REQUIRED QUALIFICATIONS & TECHNICAL SKILLS

• Must be a U.S. citizen and reside in or near Orlando, Florida
• Knowledge of networking fundamentals: TCP/IP, DNS, DHCP, HTTP/S, SMTP, ports/services
• Basic Windows and Linux administration and troubleshooting skills
• Understanding of core security concepts: CIA triad, vulnerability vs. exploit, common attack vectors
• Familiarity with incident response stages, triage, and evidence handling
• Working knowledge of MITRE ATT&CK framework
• Understanding of cloud security fundamentals for Azure, AWS, and other providers
• Experience with reconnaissance and scanning tools: Nmap, Nessus
• Web application testing tools: Burp Suite (Community or Pro), OWASP ZAP
• Enumeration tools: Nikto, gobuster/dirbuster, enum4linux
• Vulnerability assessment tools: OpenVAS, Nessus
• Password attack tools and concepts: Hydra, hashcat (concept-level knowledge acceptable)
• Basic exploitation: Metasploit Framework or similar
• Packet analysis: Wireshark, tcpdump
• Scripting skills in Python, Bash, or PowerShell
• Cloud environment security tools: Prowler, ScoutSuite

DESIRED SKILLS

• Industry certifications such as CompTIA Security+, CEH, or OSCP
• Exposure to threat hunting or advanced incident response workflows
• Understanding of cloud-native security tools and practices
• Experience working in a Managed Security Services or SaaS security model

ABOUT THE ROLE

The Cybersecurity Engineer works remotely to deliver Security Assessment services and support Managed Detection and Response (MDR) activities for clients. Operating under the guidance of senior cybersecurity personnel, this position performs vulnerability assessments, penetration testing, and red team engagements, as well as assists with security investigations and incident response efforts.
The role includes direct interaction with clients during both assessment and active security events, requiring strong communication skills and the ability to translate technical findings into actionable recommendations. This position offers the opportunity to develop hands-on expertise across both offensive and defensive security disciplines.

KEY RESPONSIBILITIES

• Assist in the planning, scoping, and execution of authorized security assessments, including vulnerability assessments, penetration tests, and red team engagements, on client networks, applications, and systems under the direction of senior team members.
• Follow approved testing methodologies and security tools to identify vulnerabilities and weaknesses.
• Document findings with clear remediation guidance and support clients through the remediation process.
• Review and validate escalated security alerts from SOC analysts, determining the severity and impact of potential incidents.
• Serve as an escalation point for SOC analysts, conducting deeper incident investigation and correlation of log data, threat intelligence, and other event information.
• Support incident response activities, including containment, remediation, recovery steps, and post-incident reporting.
• Maintain thorough records of testing activities, investigations, and incident responses in line with company and client requirements.
• Collaborate with internal teams and client representatives to ensure timely, accurate, and effective communication.
• Maintain strict confidentiality, uphold ethical standards, and demonstrate professionalism in client-facing situations.