Senior Cyber Security Engineer

Our client, a leader in the medical equipment manufacturing and technology sector, is seeking a highly skilled Senior Cyber Security Engineer to join their team. This is a unique opportunity to play a critical role in protecting complex systems while collaborating across IT, engineering, and product teams. The position offers exposure to cutting-edge areas such as Cloud, AI Security, and Critical Infrastructure Protection.

Position Overview

The Senior Cyber Security Engineer will leverage advanced technical skills to design, implement, and maintain robust security measures across multiple initiatives. This highly visible role requires staying ahead of emerging threats, translating security concepts into practical solutions, and serving as a trusted Subject Matter Expert (SME) for both internal and external stakeholders.

Key Responsibilities

• Support cybersecurity solutions including patch management, NERC CIP compliance, SLAs, and product enhancements.

• Lead secure SDLC activities including code reviews, threat modeling, SAST, DAST, and SCA.

• Perform penetration testing on applications (Web, Thick, and API).

• Conduct security reviews to evaluate existing controls and identify areas for improvement.

• Collaborate with cross-functional teams to ensure solutions meet security requirements.

• Respond to and mitigate incidents through digital forensics and incident response practices.

• Maintain and enforce cybersecurity policies, standards, and procedures.

• Develop and deliver security awareness training for internal teams.

• Stay current on evolving security threats, technologies, and frameworks.

• Prototype and implement new security tools and processes.

Qualifications

Education

• Bachelor’s degree in Cybersecurity, Computer Science, or related field.

Required Experience

• 5+ years of hands-on security engineering experience.

• Practical working knowledge of NIST, NERC CIP, ISO 27001, IEC 62443.

• Expertise with OWASP Top 10, ASVS, and related frameworks.

• Proven experience with Firewalls, Cloud environments (Azure), SIEM, and tools such as Secureworks MDR, Fortinet, BitSight, Synk, and KnowBe4.

• Strong proficiency in penetration testing tools (Burp Suite, OWASP ZAP, Metasploit, SQLMap, etc.).

• Strong organizational, problem-solving, and analytical skills.

• Excellent communication skills with the ability to explain complex security concepts clearly.

• High attention to detail, ethics, and regulatory compliance.

Preferred (Not Required)

• Master’s degree in Cybersecurity or related field.

• 2–5 years of penetration testing and incident response experience.

• Experience with endpoint security tools and vulnerability management.

• Certifications such as CISSP, OSCP, OSCE, GPEN, CEH, Security+, or Azure security certifications.