The role of the Cybersecurity Engineer is challenging and rewarding. It requires a strong technical skill set, as well as business acumen and interpersonal skills. Being able to break down highly technical concepts to non-technical users is critical to client success. The overall focus of the job at Impact is always excellent customer service. We strive to ensure that our clients are happy, and that their networks are secure and running optimally.
The Cybersecurity Engineer will perform the following tasks:
- Working with a Business Development Specialist, you will act as a security subject matter expert in prospective client engagements. This is a supporting role to help identify the specific compliance and security needs of the client.
- Conduct pre-assessment interviews to determine client engagement with cybersecurity: current resources, knowledge, systems already in place, etc.
- This process often includes an infrastructure-focused penetration test on the internal and external attack surfaces for organizations in which Cybersecurity Engineers attempt to gain privileged access to systems, perform the lateral movement, and demonstrate persistent access. Risk Audits may also include several other components. Social engineering tests designed to measure the level of security awareness of the client’s staff. And web application penetration testing in which the Cybersecurity Engineer tests vulnerabilities and misconfigurations in attempts to gain access to restricted resources.
- The Cybersecurity Engineer must analyze the data to produce a comprehensive report which outlines findings and recommendations.
- Conduct Risk Audit review meetings in which reports will be delivered to clients. Cybersecurity Engineers will be expected to effectively explain their findings and recommendations to technical, executive, and legal members of the client’s team during a Risk Audit review meeting.
- Implement the recommendations made during the Risk Audit process. This requires the technical skills to implement the core security stack.
- Determine maintenance requirements for the client. This includes ongoing vulnerability management, re-occurring penetration testing, systems monitoring, and analysis, and plans to upgrade.
Cybersecurity engineers perform other duties such as developing new attack strategies and creating tools to support team activities. Cybersecurity engineers are also expected to learn and share new skills through independent research, formal training, team collaboration, and community events.
- Comfortable working with sales team members in client-facing meetings
- Functional understanding of operating systems, networks, and IT architecture
- Experience performing penetration tests against at least two of the following: external networks, internal networks, web applications, cloud platforms, mobile applications, social engineering, phishing, physical security, wireless networks
- Experience analyzing vulnerabilities and demonstrating attacks against found security flaws
- Effective at communicating findings and mitigation strategies to clients including technical staff, executive leadership, and legal counsel
- Experience with open source tools used for security testing such as nmap, impacket, Bloodhound, OpenVAS, Burp Suite, Metasploit, nmap, etc.
- Experience in designing secure networks, systems, and application architectures
- A solid understanding of security controls such as:
- Security information and event management (SIEM)
- Network detection and response (NDR)
- Endpoint antimalware (EDR/MDR)
- Web application firewalls (WAFs)
- Content filters and proxies
- Enterprise password management
- Spam filters
- Data loss prevention (DLP)
- The role of policies within an organization
- User security awareness and training tools
- College graduate with focus on Computer Science, Cybersecurity, or Information Systems or equivalent experience
- A valid driver's license and clean driving record
- Able to do some light lifting
Bonus points for:
- Active community participation through conferences, groups, open-source tool authoring, or other activities
- Information security certifications such as OSCP, CISSP, GSEC, GPEN, CISM, Security+, CEH
- Advanced experience with at least one scripting language (Perl, Python, PowerShell)
- A thorough understanding of the CIS CSC top 20, NIST, MITRE ATT&CK, OWASP top 10
- Working knowledge of compliance requirements including HIPAA, PCI-DSS, GDPR, and CMMC
- Ability to obtain a security clearance