Job Summary: The Cyber Security Engineer is a key member of the IT Security team, responsible for day-to-day security operations, security tooling management, and advancing Artera's cybersecurity maturity across cloud and on-premises environments. This role monitors and responds to internal and external security threats, performs in-depth technical analysis, and leads remediation efforts to restore and maintain secure business operations. This position plays a critical role in reducing risk to the organization and our customers by safeguarding Artera's systems, applications, and data.
Major Job Responsibilities:Security Architecture & Design - Lead architecting and implementing cybersecurity solutions across cloud and on-premises environments
- Maintain secure configurations for systems, networks, and applications in alignment with industry standards (CIS Benchmarks, NIST, ISO 27001)
- Conduct security architecture reviews and risk assessments of third-party systems and applications
- Support the development and enforcement of enterprise security policies, standards, and access controls
Security Operations & Incident Management - Coordinate security operations efforts with IT Operations to remediate vulnerabilities and reduce operational risk
- Lead technical investigation and response for high-severity security incidents, including alerts from Microsoft Defender, Microsoft 365 Security Center, and Microsoft Defender for Cloud Apps (CAS)
- Participate in incident response lifecycle activities, including containment, eradication, recovery, and post-incident reviews
- Stay current with emerging threats, vulnerabilities, and security technologies to continuously evolve defense mechanisms
Engineering & Automation - Engineer, deploy, and maintain security tooling and endpoint protection platforms
- Develop and automate processes for vulnerability detection, remediation, and compliance reporting, leveraging Microsoft security solutions and other enterprise tools
- Partner with IT and DevOps teams to integrate security into CI/CD pipelines, infrastructure-as-code (IaC), and application development workflows
Documentation, Governance & Mentorship - Create and maintain technical documentation, architectural diagrams, and incident response playbooks
- Contribute to security governance initiatives, audits, and risk assessments as needed
- Provide technical mentorship and guidance to junior analysts or engineers
Basic Qualifications:- 5+ years of experience in cybersecurity engineering, security operations, or infrastructure security
- Bachelor's degree in Cybersecurity, Computer Engineering, Information Systems, or related field preferred, or equivalent practical experience
- Industry certifications such as Security certifications (AZ-500, SC-200, CISSP, GIAC, etc.)
- Ability to lead incident response and communicate effectively during high-severity events
- Strong understanding of security frameworks (NIST, CIS, ISO 27001)
- Expertise in endpoint security tools, vulnerability management systems (e.g., Qualys, Tenable), and SIEMs (e.g., Sentinel, Splunk)
- Proficiency in scripting languages (e.g., PowerShell, Python, or Bash) for automation.
- Solid understanding of network protocols, security controls, and secure system administration (Windows/Linux/Mac)
- Experience in the utility and/or construction industry is preferred
- Experience with a complex, multi-entity organization is preferred
Physical Requirements:- Prolonged periods of sitting at a desk and working on a computer
- Must be able to lift up to 15 pounds at a time
