Job Description

Security Monitoring Engineer – Threat & Vulnerability

Location: Philadelphia area (relocation assistance available)

US Citizens or Green Card Holders will only be considered

No C2C, H1B or OPT

In this role, you will design and implement authentication and authorization controls, harden systems, protect intellectual property, and secure enterprise cloud technology implementations. You’ll conduct penetration testing to identify risks, strengthen our blue team capabilities to defend against them, and develop innovative solutions to support business goals.

Responsibilities:

• Research, architect, and operate identity, access, endpoint, web, and cloud security controls.
• Enhance Blue Team defenses by developing detection logic, automating response workflows, and monitoring SIEM/EDR tools (Splunk, CrowdStrike, Sophos, Sumo Logic).
• Develop custom scripts (Python, Bash, PowerShell) to automate triage, log parsing, and diagnostics.
• Design and secure strong IAM and RBAC policies.
• Partner with cross-functional technical and business teams to understand how security solutions interact with broader business needs.
• Conduct forensic analysis and incident investigations, ensuring compliance with regulatory frameworks (e.g., HIPAA, PCI DSS, NIST).
• Contribute to security awareness training, knowledge-sharing, and continuous improvement initiatives.

Qualifications:

• Bachelor’s degree in Computer Science, Cybersecurity, or related field 
• 3–5 years of hands-on experience in security engineering, penetration testing, blue team defense, or vulnerability management.
• Strong understanding of information security concepts, operating system internals, and secure network design.
• Proficiency with Python, Bash, or PowerShell for automation.
• Experience with penetration testing tools (Burp Suite, Metasploit, Nmap, OWASP ZAP) and blue team tools (Splunk, Wireshark, FTK, CrowdStrike).
• Certifications such as Security+, CCNP, CCNA, Penn Testing are a plus.