​This is an advanced level, remote, contract-to-hire Cybersecurity Engineer role focused on system and network security. The engineer will be a top-level contributor and expert in security operations, incident response, and forensic analysis. This position requires deep technical knowledge in networking, Linux/Windows administration, advanced scripting, and malware analysis, preferably within banking, government, or healthcare sectors.

• ​Location: York, Pennsylvania (Remote Friendly).
• ​Work Type: Contract To Hire (3 months duration to start).
• ​Experience: 5+ years of IT experience with 3+ years of enterprise information system security experience is required.
• ​Education: Associate’s Degree Required; Bachelor’s Degree preferred.
• ​Certification: CISSP, ISSA, CCSP or related security certification(s) Upon Hire Required.
• ​Focus: Continuous monitoring program, incident response management (forensics, containment), security system deployment (Check Point, Anti-virus, DLP, etc.), and developing architectural/functional specifications.

​Duties & Responsibilities: Incident, Monitoring, and Design

​The engineer is responsible for high-level operations, security architecture, and complex threat analysis.

• ​Security Operations & Monitoring: Make enhancements to existing monitoring and security operations, and contribute to a continuous monitoring program framework. Monitor information systems and maintain security controls to ensure regulatory compliance.
• ​Deployment & Integration: Participate in the deployment and operation of information security systems, including integration, testing, troubleshooting, and updating/upgrading of various security tools (Anti-virus, IPS, malware detection, DLP, Identity and access management, encryption tools).
• ​Incident Response: Key participant/operator in incident response activities, including reporting, enterprise coordination, isolation, containment, eradication, and recovery. Provides forensic analysis for incidents. Participates in tactical efforts to stem attacks.
• ​Threat Analysis: Provides advanced expertise around the analysis of malware, suspicious emails, and writes protection signatures.
• ​Documentation & Reporting: Develops and maintains various daily reports for audit review (security and change management). Responsible for writing the architectural and functional specifications related to security and data flows.
• ​Support: Provides advanced technical support and consultation on complex projects. Provides after hours, on-call support as needed.

​Required Knowledge and Skills

​The role mandates advanced knowledge in core infrastructure and offensive/defensive security.

• ​Core Security Expertise:
  • ​Advanced awareness and understanding of cybersecurity trends and hacking techniques.
  • ​Advanced knowledge of malware analysis and writing protection signatures.
• ​Networking & OS:
  • ​Advanced knowledge of common application-level protocols (SMTP, SSH, HTTPS, FTP) and network fundamentals (routing, switching).
  • ​Advanced understanding of Linux and/or Windows administration.
  • ​Advanced scripting knowledge (Bash, VBScript, Perl, PHP, etc.).
• ​Domain (Preferred): Prior experience in banking, government, or healthcare security procedures, specifically with a network and/or security engineering focus.