Security Engineer

Position Summary

As a Security Engineer, you will be part of our growing IT, Security & Compliance team, designing, administrating and configuring security baselines/best practices for on-premises and cloud environments, assisting teams with vulnerability management, gathering evidence for audits, and more. This is an opportunity to be part of a small team with increasing importance and responsibility.

• Deploy/Administer secure configuration baselines for network access, firewalls/WAFs, VPN, AWS/Azure Cloud resources.
• Review and triage findings from vulnerability scans, penetration tests, and configuration assessments to identify potential security risks.
• Work with engineers, Dev Ops and system owners to remediate vulnerabilities across multi‑cloud and on‑prem assets.
• Monitor cloud environments for misconfigurations and suspicious activity.
• Review/Configure IAM/access policies for internal and cloud systems.
• Integrate security tools and data into dashboards or workflow systems (e.g., Jira, SIEM, or ticketing).
• Provide technical evidence and control implementation support for SOC 2, ISO 27001, or customer security assessments.
• Partner with business leads to map technical controls to framework requirements.
• Assist with incident triage, response, and root cause analysis.
• Support endpoint protection, log monitoring, and threat intelligence initiatives.

• Bachelor's degree in a related field or equivalent related experience
• Minimum of four years of experience in information security, systems administration, or Dev Ops.
• Strong understanding of operating systems, networking, and cloud fundamentals.
• Knowledge of security/compliance frameworks such as SOC 2, ISO 27001, or NIST
• Familiarity with vulnerability management tools (e.g., Tenable, Crowd Strike, Qualys, Rapid7, AWS Inspector, or Microsoft Purview).
• Working knowledge of AWS, Azure, and/or Oracle Cloud security controls and services.
• Comfortable working cross‑functionally with engineering, IT, and other teams as needed.

• Ability to travel up to 15% to assist in team building and planning exercises.
• Strong, professional communication skills, both verbal and written, including the skill in articulating and translating technical language to non-technical customers.
• Ability to plan for contingencies and anticipate problems.
• Ability to ask critical questions to assess needs and requirements.

• Security certifications (Security+, GSEC, AWS Security Specialty, or similar).
• Proficient in at least one scripting language (Python, Power Shell, or Bash).
• Endpoint Security/Patching/Inventory experience
• Experience with SIEM or SOAR platforms (e.g., Splunk, Microsoft Sentinel).

QuEra is an equal opportunity employer. We recruit, hire, and promote without regard to legally protected characteristics. Where project work requires access to controlled information or facilities, employment is contingent on the ability to obtain and maintain appropriate authorizations. All hiring complies with applicable federal and state laws.