Cybersecurity Engineer
Apex Systems, Charlotte, NC, United States
Cybersecurity Engineer
Location:
Charlotte/Raleigh/Greensboro, NC | Atlanta, GA | Richmond, VA | Orlando, FL
Onsite expectations:
4-5 days onsite weekly
Rate:
$85/hr W2
Employment Type:
12 month contract to Perm
Role Overview
The Cybersecurity Engineer for Attack Surface Management is responsible for designing, implementing, and maturing advanced security validation capabilities to safeguard enterprise systems and applications. This role focuses on continuous security validation using External Attack Surface Management (EASM) tools and integrating with existing security infrastructure. The engineer will provide actionable insights to strengthen the firm's cyber resilience by partnering with cross-functional teams to simulate adversarial tactics, evaluate control effectiveness, and recommend enhancements aligned with enterprise risk management.
Key Responsibilities
Design, implement, and mature advanced security validation capabilities.
Utilize External Attack Surface Management (EASM) tools for continuous security validation.
Partner with cross-functional teams to simulate real-world adversarial tactics, techniques, and procedures (TTPs).
Evaluate the effectiveness of security controls and recommend enhancements.
Provide actionable recommendations to improve security policies, procedures, and technologies.
Analyze simulation results to identify weaknesses, vulnerabilities, and gaps in detection and response.
Maintain documentation of methodologies, procedures, and results for both technical and non-technical stakeholders.
Collaborate with security teams to adjust alerts, rules, and controls based on findings.
Required Qualifications
Education:
A Bachelor's degree or an equivalent combination of education and work experience is required.
Experience:
Experience with Breach and Attack Simulation (BAS) or Continuous Security Validation (CSV) tools is required. Candidates must have hands-on experience with architecting, maturing, and automating CI/CD pipelines through the end-to-end lifecycle. Experience with penetration testing, vulnerability management, and security tools is also necessary.
Technical Skills:
Proficiency in scripting for automation, data wrangling, and enrichment (e.g., Python, PowerShell) is required.
Preferred Qualifications
Experience in the banking or financial services industry.
Twelve years of experience in a related field.
Experience with cybersecurity frameworks and standards such as NIST, MITRE ATT&CK, and D3FEND.
Strong knowledge of cloud security (AWS/Azure), PKI/TLS hygiene, DNS hardening, and external service posture.
Hands-on experience with EASM platforms (e.g., Defender EASM, Cortex Xpanse, CyCognito) and a strong understanding of internet-scale asset discovery.
Experience with commercial BAS tools such as AttackIQ, SafeBreach, or Cymulate.
Experience with GRC engineering, detection engineering, and SOAR.
Compensation & Benefits
A competitive compensation and benefits package will be provided to eligible employees.
This employer is an equal opportunity employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, or protected veteran status and will not be discriminated against on the basis of disability.
Apex uses a virtual recruiter as part of the application process. Click here for more details.
If you have visited our website in search of information on employment opportunities or to apply for a position, and you require an accommodation in using our website for a search or application, please contact our Benefits Department at [email protected] or 804-523-8228.
Everforth Apex is a world-class IT services company that serves thousands of clients across the globe. When you join Everforth Apex, you become part of a team that values innovation, collaboration, and continuous learning. We offer quality career resources, training, certifications, development opportunities, and a comprehensive benefits package. Our commitment to excellence is reflected in many awards, including ClearlyRated's Best of Staffing® in Talent Satisfaction in the United States and Great Place to Work® in the United Kingdom and Mexico. Everforth Apex uses a virtual recruiter as part of the application process. Click here for more details.
Everforth Apex Benefits Overview:
Everforth Apex offers a range of supplemental benefits, including medical, dental, vision, life, disability, and other insurance plans that offer an optional layer of financial protection. We offer an ESPP (employee stock purchase program) and a 401K program which allows you to contribute typically within 30 days of starting, with a company match after 12 months of tenure. Everforth Apex also offers a HSA (Health Savings Account on the HDHP plan), a SupportLinc Employee Assistance Program (EAP) with up to 8 free counseling sessions, a corporate discount savings program and other discounts. In terms of professional development, Everforth Apex hosts an on-demand training program, provides access to certification prep and a library of technical and leadership courses/books/seminars once you have 6+ months of tenure, and certification discounts and other perks to associations that include CompTIA and IIBA. Everforth Apex has a dedicated customer service team for our Consultants that can address questions around benefits and other resources, as well as a certified Career Coach. You can access a full list of our benefits, programs, support teams and resources within our 'Welcome Packet' as well, which an Everforth Apex team member can provide.
