UNIVERSAL Technologies is seeking a MYCITY Senior Security Engineer for an onsite position in New York, NY. Candidates with an active LinkedIn account are preferred. WHO WE ARE: UNIVERSAL Technologies, LLC is a Women-Owned (M/WBE) IT solutions and consulting company focused on delivering enterprise systems that significantly improve our clients' IT performance. We work across the IT spectrum, including Development, Business/Systems/Data Analysis, Project Management, Cyber Security, Network Engineering, and High-Level System Architecture. The pride in the services we provide and the accessibility and flexibility we offer to employees are what make UNIVERSAL Technologies stand out! We aim to propel your IT career to the next level and excite our employees with new and challenging projects. WHAT WE OFFER: Our W2 employees can expect the following benefits: + Competitive pay + Health/Dental Insurance + Group Life Insurance + 401K + HSA/FSA + Pre-Tax Transportation Program + Generous Paid Time Off/Holiday Policy SCOPE OF SERVICES: As a Senior Security Engineer, your responsibilities include: + Conducting organization-wide cybersecurity risk analysis and maintaining risk updates. + Developing, presenting, and obtaining approval for cybersecurity strategies to address identified risks. + Tracking progress against cybersecurity plans and overseeing their execution. + Leading cybersecurity initiatives for the MyCity Portal development project. + Developing network architecture diagrams, documenting communication flows, and creating high- and low-level design documents. + Troubleshooting complex network issues, engaging vendor support, and driving resolution. + Translating compliance requirements into security controls and proposing compensating measures. + Providing upper management with reports on cybersecurity posture and risk mitigation progress. + Maintaining a risk register and identifying cybersecurity gaps. + Defining and monitoring cybersecurity control metrics. + Collaborating with partners to develop and maintain incident response plans. + Monitoring and responding to security alerts. + Reviewing and optimizing cybersecurity controls and ensuring organizational compliance. + Enforcing endpoint security standards. + Analyzing vulnerabilities and collaborating with teams for remediation and validation. + Conducting threat simulations and providing cybersecurity recommendations. + Guiding teams in building "secure by default" infrastructure and exploring innovative security technologies. MANDATORY SKILLS/EXPERIENCE: Note: Candidates who do not have the mandatory skills will not be considered. + Bachelor's degree in Computer Science, Information Systems, or equivalent experience. + 12+ years of experience in information security. + 8+ years of experience in IT infrastructure, application architecture, risk management, middleware, and IT operations. + 8+ years of experience in networking, load-balancing, DNS, TLS/SSL, SAML, Single Sign-On, Kerberos, MFA, and identity management. + 4+ years of experience working in cloud environments (Azure, AWS, GCP). + 4+ years of experience securing internet-facing applications using WAF technologies (e.g., Akamai, Cloudflare, Azure FrontDoor, AWS CloudFront). + 4+ years of experience in Network Security Telemetry and Security Event Data collection and processing. + 4+ years of experience with endpoint security and EDR solutions. + 4+ years of experience with scripting languages (Python, Bash, PowerShell, etc.). + 4+ years of experience in Windows, Linux, or MacOS administration. + 4+ years of experience with vulnerability management and application scanning tools. DESIRABLE SKILLS/EXPERIENCE: + Experience with Network Security Telemetry Collection Systems across multi-cloud and on-prem environments. + Experience with Data Loss Prevention (DLP) systems. + Strong understanding of information security principles, technical control implementation, networking protocols, firewalls, and security protections. + Knowledge of cloud services such as O365, Azure AD, IAM, and Entra ID. + Familiarity with CIS security controls. + Experience with SIEM/log aggregation systems (Syslog-NG, LogScale/Humio). + Experience with SSO solutions (Entra ID, PingFederate, Okta). + Familiarity with CASB/SASE products, cloud proxies (NetSkope, Zscaler, Palo Alto Prisma Access). + Hands-on experience with Cloud-based EDR/XDR tools. + Strong knowledge of endpoint security management and policies. + Experience with asset management and vulnerability management tools (on-prem/cloud-based). + Ability to learn new technologies and adapt quickly. + Strong analytical, problem-solving, and decision-making skills. + Excellent communication and collaboration skills. UNIVERSAL Technologies is an Equal Opportunity Employer.