Sr. Cybersecurity Engineer

About Your Future with TopBuild

Are you looking for a career with an industry leader that drives the future of energy-efficient insulation and building material products? Is being part of a company that is recognized as a “Great Place to Work” of value to you? Look no further! At TopBuild, you will be part of a diverse and inclusive team that reflects our values of integrity and innovation by delivering solutions that make a difference in the communities we serve. Here, you are part of a company that rewards your contributions and encourages you to take ownership of your career.

Job Description

Position Overview

We are seeking a highly skilled Senior Cybersecurity Engineer to play a critical role in safeguarding our enterprise environment. This individual will serve as a key technical resource for incident response, endpoint protection tuning, firewall management, and working with our MSSP partners to ensure effective security operations.

The ideal candidate is an experienced incident responder, has deep knowledge of EDR/EPP solutions, is proficient in firewall administration, and understands how to optimize security monitoring tools in collaboration with an MSSP. They should also have experience implementing and fine-tuning cybersecurity defenses to protect the organization against evolving threats.

Key Responsibilities

Incident Response & Threat Mitigation

• Lead security incident investigations, coordinating response efforts across teams and ensuring swift containment and remediation.
• Perform root cause analysis (RCA) and recommend preventive measures for recurring incidents.
• Fine-tune SIEM, EDR, and firewall rules to reduce false positives and increase detection accuracy.
• Partner with internal teams and MSSP to escalate, investigate, and resolve advanced threats.

Endpoint Protection & Security Tooling

• Optimize EDR/EPP (e.g., CrowdStrike, SentinelOne, Microsoft Defender, etc.) to enhance threat visibility and containment capabilities.
• Develop and implement detection and response use cases to proactively identify and mitigate threats.
• Monitor and tune threat intelligence feeds, integrating relevant insights into security operations.

Network Security & Firewall Management

• Manage, configure, and optimize firewalls (Cisco, Fortinet, Palo Alto, etc.) to enforce security policies and monitor traffic.
• Maintain network segmentation, VPN security policies, and IDS/IPS rules to prevent unauthorized access.
• Conduct periodic firewall rule audits to align with business needs and regulatory requirements.

MSSP & Security Operations Support

• Act as a liaison between the organization and MSSP, ensuring effective SOC operations and response coordination.
• Validate MSSP escalations, ensuring proper threat triage and response actions.
• Evaluate MSSP service level agreements (SLAs) and recommend improvements to security monitoring strategies.

Security Engineering & Continuous Improvement

• Develop and implement security automation (e.g., SOAR, scripting, integrations) to streamline incident response.
• Conduct security architecture reviews, identifying and mitigating risks in new and existing technologies.
• Provide mentorship to junior team members, sharing best practices and incident handling expertise.
• Other duties as assigned.

Required Qualifications

• 10+ years of cybersecurity experience, preferably in enterprise environments.
• Proven expertise in incident response, including threat hunting, forensic analysis, and mitigation strategies.
• Strong hands-on experience with EDR/EPP solutions, with a track record of fine-tuning detection capabilities.
• Firewall administration experience with platforms such as Cisco, Fortinet, or Palo Alto.
• Familiarity with MSSP operations and how to effectively integrate outsourced security monitoring into an enterprise security program.
• Solid understanding of SIEM, IDS/IPS, and cloud security solutions.
• Experience with security automation (SOAR, scripting, Python, PowerShell, etc.) is a plus.
• Must possess a blue-collar work ethic and ambition to succeed and outperform.

Location: Remote with 20% travel to Daytona Beach corporate office
Job Type: Full-Time
Experience Level: 10+ Years
Education: Bachelor’s degree in Computer Science, Cybersecurity, or equivalent work experience
Skills Required: Expert level knowledge in SentinelOne or CrowdStrike (if you do not have expert level knowledge in either of these products specifically, please do not apply)

Preferred Certifications

• CISSP (Certified Information Systems Security Professional)
• SANS GIAC (GCIH, GCFA, or equivalent)
• Fortinet NSE 4+ or Cisco Security Certifications (e.g., CCNP Security)

Why Join Us?

• Be part of a high-impact security team protecting critical business operations.
• Work on cutting-edge security technologies and real-world cyber defense strategies.
• Opportunity to mentor and lead security initiatives in a dynamic environment.

Physical Requirements

Work is performed in a typical office environment and may require standing, bending, lifting boxes or packages under 10 lbs., and sitting for long periods of time.

Work requires regularly inputting/retrieving words or data into or from an automated/computer system.

#LI-ET1

#LI-REMOTE

TopBuild Corp. (NYSE: BLD) is the leading installer and distributor of insulation and building material services nationwide. TopBuild has a family of companies, which comprises of approximately over 450 branch locations across the United States and Canada. As a company, we actively engage in corporate social responsibility through our commitment to Environmental, Social, and Governance (ESG) practices. Additionally, we prioritize diversity and inclusion in our organization. If this interests you, we encourage you to join our company and find a variety of career opportunities awaiting you!

TopBuild Corp. is an equal opportunity employer (EOE), this includes protected Veterans/Disability. The employee must be able to perform the essential functions of the position. Upon request and absent undue hardship, reasonable accommodation will be offered to enable employees with disabilities to perform the essential functions of the job.