IT Security Engineer (Mid-Level)
Schedule(s):
7AM - 5PM (Monday through Friday, some weekends)
On-Call: Required
We are looking for an IT Security Engineer who is ready to contribute to a growing and maturing internal security program. This role provides mid-level security support to the IT department and serves as an escalation point for alerts and incidents generated through our external security monitoring partner. You will play an active part in strengthening our internal defenses, reviewing logs, responding to threats, and supporting compliance and audit work.
Our environment is fast paced, collaborative, and committed to excellence. You will work closely with the IT Manager and team members to investigate events and help improve our posture. Strong communication, a willingness to learn, and a steady approach to problem solving are all essential. If you enjoy cyber defense, research, documentation, and hands-on incident response, you will be a great fit here.
What is Expected
Primary responsibility is to liaison with our third-party SOC, providing support during security incidents, and provide coordination efforts for incident responses including documentation and remediation steps.
Review, analyze, and investigate all alerts within the security SIEM.
Identify weaknesses or gaps in SIEM playbooks, false positive detections, and respond to designated true positives immediately.
Provide systems engineering to support email security migration platforms consisting of URL isolation protections.
Monitor existing and new email security system for various email attacks.
Assist with identifying suspicious behavior, unusual log activity, and early-stage threat indicators.
Work with the designated IT Microsoft 365 Cloud Engineer to help identify threats within the Azure tenant (i.e., brute force attacks, account compromises, password reset requirements, OneDrive file sharing incidents, and more).
Provide reporting on a weekly basis and in real-time for all cyber-related findings to the IT Manager.
Assist with threat intelligence research and basic threat hunting activities.
Be prepared to learn reverse malware engineering, putting time toward such security activities for potential growth, opportunity, and for training the team.
Assist IT team members by participating in systems patch management, vulnerability assessments, patch schedules, and review patch deployment metrics results.
Employ writing and resources for all cybersecurity documentation, and diagrams where needed.
Participate in compliance work involving NIST, CIS, ISO 27001, SOC 2, HIPAA, NERC, NERF, and GDPR.
Prepare documentations of frameworks and troubleshooting guides.
Assist in preparation efforts for audits, penetration testing, and mitigation tracking.
Work closely with the IT team and all staff to help improve the security posture and culture of our entire company.
Help strengthen internal controls and contribute to a culture of security awareness.
Participate in on-call rotation
What We Are Looking For
We need someone who is experienced enough to handle mid-level security risks and tasks with confidence but also humble enough to ask questions and work as part of a team. Supporting our other team members to learn what you know, being a mentor, and leader in your field that they can look up to for their growth incentives. This person must be resourceful, believing nothing is impossible, able to find answers, troubleshoot, prioritize tasks, handle all situations with patience and clarity, resolve issues in a timely manner, and minimize downtime for all systems. They should have a genuine interest in analyzing threats, supporting investigations, and learning new techniques to harden systems from all kinds of attacks. A steady and self-disciplined approach is key for success in this role and other future opportunities.
Required Qualifications
3 - 7 years of cybersecurity or equivalent experiences.
Hands-on experience reviewing security events or working with SIEM platforms.
Experience with incident response, alert investigation, and general threat analysis.
Strong understanding of identity, endpoints, networks, and core security concepts.
Experience working with various Windows and Linux server platforms, workstations, and Android and Apple mobile devices through direct support or MDM services.
Familiarity or experience with an overall governance, risk, and compliance (GRC) documentation processes.
Must live in the Houston area or planning on your own to relocate to the city. Relocation assistance is not provided.
Education and Certification Guidance
Education can substitute for experience.
An associate’s degree in an IT field in combination with one to two minor IT certifications may replace 2 or 3 years of experience.
A bachelor’s degree in an IT field in combination with two major IT certifications may replace 3 or 4 years of experience.
Preferred Qualifications
Security+, CYSA+, GIAC, SSCP, CEH, CCSP, CISSP, or other IT security-related certifications. Please be prepared to provide cert ID #’s upon request or in the submitted resume.
Vast experience working with security platforms of all kinds for SIEMs, EDR/XDR, SOAR, Email Protection, and more.
Deep understanding of support in critical infrastructures, i.e., IT/OT environments and First Responder emergency priorities.
Must Have
You must have a valid driver license and current auto insurance.
You must live in the Houston area.
Benefits Package
Medical
Dental
Vision
401k
How to apply :
https://lifecyclepower.com/careers/
Even if the job is not posted, please apply on the Life Cycle Power web page.