Cybersecurity Operations Engineer (mid-level)
Rapid Strategy · Reston, VA · 9 mo ago
RemoteRemoteConsultingFull-time
Key Responsibilities
- Manage and respond to security incidents using tools such as CrowdStrike, Microsoft Security suite (Defender, Sentinel, Entra ID security), and other relevant platforms.
- Oversee and execute the vulnerability management lifecycle, from detection to remediation guidance, leveraging tools like Jira for tracking and reporting.
- Partner with IT and engineering teams to provide practical recommendations that improve security posture and reduce attack surfaces.
- Conduct internal threat modeling and security architecture reviews for applications developed in-house, ensuring secure design principles are implemented.
- Design and engineer security solutions and automations to strengthen monitoring, detection, and prevention capabilities.
- Support ongoing security awareness initiatives, including the use of KnowBe4 for phishing simulations and training programs.
- Collaborate with external partners (e.g., Coalition and other incident response or insurance providers) for risk reporting and posture improvement.
- Provide detailed reports and metrics on incident trends, vulnerabilities, and compliance posture to leadership.
Required Qualifications
- 2–4 years of experience in cybersecurity operations, incident response, or security engineering.
- Hands-on experience with CrowdStrike Falcon, Microsoft Security tools (Defender, Sentinel, Intune/Entra), and enterprise vulnerability management workflows
- Familiarity with ticketing/project management systems such as Jira.
- Strong understanding of vulnerability management processes, patch cycles, and common frameworks (CVSS, MITRE ATT&CK)
- Knowledge of threat modeling methodologies and secure design principles in modern application development (cloud-native and/or hybrid).
- Familiarity with phishing simulation/awareness platforms (e.g., KnowBe4).
- Excellent communication skills, with the ability to translate technical risk into clear business recommendations.
Preferred Qualifications
- Security certifications such as Security+, CySA+, or Microsoft Security certifications.
- Experience in vulnerability management, penetration testing and incident response.