Red Cup ITRemote
Senior Staff Security Engineer
United States of America
Full Time
2 hours ago
Visa Sponsor
Key skills
AWS SecurityAzure SecurityZero Trust ArchitectureIAMEntra IDSOAR EngineeringSIEM EngineeringSentinelSplunkCrowdStrikeMITRE ATT&CKDeep-packet InspectionBGP SecuritySD-WANSASEMicro-segmentationPythonTerraformAnsibleCISSPCISMCCSPGIAC CertificationsInformation SecurityMulti-client ConsultingMSP EnvironmentsBilingual CommunicationCPowerShellAWSAzureMentoringZero Trust
About this role
Red Cup IT is seeking a Senior Staff Security Engineer who operates at the intersection of high-level strategy and operational excellence. This role involves architecting scalable security solutions for diverse client environments and leading technical responses to sophisticated security incidents.
Responsibilities:
- Architect and maintain hardened, isolated security stacks (SIEM, EDR, XDR) designed to scale across hundreds of distinct client environments
- Serve as the technical lead for vendor evaluations, 'battle-testing' emerging tech to define our global standard offerings
- Engineer 'Gold Image' baselines and automated deployment templates based on CIS and NIST frameworks to ensure rapid, secure onboarding
- Serve as the ultimate technical escalation point for the SOC, leading the response to sophisticated APTs and complex breaches
- Conduct deep-dive Root Cause Analysis (RCA) and translate incident findings into systemic, fleet-wide preventative measures
- Build the automation tissue that connects our stack, utilizing Python, PowerShell, and Terraform to automate threat containment and patch management
- Develop custom API integrations to bridge gaps between vulnerability scanners, RMM tools, and ticketing systems for seamless auto-remediation
- Act as a high-level advisor for key accounts, translating abstract risk into actionable business roadmaps for C-suite stakeholders
- Oversee technical evidence collection and governance for HIPAA, SOC 2, and CMMC, ensuring our clients remain audit-ready
Requirements:
- 8–12+ Years in Information Security, with a significant background (3+ years) in multi-client consulting or MSP environments
- Proven track record of leading cross-functional projects and mentoring senior engineers without direct-report authority
- The rare ability to pivot from a deep-dive technical audit with an engineer to a risk-based ROI presentation for a CEO
- Expert-level AWS/Azure security; Zero Trust Architecture (ZTA); Advanced IAM/Entra ID
- Advanced SOAR/SIEM engineering (Sentinel, Splunk, CrowdStrike); MITRE ATT&CK mapping
- Deep-packet inspection; BGP security; SD-WAN; SASE; Micro-segmentation
- Proficiency in Python, Terraform, or Ansible for infrastructure-as-code
- CISSP (Highly Preferred), CISM, CCSP, or specialized GIAC (GCIH/GCFA)