Job Title:  Senior Cybersecurity & Compliance Engineer

Job Purpose

We are looking for a Senior Cybersecurity Engineer to join the Enersys Software team. In this role, you will be responsible for diligently monitoring all security activities within our Energy Ecosystem, which includes DC Fast Charge, Battery Energy Storage, and related systems. You will manage the security infrastructure that underpins these operations and collaborate closely with the Software team across multiple disciplines. Your primary focus will be to lead initiatives aimed at preventing and addressing cybersecurity incidents while continuously refining policies and rules to enhance our security posture.

As a Cybersecurity Engineer, you will be instrumental in building strong collaborations with software, systems engineering, and product management teams. Your role will involve delivering comprehensive support and enforcing strict security protocols across global platforms, ensuring solutions are well-protected against emerging cyber threats while aligning with the company’s overall goals

Essential Duties and Responsibilities

• Oversee and analyze dashboard metrics, security feeds, phishing campaigns, SIEM alerts, and various reports.
• Perform gap analyses and offer actionable suggestions to address deficiencies.
• Utilize scripting and other methods to enhance the efficiency and effectiveness of security operations.
• Create and enforce cybersecurity policies that align with industry standards and regulatory mandates, promoting ongoing improvement.
• Execute security evaluations, pinpoint vulnerabilities, and suggest remediation strategies to strengthen overall security.
• Design and implement secure access service edge solutions that incorporate security features for the holistic protection of distributed networks and remote users.
• Evaluate internal security and provide pertinent information to both internal and external stakeholders.

Qualifications

• Bachelor's degree in computer science, engineering, or a related field is required.
• Over 5 years of experience in security engineering, SecOps, Data Loss Prevention, event management, security monitoring, and risk-based alerting is highly sought after.
• Demonstrated experience in cybersecurity involving Identity, Firewall, and Cloud technologies.
• Practical experience in the installation, configuration, operation, and monitoring of CI/CD pipeline tools.
• Experience in integrating static application security testing (SAST), dynamic application security testing (DAST), software composition analysis (SCA), and other security tools into CI/CD pipelines for automated security assessments.
• Ability to collaborate effectively with various functional teams and employees at all levels to achieve results in a professional manner.
• Identify opportunities to automate DevSecOps processes and guide the team in enhancing efficiency and scalability.