174 Power Global is hiring: Cybersecurity Engineer in Houston

Overview

174 Power Global, headquartered in Irvine, California, is an affiliate company of Hanwha Group. 174 Power Global designs, builds and manages solar power plant solutions with a full spectrum of PV offerings from development to operations and maintenance. This position is for a Cybersecurity Engineer who will safeguard the organization\'s digital infrastructure through proactive threat management, security planning, and incident response. The role requires cloud security expertise, Microsoft 365, and endpoint protection, with strong collaboration across departments. This position is located in Houston, TX, and the ideal candidate should be within commutable distance to the Houston office.

The employee may be required to perform other job-related duties as requested by management. All duties will be assigned in accordance with applicable laws and company policies.

Key Responsibilities

• Network Security & Firewalls — Manage FortiGate firewalls (cloud-hosted) and FortiAnalyzer for centralized logging/analysis; configure firewall policies, NAT, SSL inspection, and web filtering; maintain and troubleshoot site-to-site VPN tunnels; review firewall logs, alerts, and anomalies regularly; coordinate escalations with MSP for advanced network support.
• Identity & Access Security — Administer Conditional Access and security policies in Entra ID; manage Privileged Identity Management (PIM) for just-in-time access; monitor risky user sign-ins with Azure Identity Protection; audit and manage guest/B2B access across multiple tenants; ensure federated SSO integrations (Workday, Concur, Jira, CRM) follow least-privilege design.
• Endpoint & Vulnerability Security — Operate SentinelOne & Huntress as primary EDR platforms; manage Microsoft Defender for Endpoint and Vulnerability Management; collaborate with IT and MSP to remediate vulnerabilities and track patch compliance.
• Email & Data Security — Configure Exchange Online transport rules (encryption, forwarding, malicious forwarding detection); evaluate and propose new email security options; monitor SaaS-specific alerts (M365, Concur, Workday, Jira, Salesforce/CRM); manage Spanning O365 backups and validate data recoverability; define and enforce DLP rules across Exchange, OneDrive, SharePoint, and Teams.
• SaaS Security & Alerts — Monitor Microsoft 365 Secure Score and Compliance Manager dashboards; investigate alerts from M365, Azure, AWS, SentinelOne, Huntress, Blackpoint SOC, and SAAS Alerts; research false positives, escalate true positives, and recommend corrective actions.
• Threat Detection, SOC & Incident Response — Triage alerts from Blackpoint SOC, SAAS Alerts, SentinelOne, and Huntress; create and lead incident response playbooks (ransomware, insider threat, token theft); collect forensic evidence (logs, snapshots, memory captures) as needed; escalate incidents to MSP/SOC when required, while retaining internal ownership; provide executive-level incident reports with remediation and root cause analysis.
• Security Awareness & Compliance — Operate KnowBe4 for annual training, phishing simulations, and remedial assignments; maintain compliance training tracking and provide quarterly reports; enforce completion of remedial training for failed phishing tests; align controls with NIST CSF, NIST 800-53, and PCI DSS; maintain IT security policy library (Acceptable Use Policy, Password Policy, BYOD, data classification).
• Cloud Security Oversight — Azure: configure and monitor Defender for Cloud, Azure Firewall, DDoS Protection, NSGs/ASGs, Key Vault, and activity logs; AWS: manage WAF, Shield, VPC Security Groups, GuardDuty, Security Hub, CloudTrail, and Secrets Manager; cross-cloud: ensure encryption at rest and in transit, centralized logging, quarterly config reviews, audit support, and secure IaC templates.
• Research & Continuous Improvement — Stay current with emerging threats, MITRE ATT&CK techniques, and zero-days; evaluate new security tools (email filtering, SIEM, CASB, SaaS posture management); provide detailed project proposals to pilot and implement approved tools with no user disruption.
• Reporting & Metrics — Deliver monthly reports on phishing campaigns, SOC alerts, Secure Score, patching, and SaaS alerts; conduct quarterly compliance reviews and privileged access audits.
• Additional Responsibilities from File — Design and implement comprehensive cybersecurity strategy and architecture; lead or participate in security architecture reviews for new and existing projects; develop and implement automation scripts to streamline security tasks (Python, PowerShell); assess third-party vendor security posture and conduct regular audits; support internal and external audits, maintaining thorough documentation for compliance; conduct digital forensics and investigations as needed.

Qualifications

• Bachelor\'s degree in Cybersecurity, Information Technology, Computer Science, or related field.
• Minimum of 4–5 years in a cybersecurity role, preferably in a mid to large-sized organization.
• Certifications such as CISSP, CCSP, CCSK, CASP+, CEH, OSCP, or similar are highly desirable.
• Deep knowledge of cybersecurity frameworks (NIST, ISO 27001, CIS Controls).
• Hands-on experience with security tools (firewalls, IDS/IPS, SIEM, endpoint protection).
• Strong understanding of cloud security (Azure, AWS) and Microsoft 365 Admin Centers (Entra ID, Intune, Exchange, Security, Compliance).
• Proficiency in programming/scripting (Python, PowerShell).
• Excellent analytical, problem-solving, and communication skills.
• Experience in vulnerability management, penetration testing, and digital forensics.
• Project management experience and ability to coordinate cross-functional teams.
• Experience integrating security into business operations and collaborating across departments.
• Familiarity with Zero Trust architecture and principles

Compensation: $140,000 - $175,000 Salary

174 Power Global provides equal employment opportunities (EEO) to all employees and applicants for employment without regard to race, color, religion, sex, national origin, age, disability or genetics. www.174powerglobal.com.