Requisition Number: 29740
Job SummaryThe Global Cyber Security Engineer will lead the identification, assessment, and remediation of external attack surface and cloud security risks across the organization. This individual will work under the direction of the Global Manager - Cyber Security Threat Intelligence & Protection to drive the external and cloud exposure management program, conduct external penetration testing activities, manage attack surface management (ASM) tooling, and ensure cloud environments maintain a strong security posture. The role also provides secondary support for network security, OT/ICS security, and identity and authentication functions in collaboration with other team members.
Key Characteristics:- Strong understanding of security and infrastructure architectures and technologies.
- Experience in developing, implementing, advancing, and supporting security tools and procedures.
- Demonstrated ability to troubleshoot with limited information.
Duties and Responsibilities- Own and drive the external exposure management program: manage attack surface management (ASM) tooling, continuously identify and prioritize externally exposed assets and vulnerabilities, develop remediation strategies, and track remediation through to closure with relevant IT and business stakeholders.
- Plan and coordinate external penetration testing with tooling and 3rd party engagements, including scoping, vendor management, results analysis, and remediation follow-up. Develop and maintain internal red team/pen test capabilities and tooling to assess the organization's external attack surface on an ongoing basis.
- Assess and improve cloud security posture across various cloud environments. Identify misconfigurations, excessive exposure, and policy violations; partner with cloud and infrastructure teams to drive remediation.
- Contribute to cloud security architecture standards and guardrails.
- Interpret various federal, state, and industry frameworks for security, including but not limited to PCI DSS, SOX, ISO/IEC 27001, OWASP Top Ten, CIS Critical Security Controls, NIST, and advises management of any changes. Participate in security audits and assessments.
- Manage and optimize vulnerability management tooling (e.g., InsightVM); analyze scan results, develop and maintain reporting and dashboards, and coordinate with IT teams on prioritization and remediation tracking. Interpret relevant security frameworks (PCI DSS, NIST, CIS Controls) and advise on compliance implications.
- Provide secondary support for network security and OT/ICS security functions, including firewall rule review, network segmentation assessments, and OT-specific security architecture considerations. Serve as backup for identity and authentication platforms (e.g., RSA) as needed.
- Contribute to security governance activities including policy documentation, security audits, and compliance assessments. Support ongoing risk assessment processes and communicate findings to both technical and non-technical stakeholders.
- Develop and maintain comprehensive documentation related to security policies, procedures, and configurations.
- Collaborate effectively with other IT teams, business units, and vendors. Communicate security risks and recommendations to both technical and non-technical audiences.
- Stay up to date on the latest security threats, vulnerabilities, and technologies. Research and evaluate new security solutions to improve our security posture.
- Mentor junior security team members and provide technical guidance.
Knowledge, Skills and Abilities- Advanced analytical and problem-solving skills.
- Strong interpersonal skills.
- Strong working knowledge of networking, routing, protocols, ports and services.
- Experience with attack surface management (ASM) platforms, vulnerability management tools (e.g., InsightVM/Nexpose), external pen testing tools and frameworks (e.g., Metasploit, Burp Suite, NMAP, Wireshark), and cloud security posture management (CSPM) tools.
- Hands-on experience with penetration testing and/or red team concepts and methodologies (e.g., PTES, MITRE ATT&CK). Familiarity with automated pentesting platforms is a big plus.
- Working knowledge of Linux and Microsoft Windows operating systems, Active Directory, and server / endpoint skills and experience.
- Demonstrated experience in conducting security assessments.
- Familiarity with OT/ICS security concepts and environments, including network segmentation, industrial protocols, asset visibility, and OT-specific threat considerations (e.g., Purdue model, IEC 62443).
- Understanding of identity and authentication platforms and their security implications, including MFA, token-based authentication, and privileged access management (e.g., RSA, PAM solutions).
- Strong working knowledge of various cloud computing environments, including cloud-native security services, IAM, and common cloud misconfigurations and exposure patterns.
- Experience with scripting languages (e.g., PowerShell, Python, Bash) is a plus. Familiarity with SDLC security testing concepts and application security (OWASP, SAST/DAST) is a plus.
- Excellent oral and written communication skills.
- Ability to follow established processes and guidelines for Change Management, Release Management, Problem and Incident management.
- Collaborator with strong organizational skills, a positive attitude and customer service orientation.
- Innovative thinker who can see the big picture while remaining attentive to the details.
- Experience with MS productivity tools (Word, Excel, PowerPoint, Visio).
Education and Experience- Bachelor's degree in Computer Science, Information Security, or a related field, preferred.
- A minimum four years of experience in Information Security. Previous general IT systems and networking background strongly preferred.
- Relevant security certifications (e.g., CISSP, CISM, CEH, CompTIA Security+) are highly desirable.
Working Conditions:- Normal office environment
- May require travel
- May require on-call responsibilities
- Must be in driving distance to the Pennsylvania offices (Valley Forge, Denver and Wyomissing)
- Must have a conducive work from home environment to be productive
