Aspire

Senior Cybersecurity Engineer

Aspire

Staffing and Recruiting · 11-50 employees

Jul 06
Remote Senior (5-10 yrs) Full-time
Log in to apply, save this posting, or score it against your profile with AI.

About the role

Lead the execution of the information security program across cloud infrastructure, SaaS platforms, and enterprise environments. Manage cybersecurity compliance, monitor security events, and partner with engineering teams to integrate security into the SDLC.

What they look for

Cloud Security Identity And Access Management Vulnerability Assessment Incident Response Application Security API Security Secure SDLC Compliance Management SIEM Penetration Testing Threat Modeling AWS Security

Requirements

Requires over 7 years of experience in cybersecurity engineering, specifically within SaaS, fintech, or cloud environments. Must have strong expertise in AWS security, compliance frameworks like ISO 27001, and application security best practices.

Full description

This is a remote position.

About the Job

As a Senior Cybersecurity Engineer at Aspire, you will lead the execution of the organization's information security program across cloud infrastructure, SaaS platforms, and enterprise environments. This is a hands-on engineering role focused on strengthening security, maintaining regulatory compliance, managing security operations, and partnering with engineering teams to build secure and scalable solutions.

What you'll do

  • Manage and maintain cybersecurity compliance programs, including NYDFS Cybersecurity Regulation 500, ISO 27001, and enterprise security requirements.
  • Conduct vulnerability assessments, coordinate penetration testing, and drive remediation efforts across cloud and internal environments.
  • Monitor and respond to security events using AWS security services, SIEM platforms, and other security tools.
  • Develop and maintain incident response processes, security controls, and identity and access management (IAM) practices.
  • Partner with engineering teams to integrate security into the SDLC through secure coding practices, threat modeling, and application security reviews.
  • Support vendor risk assessments, client security reviews, and security documentation for audits and compliance.
  • Serve as the security subject matter expert for cloud security, API security, and OWASP Top 10 best practices.

What you'll need

  • 7+ years of experience in cybersecurity engineering or information security, preferably within SaaS, fintech, or cloud-based environments.
  • Strong experience with cloud security (AWS preferred), identity and access management, logging, monitoring, and security operations.
  • Experience with compliance frameworks such as NYDFS, ISO 27001, SOC 2, PCI DSS, or similar.
  • Hands-on experience with SIEM platforms, vulnerability management, penetration testing, and incident response.
  • Strong understanding of application security, API security, secure SDLC, and OWASP Top 10.
  • Excellent communication skills with experience supporting audits, security documentation, and cross-functional collaboration.
  • Professional certifications such as CISSP, CISM, or CEH are preferred.