implement security controls across cloud, on-prem, and hybrid environments to protect critical assets.
- Lead incident response, perform root-cause analysis, and drive post-incident improvements and reporting.
- Design threat modeling, security architecture reviews, and secure-by-design practices for new products and features.
- Manage vulnerability management lifecycle, including scanning, remediation coordination, and risk assessments.
- Analyze security telemetry from SIEM, EDR, IDS/IPS, and threat intel sources; develop detections and playbooks.
- Collaborate with DevOps and engineering teams to secure CI/CD pipelines and automated deployments.
- Mentor junior security engineers, review code and configurations, and foster a security-first culture.
- Perform third-party risk assessments and security reviews of vendor relationships and integrations.
Qualification
- Bachelor's degree in computer science, information technology, cybersecurity or related field, or equivalent practical experience.
- 5+ years of professional cybersecurity engineering experience with a track record of delivering secure systems.
- Strong knowledge of network security, cloud security (AWS, Azure, GCP), IAM, encryption, and secure software development lifecycle.
- Experience with SIEM (such as Splunk or Elastic), EDR, vulnerability management tools, and incident response tooling.
- Hands-on experience with incident response, digital forensics, malware analysis, and recovery planning.
- Professional certifications such as CISSP, CISM, CCSP, or GSEC are preferred.
- Proficiency in scripting and automation (Python, Bash/PowerShell) and infrastructure as code (Terraform, CloudFormation).
- Excellent communication, collaboration, and ability to influence across technical and non-technical stakeholders.