Cybersecurity Engineer ~ Boston Ma or Lincoln, RI

Principal Objective
 
The Cybersecurity Engineer will be responsible for protecting the organization’s computer systems and networks from cyber threats. They will implement and maintain secure network solutions to defend against threat actors, cyberattacks and other persistent threats. Additionally, they will play an important role in deploying security solutions to maintain the confidentiality, integrity and availability of the organization’s systems and data.

The Cybersecurity Engineer will also engage in monitoring and securing both hardware and software systems, and ensuring security protocols are up-to-date and followed. This position will play a critical role in identifying, investigating and responding to security incidents across our IT, IS and cloud infrastructures. You will work collaboratively with other security professionals to assess potential threats, prioritize incidents and implement effective mitigation strategies.

Principal Duties and Responsibilities

• Implement and maintain cybersecurity solutions to ensure the protection of digital assets and the integrity, security and privacy of sensitive information.
• Proactively identify security risks and vulnerabilities, and develop mitigation plans.
• Coordinate with the IT department to enhance the security posture of the organization’s technology stack.
• Assist with managing cybersecurity systems include next-gen firewalls, IDS/IPS, DNS, microsegmentation.
• Monitor and analyze security events from various sources (SIEM, firewalls, IDS/IPS, etc.) to identify potential security incidents.
• Assist with oversight and management of cloud computing security configurations.
• Detect, respond, investigate and resolve cyber threats including malware, phishing, denial of service attacks.
• Investigate and triage security incidents, leveraging investigative tools and techniques to determine their scope, root cause and potential impact.
• Work with other teams to collect, remediate, document and close security incidents.
• Contribute to the development and improvement of security incident response procedures and playbooks.
• Assist with the implementation, maintenance and documentation of security tools and technologies.
• Analyze vulnerability information and participate in threat intelligence activities.
• Assist with periodic security risk assessments, IT security audits and management reporting.
• Stay up-to-date with the latest security technologies, threats, vulnerabilities and trends.
• On-call availability and some travel required.
• Perform other related duties as directed
   
   

Job Specifications (Skills, Knowledge and Abilities Required)

• Bachelor’s degree in computer science, cybersecurity engineering or a related field preferred.
• Proven work experience in cybersecurity engineering or a similar role.
• Experience with cybersecurity systems including next-gen firewalls, EDR, PAM, DLP, IAM, DNS, 
   remote access, web content filtering, microsegmentation, cloud computing.
• Experience with security monitoring tools and technologies (e.g., SIEM, IDS/IPS).
• Understanding of zero trust architecture and principles.
• Strong understanding of network protocols, security architectures and security technologies.
• Knowledge of current cybersecurity technologies, trends and threat landscape.
• Strong understanding of cybersecurity frameworks (e.g., MITRE ATT&CK, NIST CSF).
• Ensures cloud infrastructure and applications are properly configured and secure.
• Strong understanding of security concepts, best practices and risk management.
• Knowledge of disaster recovery and incident response procedures.
• Excellent analytical and problem-solving skills and ability to work under pressure.
• Strong communication and collaboration skills.
• Ability to work independently and as part of a team.
• Ability to prioritize tasks and meet deadlines.
• Security certifications (e.g., CISSP, Security+) are a plus.

 Behavioral Skills

• Consistently demonstrate behaviors associated with Brookline Bancorp’s Core Four values: adaptability, accountability, leadership and teamwork.   

 The above statements are intended to describe the general nature and level of work being performed by people assigned to this position.  They are not intended to be an exhaustive list of all responsibilities, duties and skills required of personnel so classified.  This job description is subject to change at any time.