Cybersecurity Engineer
ARCHIVED
We can't find an active application page for this role right now. It may reopen or be listed elsewhere. Use Next Steps to search for an active apply link and similar live jobs.
The Talent Acquisition department hires qualified candidates to fill positions which contribute to the overall strategic success of Howard University. Hiring staff “for fit” makes significant contributions to Howard University’s overall mission.At Howard University, we prioritize well-being and professional growth.Here Is What We OfferHealth & Wellness: Comprehensive medical, dental, and vision insurance, plus mental health supportWork-Life Balance: PTO, paid holidays, flexible work arrangementsFinancial Wellness: Competitive salary, 403(b) with company match Professional Development: Ongoing training, tuition reimbursement, and career advancement pathsAdditional Perks: Wellness programs, commuter benefits, and a vibrant company cultureJoin Howard University and thrive with us!https://hr.howard.edu/benefits-wellnessBasic FunctionThe Cybersecurity Engineer is responsible for protecting the organization's information systems and digital assets by developing, implementing, and maintaining technical security controls. This role includes conducting security assessments, monitoring systems for vulnerabilities or intrusions, and ensuring that the organization’s IT environment remains compliant with industry and regulatory standards such as NIST, ISO/IEC 27001, HIPAA, PCI DSS, and GDPR. The engineer also plays a critical role in incident detection, response, and prevention.Supervisory AuthorityNONENature And ScopeOperating in a dynamic threat landscape, the Cybersecurity Engineer reports to the Senior Director of Cybersecurity and works with other IT, compliance, and business stakeholders. Although not a supervisory role, the Cybersecurity Engineer may guide junior staff or external contractors and lead technical implementation efforts on security-related projects. The role demands staying up to date on emerging threats, tools, and best practices, and proactively evolving the organization's defenses accordingly.This position is both hands-on and strategic, requiring expertise in secure system design, threat intelligence, monitoring tools, and risk mitigation. It encompasses environments spanning on-premises data centers, hybrid infrastructures, and public clouds (e.g., Azure, AWS).Principal AccountabilitiesConduct vulnerability scans, penetration tests, and security configuration reviews.Evaluate system and application hardening measures using CIS benchmarks and STIGs.Monitor networks and endpoints using tools like SIEM, EDR, and IDS/IPS (e.g., CrowdStrike, Sentinel).Analyze security events and logs to detect, triage, and respond to threats.Deploy, configure, and maintain security tools, including:FirewallsNetwork Access Control (NAC)Antivirus/Endpoint ProtectionDLP, CASB, and vulnerability management platformsDevelop and enforce cybersecurity policies, standards, and operating procedures.Ensure system compliance with internal policies and external frameworks such as NIST 800-53, ISO/IEC 27001, and PCI DSS.Develop and deliver training on phishing, password hygiene, and secure computing practices.Support tabletop exercises and simulation drills to test security readiness.Work with DevOps and infrastructure teams to embed security into system architecture.Participate in project reviews to identify and mitigate risks early in the system development lifecycle.Core CompetenciesExperience in the following:Windows Server Operating Systems, VMwareCore enterprise roles such as Active Directory, Group Policy, RAIDUS\NPS, CAsBare metal servers and data center configurationsFalcon CrowdstrikeMicrosoft Azure (IaaS, PaaS, SaaS), Office 365, Entra ID, Azure SentinelHybrid cloud integrationsAuthentication protocolsThreat Intelligence, Threat HuntingProficient in securing firewalls, VPNs, and virtual environments (VMware/Hyper-V).Hands-on experience with Microsoft Defender Suite, Cisco DNA, and Cisco ISEFamiliar with scripting for automation (e.g., PowerShell, Python) to streamline security operationsDeep knowledge of secure software development lifecycle (SSDLC), DevSecOps principles, and CI/CD pipeline securityExperience implementing TLS, SSL, VPN encryption, HSMs, and certificate lifecycle managementDeep understanding of encryption, PKI, authentication, secure networking, and operating system security across Linux and Windows environments.Proficient in analyzing logs, threat intelligence, and indicators of compromise (IOCs) to drive timely threat mitigation.Ability to translate complex technical findings into actionable recommendations for technical and non-technical audiences.Methodical and responsive approach to detecting, responding to, and remediating security incidents.Works cross-functionally with IT, audit, compliance, and legal to promote enterprise-wide security awareness and enforcement.Careful review of systems, code, and configurations to identify small changes that may indicate large risks.Able to shift priorities rapidly in response to new vulnerabilities, threat campaigns, or business requirements.Minimum RequirementsA Bachelor's degree from a four-year college or university in computer science/ Information Technology with a security concentration. A master’s degree in business administration is highly desirable. Must have 7–10 years of progressive experience in information security, including a minimum of 5 years in a security engineering role. One or more industry-recognized certifications such as CISSP, CISM, CCSP, SABSA, TOGAF, AWS Certified Security – Specialty, or Azure Security Engineer Associate is required or strongly preferred. The candidate should demonstrate hands-on expertise in network and application security architecture, cloud security controls across platforms like Azure, AWS, or GCP, identity and access management (including IAM, SSO, and MFA), and security monitoring tools such as SIEM, SOAR, and EDR. Experience with Zero Trust architecture and secure DevSecOps practices is essential. A solid understanding of key regulatory frameworks and compliance requirements—including GDPR, HIPAA, FERPA, and FISMA—is also required. In addition to technical capabilities, the candidate should possess strong collaboration and critical thinking skills, a sharp attention to detail, and the ability to effectively manage multiple priorities in a fast-paced environment.Compliance Salary Range Disclosure$130,000-$140,000