Cybersecurity Engineer

Job Details:

• 6–12-month contract-to-hire position
• Hybrid setup
• W2 employment
• Payrate negotiable upon interview

Job Description:

The Cybersecurity Engineer plays a critical role in protecting the global technology ecosystem. This position designs, builds, and operates security controls that safeguard enterprise systems, cloud services, applications, manufacturing environments, and data across the organization. Engineers in this role are hands‑on practitioners who lead technical investigations, continuously advance detection and response capabilities, and embed security into modern IT and OT (Operational Technology) environments.

Cybersecurity Engineers work closely with cross‑functional teams-including Infrastructure, Cloud, Network Engineering, Application Development, Governance/Risk/Compliance, and Manufacturing Technology-to implement secure architectures, automate protections, and proactively reduce organizational risk. This role requires a strong engineering mindset, the ability to analyze complex systems, and the discipline to operate reliably in mission‑critical environments.

The ideal candidate demonstrates deep curiosity, exceptional technical judgment, and a strong sense of ownership-balancing long‑term architectural improvements with the operational urgency required to respond to evolving threats.

Required Qualifications

• Strong hands-on cybersecurity engineering experience in enterprise environments
• Deep knowledge of network, endpoint, cloud, and on-prem security architecture
• Experience with firewalls, WAFs, SIEM, EDR/XDR, NDR, IDS/IPS, NAC, and automation platforms
• Experience securing AWS, Azure, and/or GCP environments
• Knowledge of IAM, Active Directory, Entra ID, PKI, certificates, and encryption
• Ability to investigate incidents, analyze telemetry, and respond to threats
• Experience with threat hunting, detection engineering, and alert tuning
• Experience with vulnerability management and penetration test coordination
• Familiarity with secure application practices and tools such as SAST, DAST, SCA, and container security
• Ability to script or automate security workflows using SOAR and common scripting languages
• Ability to document findings and communicate technical risk clearly
• Strong troubleshooting, root cause analysis, and cross-functional collaboration skills
• Willingness to participate in on-call support

Preferred Qualifications

• Experience with OT/manufacturing security, including SCADA and PLC environments
• Experience with Zero Trust technologies such as SSE, CASB, DLP, and ZTNA
• Familiarity with AI governance and AI security
• Experience supporting compliance frameworks such as NIST, ISO 27001, GDPR, PCI, SOX, HIPAA, and SOC 2
• Experience with vendor evaluation, contract support, and security tool cost/value analysis
• Experience mentoring others and contributing to security culture initiatives

Core Competencies:

• Advanced analytical, troubleshooting, and root cause analysis skills.
• Expert level understanding of network, endpoint, cloud and on-premise security and architecture.
• Hands‑on experience with Firewalls, Web Application Firewalls (WAFs), Security Information Event Monitoring (SIEM), Endpoint/Network Detection and Response (EDR/NDR) and modern security automation.
• Ability to communicate complex technical risks clearly to all audience levels.
• Team player with collaboration mindset across engineering, operations, and business functions.
• High sense of ownership, accountability, and operational discipline.

Skills/Abilities:

Security Engineering & Architecture

• Design, deploy, and support enterprise security technologies, including:

Network & Perimeter Security

• Firewalls, Network Access Control (NAC) solutions, IDS/IPS systems.
• WAF and reverse proxy protections.

Endpoint & Host Security

• EDR/XDR platforms, next generation antivirus, anti malware.
• Windows, Linux, and Unix hardening baselines.

Identity, Authentication & Cryptography

• Public Key Infrastructure (PKI), certificates, encryption services
• Conditional Access Azure Entra ID and Active Directory

Operational (OT) Security

• Supervisory Control and Data Acquisition (SCADA) systems, Programmable Logic Controllers (PLCs), and other manufacturing automation equipment. Including supporting legacy backup and security-oriented solutions.
• Micro segmentation by restricting east west traffic within plants and distribution centers.

Cloud & Zero Trust Security

• CSPM, CWPP, SIEM/SOAR integrations, and Identity Access Management (IAM) controls in Cloud environments such as: Amazon AWS, Microsoft Azure, and Google Cloud Platform GCP.
• Hands on experience with Zero Trust Network Architecture (ZTNA), including: Secure Service Edge (SSE), Data Loss Prevention (DLP), Cloud Access Security Broker (CASB), API Protection, and remote access technologies.

AI & Application Security

• Developing secure coding practices, automation, and maintaining application security testing tools, including Static Application Security Testing (SAST), Dynamic Application Security Testing (DAST), Software Composition Analysis (SCA), Container Security, etc.,
• Ability to build automation via Security Orchestration Automation and Response (SOAR) tools in conjunction with custom scripts via established coding/scripting languages
• Familiarity with AI Governance and AI Security practices
• Incident Response & Monitoring
• Provide on call support, including occasional nights, weekends, and holidays, ensuring rapid response to security and production-impacting events.
• Analyze and act on security events across SIEM, EDR, Intrusion Detection/Prevention Systems (IDS/IPS), NDR, firewall logs, cloud telemetry, and endpoint security tools to identify anomalous behavior, indicators of compromise (IOCs), and threats.

Threat Hunting & Intelligence

• Conduct threat hunting using User Event Behavioral Analytics (UEBA), and other technologies
• Coordinate with other cybersecurity and IT teams to engineer and tune detection rules, and playbooks to reduce false positives and respond to emerging threats such as ransomware, supply chain attacks, and AI generated threats.

Vulnerability & Penetration Testing

• Orchestrate internal and external vulnerability assessments, penetration tests for networks, cloud infrastructure, IoT/OT, APIs, and web/mobile applications.
• Analyze exploitable weaknesses, produce detailed remediation guidance, and collaborate with system owners for determining appropriate security controls

Security Governance, Compliance & Risk

• Support compliance and audit initiatives (e.g., GDPR, NIST, ISO 27001, PCI, SOX, HIPPA, SOC 2) by conducting risk assessments of hardware and software solutions
• Contribute to security policy development, standards, procedures, baselines, and operational runbooks.

Vendor & Financial Management

• Manage relationships with security product vendors and service providers.
• Partner with sourcing on contract evaluations, renewals, and cost optimization for security tooling.
• Maintain financial comparisons and value assessments for security investments.

Security Awareness & Culture

• Support security awareness initiatives, including training programs, phishing simulations, and security culture improvement activities.
• Training and mentoring individuals with an interest in Cybersecurity both internally and externally

Documentation & Reporting

• Document findings, root causes, risks, and remediation activities.
• Prepare and deliver clear communication to both technical teams and non technical teams and leadership.
• Produce after action reports, engineering documentation, diagrams, and operational checklists.

Pay: $40.00 - $55.00 per hour

Expected hours: 40.0 per week

Benefits:

• Dental insurance
• Health insurance
• Paid time off
• Vision insurance

Application Question(s):

• Are you a visa candidate or under a C2C employer?

Experience:

• Cybersecurity Engineering: 3 years (Required)
• Enterprise/Manufacturing Industry: 1 year (Required)
• SCADA or PLC environments: 1 year (Required)

Ability to Commute:

• Grand Rapids, MI 49508 (Required)

Work Location: Hybrid remote in Grand Rapids, MI 49508