Cyber Security Engineer

Cyber Security Engineer

In the maritime industry, where colossal ships dock, and millions of tons of cargo are moved with precision, it takes teams of dedicated individuals to keep global trade in motion. Working in this dynamic sector means that you play a part in ensuring the pulse of commerce never skips a beat, all while driving the future of supply chain logistics and marine terminal operations.

Dive into a career where your talents make an impact and help us steer the future of this vital sector. Every job function in our organization, whether it's on the docks or behind the scenes in administrative roles, finance, payroll, or IT, has a significant impact on the national economy and critical supply chain operations. Where the pulse of global trade meets the precision of maritime excellence, at Ports America, we don't just move cargo; we drive the nation's economic engine!

We are looking for a driven, self-starting Cyber Security Engineer to help our Information Security Team strengthen our cyber security program. This role provides a unique opportunity for a cyber-security professional to learn a complex and interesting business model while supporting all facets of a national organization. Using multiple tools and processes, this role will assist in reducing risk in a business that is part of our nation's critical infrastructure.

As the Cyber Security Engineer, you will provide cyber security support, guidance, and technical expertise to help ensure that risks to the business of Ports America are minimized, while maintaining the ability of our ports and terminals to move the maximum amount of cargo in the minimum amount of time. At Ports America, your job matters!

Essential Duties:

• Assist in the measurement and analysis of the organization's cyber security posture and recommend improvements to address risks.
• Support the implementation of network security best practices across multiple solutions.
• Assist with implementation of cyber security solutions (new/modifications) to reduce risk while enabling business efficiency and productivity.
• Support the development, implementation, and maintenance of policies, processes, and procedures associated with cyber security and Identity and Access Management (IAM).
• Contribute to endpoint security initiatives, including hardening, tools, and procedures.
• Stay current on threats, vulnerabilities, attacks, and countermeasures.
• Monitor and manage web filtering solutions.
• Assist in the development and refinement of patch and vulnerability management processes.
• Support disaster recovery plan development and testing.
• Participate in cyber security incident response across the enterprise.
• Assist with capturing and refining information protection requirements and integrating them into system designs.
• Support security evaluations, system analyses, penetration testing, and security architecture reviews.
• Prepare and/or conduct written and oral reports and presentations.
• Facilitate periodic access reviews to support SOX/Internal Controls compliance.
• Assist with malware analytics and forensic investigations.

Working Conditions:

• Must be willing to travel (up to 10%)
• Office environment

Minimum Qualifications:

• BA/BS degree in Computer Science, Engineering, Information Systems, or equivalent experience
• 4+ years in Information Technology, including at least 2 years in an Information Security Engineering or similar capacity.

Preferred Qualifications:

• Strong understanding of NIST and CIS Controls.
• Solid working knowledge in incident response, network security (firewalls, NAT, VPN, NGFWs, IPS/IDS), web filtering, patch management, vulnerability assessments, and malware monitoring.
• Direct experience with anti-virus software, intrusion detection, firewalls, SIEM, patch management tools, and content filtering.
• Experience in a system administration role supporting multiple platforms and applications.
• Experience with virtualization technologies.
• Security+ or similar certification
• CISSP, CEH, OSCP, or similar certifications
• Experience with secure network, system, and application design
• Experience with Linux/Unix,
• Experience managing and securing public cloud platforms (IaaS, PaaS, SaaS)
• Strong, hands-on knowledge of Microsoft Windows OS, Active Directory, Group Policy Management, and Microsoft Office 365 environments.
• Knowledge of Windows network configurations, Microsoft ADFS, and enterprise environments.
• Familiarity with packet capture and analysis techniques and technologies.
• Working knowledge of endpoint protection tactics and tools.
• Experience with risk assessment tools and methods.
• Familiarity with disaster recovery, forensic tools, and mobile device management (MDM/EMM).
• Skills in structured analysis and requirements gathering.
• Ability to analyze logs using tools such as Splunk, ELK, or similar platforms.
• Ability to present technical and security concepts to non-technical audiences.
• Strong relationship-building and collaboration skills with stakeholders and IT operations peers.
• Scripting/programming knowledge (Perl, Python, PowerShell, etc.) preferred.
• Knowledge of change management and project management principles, preferred.

This job description is not intended to be all-inclusive. Employees may perform other related duties as needed to meet the ongoing needs of the organization.

Ports America is an Equal Opportunity Employer encouraging diversity in the workplace. All qualified applicants will receive consideration for employment without regard to race; color; religion; national origin; sex (including pregnancy); sexual orientation; gender identity and/or expression; age; disability; genetic information, citizenship status; military service obligations or any other category protected by applicable federal, state, or local law. This role does not offer sponsorship for work authorization. External applicants must be eligible to work in the US.