Job description

Our client is seeking a highly skilled and proactive Senior Cybersecurity Operations Engineer to join their advanced security team in **Kansas City, Missouri**. This critical role involves the day-to-day management and enhancement of the organization's cybersecurity posture, focusing on threat detection, incident response, and security tool implementation. The ideal candidate will possess deep technical expertise in network security, endpoint protection, and security information and event management (SIEM) systems, along with a passion for staying ahead of evolving cyber threats. Key Responsibilities: Monitor security alerts and events from SIEM, IDS/IPS, endpoint detection and response (EDR), and other security tools. Investigate and respond to security incidents, performing root cause analysis and implementing remediation actions. Develop, configure, and maintain security technologies, including firewalls, VPNs, intrusion detection systems, and web application firewalls. Implement and manage security policies, procedures, and standards to protect organizational assets. Conduct vulnerability assessments and penetration testing, and manage remediation efforts. Develop and deliver security awareness training to employees. Collaborate with IT teams to ensure secure system configurations and network designs. Participate in security audits and compliance activities. Stay current with emerging threats, vulnerabilities, and cybersecurity best practices. Develop and maintain incident response playbooks and disaster recovery plans. Automate security processes and workflows using scripting and other tools. Provide technical guidance and mentorship to junior security analysts. Qualifications: Bachelor's degree in Computer Science, Information Security, or a related field; Master's degree preferred. Minimum of 7 years of experience in cybersecurity operations, incident response, or security engineering. In-depth knowledge of networking protocols, operating systems (Windows, Linux), and common attack vectors. Hands-on experience with SIEM platforms (e.g., Splunk, QRadar, ArcSight) and EDR solutions. Proficiency in scripting languages such as Python, PowerShell, or Bash. Experience with cloud security concepts (AWS, Azure, GCP). Relevant certifications such as CISSP, CEH, GIAC, or Security+ are highly desirable. Strong analytical and problem-solving skills with meticulous attention to detail. Excellent communication and interpersonal skills, with the ability to articulate complex technical issues. Ability to work effectively in a fast-paced, high-pressure environment. Experience with vulnerability management and penetration testing tools. This is an exceptional opportunity for a seasoned cybersecurity professional to contribute to the security of a leading organization in **Kansas City, Missouri**.

Requirements