Cyber Defense Engineer

COMPANY OVERVIEW

ThreatLocker® is a leader in endpoint protection technologies, providing enterprise-level cybersecurity tools to improve the security of servers and endpoints. The ThreatLocker® platform with Application Allowlisting, Ringfencing™, Storage Control, Elevation Control, Endpoint Network Control, Configuration Management, and Operational Alert solutions are leading the cybersecurity market toward a more secure approach of blocking the exploits of application vulnerabilities.

POSITION OVERVIEW

The Cyber Defense Engineer plays a key role in protecting our organization’s digital assets across both cloud and on-premises environments. This hands-on role involves proactive threat detection, incident response, and continuous improvement of our security infrastructure. The ideal candidate will possess strong technical expertise, a deep understanding of emerging cyber threats, and a collaborative approach to enhancing our security posture and ensuring alignment with key frameworks like ISO 27001, FedRAMP, and NIST SP 800-53. 

The Cyber Defense Engineer will work in close partnership with IT teams to embed strong security practices throughout the organization's technology landscape. This position requires sharp analytical skills to evaluate security controls, uncover vulnerabilities, and develop effective mitigation strategies. The engineer will also be responsible for producing comprehensive reports and documentation that detail the organization’s security posture and support long-term planning of cybersecurity initiatives.  

KEY RESPONSIBILITIES

Continuous Monitoring & Incident Response: 

• Use sophisticated security tools to monitor systems continuously for unusual activities that might indicate a breach or attempted breach 
• Respond to cybersecurity incidents rapidly and effectively, managing them from detection through to resolution, including conducting post-incident analysis to prevent future occurrences 
• Collaborate with cross-functional teams to develop incident handling processes and ensure timely remediation 

Policy and Reporting: 

• Maintain comprehensive documentation related to cybersecurity policies, incident response activities, and audit trails 
• Provide regular security reports to management, detailing current security posture, incident reports, and compliance with the various standards 
• Analyze current security systems to ensure effectiveness and recommend improvements 

Continuous Improvement: 

• Assist in optimizing security detection capabilities by refining monitoring tools, tuning processes, and updating incident response playbooks. 
• Contribute to the development and execution of long-term security initiatives 
• Any additional responsibilities may be assigned as the needs of the company evolve 

REQUIRED QUALIFICATIONS

• Bachelor’s Degree in Information Technology with 3 years of experience or 5 years of work experience within Cybersecurity, Networking OR Information Technology required 
• Industry recognized certifications (Security+, CYSA+, GCIH, GCFA, GISP, OSCP, etc...) 
• Experience with cybersecurity tooling to include SIEM, EDR, Application Control, and Firewalls 
• Understanding of IT systems, networks, and cloud environments (e.g., AWS, Azure, GCP) 
• Exposure to identity and access management (IAM), cloud/infrastructure security, or secure software development 
• Familiarity with security frameworks such as NIST, CIS, or ISO 27001 
• Demonstrated curiosity, problem-solving skills, and willingness to learn new technologies 
• Scripting/programming knowledge (e.g., Python, Bash, PowerShell) 

WORKING CONDITIONS

The duties described below are representative of those encountered while performing the essential functions of this position. If necessary, reasonable accommodation may be requested and will be evaluated for its relationship to the essential functions that must be performed.

• Job will generally be performed in an office environment but may require travel to visit company offices and/or property locations.
• While performing duties of this job, would occasionally require to stand, walk, sit, reach with hands and arms, climb or balance, stoop or kneel, talk and hear, and use fingers and hands to feel objects and tools.
• Must occasionally lift and/or move up to 25 pounds.
• Specific vision abilities required include close vision, distance vision, depth perceptions, and the ability to adjust focus