RemoteLeaf Logo
Log in Sign up

Senior Cybersecurity Engineer

1 month ago
United States, Canada, Costa Rica
Full-time
Senior
Security Engineer
Cybersecurity
AWS Bash CI/CD DNS GCP Git GitHub Penetration Testing PowerShell Python SIEM TCP/IP Terraform
Apply Now
CSC Generation

CSC Generation

CSC Generation is an AI native retail holding entity that revitalizes iconic brands through the use of data, automation, and its Genesis platform to shape the future of commerce in the age of artificial general intelligence.

Internet Software & Services
251-1K
Founded 2016
View All Jobs

Description

  • Administer and secure identity and access systems, including Windows Active Directory, Azure Entra ID, SSO, 1Password policies, and periodic access reviews to enforce least-privilege.
  • Protect and monitor cloud infrastructure hosted in AWS and GCP, configure and maintain AWS WAF and CloudFront security settings, and review Terraform configurations for security best practices.
  • Manage endpoint protection and threat detection using Microsoft Defender XDR, monitor alerts, investigate incidents, and lead incident response activities.
  • Develop detection rules and automated response playbooks to improve detection and containment capabilities.
  • Execute vulnerability management processes, run monthly scans (OpenVAS), perform manual internal and external penetration tests, and prioritize remediation efforts.
  • Present risk assessments and remediation plans to stakeholders and drive vulnerability remediation across teams.
  • Secure collaboration and productivity tools (Microsoft 365: Exchange Online, SharePoint, OneDrive, Teams) by implementing DLP and email security controls.
  • Integrate security into CI/CD pipelines (GitHub) and collaborate with engineering teams to review Infrastructure as Code and embed secure development practices.

Requirements

  • 5+ years of experience in cybersecurity, information security, or related roles.
  • Demonstrated experience in at least three of the following: Identity and Access Management (Active Directory, Azure AD/Entra ID, SSO), cloud security (AWS or GCP), EDR/XDR solutions, vulnerability management and penetration testing, or SIEM operations and incident response.
  • Experience with Infrastructure as Code (Terraform preferred) and Git/GitHub workflows.
  • Hands-on experience with Microsoft Defender XDR suite (Defender for Endpoint, Identity, Cloud Apps).
  • Experience configuring and securing AWS WAF and CloudFront distributions.
  • Solid understanding of networking fundamentals (TCP/IP, DNS, firewalls, VPNs).
  • Scripting and automation skills in Python, PowerShell, or Bash.
  • Knowledge of common attack vectors, MITRE ATT&CK framework, and threat modeling.
  • Strong analytical, problem-solving, and communication skills with the ability to prioritize multiple tasks in a fast-paced environment.
  • Familiarity or experience with compliance frameworks such as SOC 2, ISO 27001, PCI-DSS, and GDPR; security certifications (CISSP, CISM, AWS Security Specialty, GCP Security Engineer, SC-200, OSCP, CEH) are preferred.

Benefits

  • Competitive compensation package.
  • Executive access and mentorship from brand CEOs and senior leadership.
  • AI-first skill building and hands-on experience with advanced AI tools and modern tech stack.
  • Accelerated career path with opportunities for increased responsibility and leadership across portfolio brands.
  • Paid time off policies.
  • 401(k)/RRSP match and a range of medical, dental, and vision coverage with supplemental policies.
  • Employee discounts across the company’s portfolio of brands.

Interested in this position?

Apply directly on the company website

Apply Now

Similar Roles

Databricks

Head of Corporate Engineering

Databricks 1K-5K IT Services

Databricks is hiring a Head of Corporate Engineering to lead global enterprise engineering and operations, building and scaling secure cloud infrastructure, identity and access, endpoints, collaboration and engineering tools to enable developer velocity and enterprise compliance.

United States Full-time Lead Infrastructure Engineer Security Engineer
$265k-$364k
Agile AWS Azure Confluence GCP GitHub JIRA macOS
1 month ago
ClickHouse

Incident Response Security Engineer

ClickHouse 51-250 IT Services

Security practitioner role at ClickHouse focused on scaling incident detection and response capabilities, driving adoption of security processes and tooling, and protecting the company’s cloud and product infrastructure for customer-facing services.

United Kingdom Full-time Senior Security Engineer
AWS Azure ClickHouse GCP Penetration Testing Python SIEM
1 month ago
Samsara

Senior Security Engineer - Vulnerability Management

Samsara 1K-5K IT Services

Senior Security Engineer at Samsara responsible for deploying, operating, and improving the company’s Vulnerability Management program to reduce software vulnerabilities and protect customer-facing infrastructure.

United States Full-time Senior Security Engineer
$158k-$238k
AWS CI/CD DevSecOps Go Python Serverless Terraform
1 month ago
ARETUM

Junior DevSecOps Engineer - Contingent

ARETUM Construction & Engineering

Junior DevSecOps Engineer at Aretum supporting a federal client to operate, automate, and secure cloud-based systems and CI/CD pipelines to enable reliable, compliant deployments.

United States Full-time Junior DevOps Engineer Security Engineer
Agile Ansible AWS AWS CDK Azure Chef CI/CD Docker Encryption Git GitLab CI Grafana JIRA Kubernetes Linux LXC Prometheus Puppet SaltStack Scrum Serverless Terraform
1 month ago

You're on a roll! Sign up now to keep applying.

Sign Up

Already have an account? Log in

Used by 14,729+ remote workers