Senior Cybersecurity Engineer - job 1 of 2

Symmetrio is actively recruiting for a Senior Cybersecurity Engineer for our customer, a large government organization in Philadelphia, PA. The Senior Cybersecurity Engineer will ensure that organizational security requirements are implemented in all aspects of the enterprise IT architecture.

The ideal candidate will be a subject matter expert in information security, capable of designing, implementing, and maintaining robust security solutions for our customer's environment. This role requires a deep understanding of cloud security, particularly in Azure and AWS environments, as well as experience leading security initiatives in large enterprise organizations.

This is a full-time, hybrid position that requires an on-site presence in Philadelphia at least twice per week. The offered salary range is between $130,000 and $160,000.

Responsibilities

• Design, integrate, and implement cybersecurity architectures for systems and networks with multilevel security requirements.
• Lead the development and maturity of the organization’s Application Security Program, including secure code review, penetration testing, and remediation guidance.
• Build and optimize the Vulnerability Management (VM) Program, leveraging Rapid7 for risk-based prioritization (aligned with NIST IR 8286) and developing strategies for reducing exposure.
• Implement and maintain SIEM / Centralized Logging per NIST SP 800-92r1 guidelines, including log data identification, ingestion, normalization, and rule tuning.
• Advance the Information Security Continuous Monitoring (ISCM) program, ensuring consistent tracking and reporting of enterprise security posture.
• Lead cloud security initiatives, including designing and implementing secure architectures in Azure and AWS environments, along with developing policies, standards, and automation for cloud-native security services.
• Identify and integrate APIs for workflow automation to streamline vulnerability management, security operations, and compliance reporting.
• Provide subject matter expertise in incident response, including coordination of investigation, containment, eradication, and recovery activities for high-priority security events.
• Partner with IT and business leaders to align cybersecurity strategies with organizational objectives and regulatory requirements.
• Support and manage specialized projects such as DNSSEC implementation, advanced endpoint security, and email security hardening.
• Conduct regular risk assessments, maintain the enterprise security roadmap, and ensure compliance with NIST, ISO 27001, CIS Controls, and other frameworks.

• Bachelor’s degree in Computer Science, Information Security, or a related field.
• 8+ years of progressive experience in information security engineering and operations.
• Demonstrated expertise in cloud security (Azure, AWS) and enterprise security architecture.
• Strong knowledge of vulnerability management, SIEM, and application security programs.
• Hands-on experience with tools such as Rapid7, SIEM solutions, EDR, IDS/IPS, and vulnerability scanners.
• Proficiency in scripting and automation (Python, PowerShell, or Bash).
• Solid understanding of networking protocols, identity management, and email/DNS security.
• Familiarity with security frameworks and standards (NIST, ISO 27001, CIS Controls).
• Excellent analytical, problem-solving, and communication skills.

Preferred Qualifications

• Prior background in network engineering or security operations.
• Experience with CrowdStrike or other EDR platforms.
• Knowledge of Microsoft Entra ID (formerly Azure AD), including conditional access and identity security.
• Direct experience with DNSSEC and email security projects.
• Professional certifications such as CISSP, CISM, AWS Certified Security - Specialty, or Microsoft Azure Security Engineer Associate.

• Health Care Plan (Medical, Dental & Vision)
• Retirement Plan (401k, IRA)
• Paid Time Off (Vacation, Sick & Public Holidays)