ZipRecruiter
Job DescriptionJob Description
We’re seeking a highly skilled
Cyber Security Operations Engineer III
to lead advanced incident response, threat detection, and security operations. This role provides technical leadership across cybersecurity infrastructure, threat operations, and incident response, while mentoring junior team members and driving continuous improvement. The ideal candidate will bring deep, multidisciplinary expertise across systems, networking, and application security, as well as hands-on leadership experience in complex environments.
Key Responsibilities
Incident Response & Threat Hunting
Lead major incident response efforts as the incident owner.
Perform advanced analysis of exploits (malware, intrusions, unauthorized use) and identify attack surfaces and pivots.
Hunt for vulnerabilities and stealthy attackers; conduct penetration testing and review vulnerability assessments.
Document incident activities, provide updates to leadership, and drive post-incident reviews.
Cyber Security Infrastructure Operations
Act as an escalation point for cyber security infrastructure issues, providing Tier 3 support.
Guide operational strategy for security tools, ensuring continuous improvement.
Partner with engineering teams during IT projects to ensure solutions meet security and monitoring standards.
Ensure technologies are implemented with prevention, detection, and response capabilities.
Threat Operations & Continuous Improvement
Provide leadership in investigating escalated threats, developing playbooks, and implementing best practices.
Score and remediate cyber security risks, validate mitigation efforts, and improve risk posture.
Stay current on detection, analysis, and adversary techniques; recommend improvements to tools and processes.
Leadership & Mentorship
Mentor junior staff and coordinate training programs.
Ensure proper documentation of systems, diagrams, and processes.
Develop security awareness content and provide education across IT and business units.
Qualifications
Education:
Bachelor’s degree in a relevant field or equivalent experience (Cyber Security or related ).
Experience:
8+ years in cyber security engineering, operations, or incident response within large, complex environments.
Expertise:
Advanced knowledge of cryptography, network defense, endpoint protection, incident response, data protection, and compliance (HIPAA, PCI, SOX).
Skills:
Proficiency with firewalls, IDS/IPS, NAC, EDR, SIEM, vulnerability scanning, credential vaulting, certificate management, MFA, and automation/orchestration.
Experience in scripting or secure software development.
Strong troubleshooting and ability to communicate effectively with technical and non-technical audiences.
:
Industry certifications (CISSP, GDSA, CCNP Security, PCNSE), experience with Active Directory, Linux, penetration testing, wireless security, and application security.
Additional Details
On-call rotation, including nights and weekends, is required.
Must be able to work under pressure, maintain confidentiality, and switch quickly between multiple areas of responsibility.
NextStep Recruiting provides equal employment opportunities (EEO) to all employees and applicants regardless of , , or applicable state and local laws governing nondiscrimination in employment in every location where the company has facilities.
We’re seeking a highly skilled
Cyber Security Operations Engineer III
to lead advanced incident response, threat detection, and security operations. This role provides technical leadership across cybersecurity infrastructure, threat operations, and incident response, while mentoring junior team members and driving continuous improvement. The ideal candidate will bring deep, multidisciplinary expertise across systems, networking, and application security, as well as hands-on leadership experience in complex environments.
Key Responsibilities
Incident Response & Threat Hunting
Lead major incident response efforts as the incident owner.
Perform advanced analysis of exploits (malware, intrusions, unauthorized use) and identify attack surfaces and pivots.
Hunt for vulnerabilities and stealthy attackers; conduct penetration testing and review vulnerability assessments.
Document incident activities, provide updates to leadership, and drive post-incident reviews.
Cyber Security Infrastructure Operations
Act as an escalation point for cyber security infrastructure issues, providing Tier 3 support.
Guide operational strategy for security tools, ensuring continuous improvement.
Partner with engineering teams during IT projects to ensure solutions meet security and monitoring standards.
Ensure technologies are implemented with prevention, detection, and response capabilities.
Threat Operations & Continuous Improvement
Provide leadership in investigating escalated threats, developing playbooks, and implementing best practices.
Score and remediate cyber security risks, validate mitigation efforts, and improve risk posture.
Stay current on detection, analysis, and adversary techniques; recommend improvements to tools and processes.
Leadership & Mentorship
Mentor junior staff and coordinate training programs.
Ensure proper documentation of systems, diagrams, and processes.
Develop security awareness content and provide education across IT and business units.
Qualifications
Education:
Bachelor’s degree in a relevant field or equivalent experience (Cyber Security or related ).
Experience:
8+ years in cyber security engineering, operations, or incident response within large, complex environments.
Expertise:
Advanced knowledge of cryptography, network defense, endpoint protection, incident response, data protection, and compliance (HIPAA, PCI, SOX).
Skills:
Proficiency with firewalls, IDS/IPS, NAC, EDR, SIEM, vulnerability scanning, credential vaulting, certificate management, MFA, and automation/orchestration.
Experience in scripting or secure software development.
Strong troubleshooting and ability to communicate effectively with technical and non-technical audiences.
:
Industry certifications (CISSP, GDSA, CCNP Security, PCNSE), experience with Active Directory, Linux, penetration testing, wireless security, and application security.
Additional Details
On-call rotation, including nights and weekends, is required.
Must be able to work under pressure, maintain confidentiality, and switch quickly between multiple areas of responsibility.
NextStep Recruiting provides equal employment opportunities (EEO) to all employees and applicants regardless of , , or applicable state and local laws governing nondiscrimination in employment in every location where the company has facilities.