Senior Cybersecurity Engineer

Most companies claim to have the best people. We say to them, "Keep dreaming." Our people are second to none. They set us apart with their entrepreneurial spirit and ambition. They come to us from the likes of Amazon, Microsoft, Nordstrom, Starbucks and the sports world, bringing energy, bold ideas and a willingness to dive into the unfamiliar. It's our people that make BDA the top global Merchandise Agency to work for.

Job Summary
We are seeking a highly skilled and experienced Cybersecurity Engineer to join our team. The ideal candidate will be responsible for ensuring the confidentiality, integrity, and availability of our organization’s data and systems. As a Cybersecurity Engineer, you will design, implement, and manage security solutions to protect against potential cyber threats. This role requires deep knowledge of security frameworks, penetration testing, network security, and threat analysis.

DUTIES AND RESPONSIBILITIES
•    Security Infrastructure: Design, implement, and maintain security measures across networks, servers, and applications to protect the company’s IT systems.
•    Incident Response: Develop and lead incident response protocols in case of security breaches, conducting thorough investigations and remediation.
•    Vulnerability Management: Perform regular vulnerability assessments, penetration testing, and risk analysis to identify weaknesses and recommend corrective measures.
•    Monitoring & Analysis: Monitor security logs and alerts using SIEM tools, and perform real-time threat analysis to detect, mitigate, and respond to security incidents.
•    Security Audits: Conduct internal audits, collaborate with external auditors, and ensure compliance with industry standards (e.g., NIST, ISO 27001, SOC2, GDPR, CCPA).
•    Firewall and Network Security: Configure and maintain firewalls, VPNs, IDS/IPS, and other network security devices to safeguard sensitive data and infrastructure.
•    Security Policies: Develop, implement, and enforce security policies, procedures, and best practices across the organization.
•    Training & Awareness: Provide cybersecurity training and awareness programs for employees to promote safe practices and minimize risks.
•    Collaboration: Work closely with IT, DevOps, and other departments to integrate security into development and operational processes.

JOB SKILLS AND TRAITS
•    Strong understanding of security protocols, cryptography, and security frameworks.
•    Proficiency with firewall management, intrusion detection/prevention systems, and endpoint protection solutions.

•    Experience with penetration testing tools (e.g., Metasploit, Burp Suite) and SIEM platforms (e.g., Sumo, Splunk, QRadar).
•    Knowledge of cloud security platforms (AWS, Azure, Google Cloud) and cloud-native security controls.
•    Proficiency with network architectures, operating systems (Linux, Windows), and scripting languages (PowerShell, Python, Bash).
•    Excellent problem-solving and analytical skills.
•    Strong communication and teamwork abilities.
•    Ability to work independently and in a collaborative environment.
•    Detail-oriented with the ability to handle complex and high-pressure situations.

QUALIFICATIONS
•    5+ years experience in cybersecurity and information security
•    Education: Bachelor’s degree in Computer Science, Information Technology, or a related field (or equivalent experience).
•    Experience:5+ years of hands-on experience in cybersecurity or a similar role.
•    Certifications: CISSP, CEH, CISM, CompTIA Security+, or other relevant security certifications.
Preferred Qualifications:
•    Master’s degree in Cybersecurity or a related field.
•    Experience in securing containerized environments (Docker, Kubernetes).
•    Knowledge of DevSecOps and automation tools.
•    Experience with zero-trust architecture and identity management solutions.