Security Engineer IV (Contractor)

Job Summary:
is seeking a highly experienced and technically proficient Engineer 5 lead cybersecurity integration efforts for newly acquired organizations.
This senior-level role is critical maintaining s security posture during mergers and acquisitions (M&A), ensuring seamless alignment with existing cybersecurity operations and standards.

Key Responsibilities:
Cybersecurity Requirements Gathering: Lead the collection and documentation of CSOCs cybersecurity requirements for M&A activities with technical depth and accuracy.
Vulnerability Management Integration: Oversee deployment of host agents and supplemental vulnerability scanners.
Enable authenticated scanning and ensure scanner-target connectivity.
Threat Intelligence Enablement: Identify and onboard new brands or domains for threat monitoring and reporting.
Log Source Ingestion: Guide and track integration of critical log sources in the CSOC data lake, beyond Crowd Strike.
Threat Detection Engineering: Support development of detection rules and engineering requirements for newly integrated systems.
MSSP Migration Support: Assist in transitioning services or implementing new requirements unique the M&A.
Ensure continuity and enhancement of alerting, detection, log onboarding, and automation capabilities.
Incident Response & Playbook Development: Onboard contextual incident response processes.
Update playbooks and processes in alignment with audit guidelines and CSOC standards.
Maintain supplemental incident response plans as needed.
Incident & Problem Management: Lead large-scale incident response efforts.
Conduct After Action Reviews and implement Cyber Action Plans prevent recurrence.

Qualifications:
Proven experience in cybersecurity engineering, preferably in M&A environments.
Deep understanding of vulnerability management, threat detection, and incident response.
Strong technical knowledge of log ingestion, automation, and MSSP services.
Excellent communication and leadership skills coordinate across teams and stakeholders.
Ability manage complex integrations under tight timelines with a focus on risk mitigation.

Required Experience:
Cybersecurity Expertise:
Minimum 10%2B years of experience in cybersecurity engineering or operations.
Proven track record in M&A cybersecurity integration, including vulnerability management, threat detection, and incident response.
Hands-on experience with security tools and platforms such as Crowd Strike, SIEMs (e.g., Splunk, QRadar), vulnerability scanners (e.g., Qualys, Tenable), and threat intelligence platforms.

Technical Skills:
Strong understanding of network and endpoint security, log ingestion pipelines, and authenticated scanning.
Experience with automation and orchestration tools (e.g., SOAR platforms) for incident response and phishing remediation.
Familiarity with cloud environments (AWS, Azure, GCP) and hybrid infrastructure security.
Ability lead large-scale incident response and conduct After Action Reviews with follow-through on remediation plans.

Leadership & Communication:
Demonstrated ability lead cross-functional teams, manage complex projects, and communicate effectively with technical and non-technical stakeholders.
Experience in developing and maintaining playbooks, processes, and audit-compliant documentation.