CCM Consulting
Short Hills, NJ
Post Resume to
View Contact Details &
Apply for Job
Job Description :

Security Engineer.

Job Summary:

We are seeking a skilled and proactive Security Engineer to support the design, implementation, and maintenance of our organization's security posture. The ideal candidate will have a strong understanding of industry security frameworks, risk management, and compliance standards. This role involves identifying vulnerabilities, designing secure systems, performing threat modeling, and ensuring compliance with regulatory requirements such as GDPR and HIPAA.

Key Responsibilities:

  • Design, implement, and monitor security measures for the protection of computer systems, networks, and information.
  • Apply deep knowledge of security frameworks (e.g., NIST, ISO 27001) to develop and enforce security policies and standards.
  • Conduct risk assessments and threat modeling to proactively identify and mitigate vulnerabilities across infrastructure, applications, and networks.
  • Collaborate with IT, development, and compliance teams to ensure security controls are integrated into infrastructure and application lifecycles.
  • Analyze and respond to security incidents, perform root cause analysis, and coordinate remediation.
  • Ensure compliance with relevant regulations and standards, including GDPR, HIPAA, SOX, and internal security policies.
  • Evaluate and recommend new security tools, technologies, and automation solutions.
  • Create and deliver security awareness training to technical and non-technical staff.
  • Provide technical leadership and guidance on security architecture and secure design best practices.

Required Qualifications:

  • Bachelor’s degree in Cybersecurity, Computer Science, Information Technology, or a related field (or equivalent experience).
  • 5+ years of experience in an information security engineering role.
  • Strong understanding of security standards and frameworks, such as NIST 800-53ISO 27001, or CIS Controls.
  • Proficiency in risk managementthreat modeling, and security assessment methodologies.
  • Solid understanding of network architecture, firewalls, VPNs, IDS/IPS, and security protocols.
  • Familiarity with compliance frameworks and regulatory standards (e.g., GDPRHIPAAPCI DSS).
  • Strong analytical, problem-solving, communication, and leadership skills.
  • Security certifications such as CISSPCISMCEH, or GSEC.
  • Experience with cloud security (AWS, GCP, Azure) and container security (e.g., Kubernetes, Docker).
  • Knowledge of SIEM tools (e.g., Splunk, QRadar), vulnerability management platforms, and endpoint protection technologies.
  • Experience working in Agile and DevSecOps environments.
             

Similar Jobs you may be interested in ..