Location:
Charlotte/Raleigh/Greensboro, NC | Atlanta, GA | Richmond, VA | Orlando, FL
Onsite expectations:
4-5 days onsite weekly
Rate:
$85/hr W2
Employment Type:
12 month contract to Perm
Role Overview
The Cybersecurity Engineer for Attack Surface Management is responsible for designing, implementing, and maturing advanced security validation capabilities to safeguard enterprise systems and applications. This role focuses on continuous security validation using External Attack Surface Management (EASM) tools and integrating with existing security infrastructure. The engineer will provide actionable insights to strengthen the firm's cyber resilience by partnering with cross-functional teams to simulate adversarial tactics, evaluate control effectiveness, and recommend enhancements aligned with enterprise risk management.
Key Responsibilities
Design, implement, and mature advanced security validation capabilities.
Utilize External Attack Surface Management (EASM) tools for continuous security validation.
Partner with cross-functional teams to simulate real-world adversarial tactics, techniques, and procedures (TTPs).
Evaluate the effectiveness of security controls and recommend enhancements.
Provide actionable recommendations to improve security policies, procedures, and technologies.
Analyze simulation results to identify weaknesses, vulnerabilities, and gaps in detection and response.
Maintain documentation of methodologies, procedures, and results for both technical and non-technical stakeholders.
Collaborate with security teams to adjust alerts, rules, and controls based on findings.
Required Qualifications
Education:
A Bachelor's degree or an equivalent combination of education and work experience is required.
Experience:
Experience with Breach and Attack Simulation (BAS) or Continuous Security Validation (CSV) tools is required. Candidates must have hands-on experience with architecting, maturing, and automating CI/CD pipelines through the end-to-end lifecycle. Experience with penetration testing, vulnerability management, and security tools is also necessary.
Technical Skills:
Proficiency in scripting for automation, data wrangling, and enrichment (e.g., Python, PowerShell) is required.
Preferred Qualifications
Experience in the banking or financial services industry.
Twelve years of experience in a related field.
Experience with cybersecurity frameworks and standards such as NIST, MITRE ATT&CK, and D3FEND.
Strong knowledge of cloud security (AWS/Azure), PKI/TLS hygiene, DNS hardening, and external service posture.
Hands-on experience with EASM platforms (e.g., Defender EASM, Cortex Xpanse, CyCognito) and a strong understanding of internet-scale asset discovery.
Experience with commercial BAS tools such as AttackIQ, SafeBreach, or Cymulate.
Experience with GRC engineering, detection engineering, and SOAR.
Compensation & Benefits
A competitive compensation and benefits package will be provided to eligible employees.
This employer is an equal opportunity employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, or protected veteran status and will not be discriminated against on the basis of disability.
Apex uses a virtual recruiter as part of the application process. Click here for more details.
If you have visited our website in search of information on employment opportunities or to apply for a position, and you require an accommodation in using our website for a search or application, please contact our Benefits Department at [email protected] or 804-523-8228.
Everforth Apex is a world-class IT services company that serves thousands of clients across the globe. When you join Everforth Apex, you become part of a team that values innovation, collaboration, and continuous learning. We offer quality career resources, training, certifications, development opportunities, and a comprehensive benefits package. Our commitment to excellence is reflected in many awards, including ClearlyRated's Best of Staffing® in Talent Satisfaction in the United States and Great Place to Work® in the United Kingdom and Mexico. Everforth Apex uses a virtual recruiter as part of the application process. Click here for more details.
Everforth Apex Benefits Overview:
Everforth Apex offers a range of supplemental benefits, including medical, dental, vision, life, disability, and other insurance plans that offer an optional layer of financial protection. We offer an ESPP (employee stock purchase program) and a 401K program which allows you to contribute typically within 30 days of starting, with a company match after 12 months of tenure. Everforth Apex also offers a HSA (Health Savings Account on the HDHP plan), a SupportLinc Employee Assistance Program (EAP) with up to 8 free counseling sessions, a corporate discount savings program and other discounts. In terms of professional development, Everforth Apex hosts an on-demand training program, provides access to certification prep and a library of technical and leadership courses/books/seminars once you have 6+ months of tenure, and certification discounts and other perks to associations that include CompTIA and IIBA. Everforth Apex has a dedicated customer service team for our Consultants that can address questions around benefits and other resources, as well as a certified Career Coach. You can access a full list of our benefits, programs, support teams and resources within our 'Welcome Packet' as well, which an Everforth Apex team member can provide.