Cybersecurity Engineer

About Visory:
In 2022, Visory was formed through the merger of three IT and cybersecurity brands – RightSize Solutions, True North Networks, and Swizznet, uniting their strengths in enterprise-grade technology and cybersecurity services. In 2023, Visory further strengthened its leadership position in these domains by merging with Adopt Technologies, a prominent technology company. Visory offers flexible enterprise-level technology and cybersecurity solutions to support client growth, leveraging extensive technical knowledge and industry expertise for successful digital transformation.

Today as Visory, our team of professionals draws on our extensive technical knowledge and our industry expertise to help clients evolve through digital transformation.

Job Summary:
The Cybersecurity Engineer is a senior level position responsible for meeting a variety of technical, security, and compliance needs for our clients. This position also safeguards information system assets and networks by identifying and solving potential and actual security problems and identifying and resolving vulnerabilities and incidents in a secure manner. In this position the Cybersecurity Engineer must understand security principles, basic compliance concepts, and general knowledge of security best practices. This position will work on any other initiatives and ongoing projects as assigned in addition to any other duties the Company may assign and will participate in an on-call rotation. The Cybersecurity Engineer position will report to the Director of Cybersecurity Services.

Duties/Responsibilities:

• Protects systems by defining access privileges, control structures, and resources, as assigned.
• Review vulnerabilities, research resolution, recommend, then plan, implement, and test the solution to achieve compliance.
• Recognizes problems by identifying abnormalities and reporting violations.
• Recognizes security improvements by assessing current situation; evaluating trends; anticipating requirements and communicates recommendations to the Director of Cybersecurity Services.
• Determines security violations and inefficiencies by conducting periodic audits, as assigned.
• Upgrades system by implementing and maintaining security controls according to NIST guidelines and other industry frameworks.
• Monitor aiSIEM portal and evaluate and remediate issues.
• Share responsibility for aiSIEM platform maintenance, whitelisting, and working with Seceon support for troubleshooting.
• Troubleshoot and resolve SecureWorkplace tickets with clear document resolution and update KB documentation where necessary.
• Keep users informed by preparing performance reports, or progress documentation, communicating system status and potential issues needing remediation with regular update calls or meetings.
• Manages client responses timely.
• Maintains quality service by following organization standards.
• Mentor and guide Tier 1 coworkers and assist with escalated tickets.
• Maintains technical knowledge by attending educational workshops, reviewing publications, and keeping current on emerging trends and educational opportunities.
• Contributes to team effort by accomplishing related results as needed.
• Ensure that quality assurance procedures are adhered to, and audits are arranged and carried out in accordance with company policies and procedures.
• Perform other technical tasks as needed and assigned, such as but not limited to, aiSIEM CCE configuration, firewall security settings, and general overall hardening settings for network equipment and cloud services.
• Vulnerability remediation as assigned.
• Intune MDM rollout projects or configuration tasks as assigned.
• Assist with closing compliance audit deficiencies/risk analysis gaps as assigned.

Required Skills/Abilities:

• Critical thinking.
• Ability to recognize severity or urgency of situation to properly triage and begin remediation.
• Identify and track repetitive tasks that have potential to be automated.
• Strong IT skills and knowledge including hardware, software, networks, and awareness of trending cybersecurity items.
• Two or more years work experience as a System Engineer or related position with experience with Windows OS.
• Ability to use logic and reasoning to identify the strengths and weaknesses of IT systems.
• A forensic approach to challenges.
• An understanding of how hackers work and be able to keep up with the fast pace of change in the criminal cyber-underworld.
• Ability to seek out vulnerabilities in IT infrastructures.
• Respect and adhere to ethical principles regarding data protection and confidentiality regarding any information obtained as part of job duties.
• Exceptional attention to detail.
• Strong communication skills when writing and speaking to various audiences.
• Strong customer service skills.
• Self-starter who effectively manages their own priorities and activities

Education and Experience:

• Associates degree or higher in Cybersecurity preferred.
• Minimum of a year of experience in Information Technology or related field.
• Demonstrated ability in threat hunting and SIEM tuning and event remediation.
• Demonstrated ability in security baselines and compliance requirements.

Physical Requirements:
Prolonged periods of sitting at a desk and working on a computer