Cyber Security Engineer responsible for application security and vulnerability management for Consort Group. Supporting secure development practices and collaborating with development teams to identify and mitigate security risks.
About the role
- Senior IT Security Engineer at Foley, evolving enterprise security program for SaaS offerings and compliance standards. Collaborating with teams to ensure system, data, and user protection.
Responsibilities
- Design, implement, and manage comprehensive security solutions including SIEM, DLP, EDR, DNS filtering, and encryption across cloud and on-prem environments.
- Administer firewalls, VPNs, and network security infrastructure with a focus on segmentation, least privilege, and Zero Trust principles.
- Lead vulnerability management efforts, including scanning, prioritization, patching, and remediation workflows.
- Oversee and optimize endpoint detection and response (EDR) tools such as Rapid7 and AWS GuardDuty.
- Manage identity and access management (IAM) systems, including SSO, Multi-Factor Authentication (MFA), Microsoft Entra ID (Azure AD), and Active Directory Group Policy.
- Conduct privileged account and user access reviews.
- Partner with IT and DevOps to embed security in CI/CD pipelines and automate controls where possible.
- Contribute to incident response efforts, from detection to root cause analysis and remediation.
- Leverage existing platforms and tools to develop and improve detection, response and containment workflows.
- Respond to real-time monitoring and alert triage for anomalies across SaaS and infrastructure platforms.
- Conduct post-incident reviews and implement proactive controls to prevent recurrence.
- Contribute to disaster recovery and business continuity planning and exercises.
- Serve as the technical lead for the security team, mentoring junior engineers and driving cross-functional security initiatives.
- Partner with Infrastructure, Engineering, and Compliance to integrate security into all stages of system design and delivery.
- Represent Foley in discussions with auditors, vendors, and internal stakeholders on all matters related to cybersecurity and compliance.
- Advocate for security awareness and education across the organization.
- Manage vendor security reviews using ticketing and vendor management solutions.
- Evaluate new tools, vendors, and partners through a security-by-design lens.
- Collaborate with the Compliance department in support of both internal and external audit efforts, including SOC 2 engagements and PCI-DSS internal audits.
Requirements
- Bachelor’s degree in Computer Science, Information Security, or related field (or equivalent experience).
- CISSP, SSCP, or equivalent certifications (completed or in progress).
- 5+ years of experience in IT security engineering, with strong exposure to cloud and hybrid environments.
- Proven experience with:
- Microsoft Entra ID (Azure AD), Active Directory, and Group Policy Management
- Single Sign-On (SSO) and Identity Federation (SAML, OIDC, OAuth 2.0)
- AWS security architecture, IAM roles, and network security groups
- Endpoint and network security tools, EDR, SIEM, SOAR, and vulnerability scanner
- Familiarity with cloud access security solutions is a plus.
- Familiarity with containerization or serverless workload solutions, such as Kubernetes, is a plus.
Benefits
- medical, dental, and vision coverage
- 401(k) with company match
- paid time off and holidays
- wellness programs
- employee assistance program
Job title
Job type
Experience level
Salary
Degree requirement
Tech skills
Location requirements
Project Manager for cybersecurity at Consort Group, leading security solution implementations and client engagement. Collaborating within teams to execute comprehensive cybersecurity projects while ensuring client satisfaction.
Infrastructure Security Consultant deploying and implementing network security solutions at Consort Group. Responsible for analyzing and producing comparative syntheses of security solutions with a hybrid work arrangement.
Cybersecurity Intern supporting Keenova's security program through hands - on experiences and mentorship. Engaging in various cybersecurity functions and contributing to meaningful projects.
Senior Security Engineer securing Cloudflare's global network and enterprise infrastructure. Working closely with engineering, IT, and compliance teams to address security risks at scale.
Senior IAM Systems Support Analyst providing L2 support expertise for CyberArk Agentic AI. Collaborating with security and development teams on IAM operations and compliance.
Senior Security Engineer focusing on hardening enterprise endpoints for cyber defense. Collaborating with NetSec and DataSec teams to minimize risks and enforce security protocols.
Security Consultant assessing and implementing security measures for organizations. Collaborating with clients to enhance their security posture and protect sensitive data.
Manager overseeing leadership protection and event security for GEICO. Responsible for security planning, threat analysis, and incident management during company events.
Cybersecurity Consultant managing TDR delivery team to enhance client security posture. Collaborating with clients and leading technical contributions in cybersecurity services.