Cyber Security Engineer

About the Role

Eightpoint is seeking a motivated and detail-oriented Cybersecurity Engineer I to join our IT & Cybersecurity team. This role is primarily focused on strengthening the organization’s security posture through compliance program support, security monitoring, vulnerability management, and incident response. The successful candidate will also contribute to DevOps activities including CI/CD pipeline maintenance and cloud infrastructure support as a secondary function.

This is an ideal position for someone looking to build a career in cybersecurity within a fast-paced, multi‑entity environment.

Key Responsibilities

Cybersecurity Monitoring, Vulnerability Management, and Incident Response (~45%):

• Deploy, configure, and maintain security monitoring tools (SIEM, EDR, vulnerability scanners) across cloud and on‑premises environments.
• Perform regular vulnerability assessments and coordinate remediation efforts with infrastructure and development teams.
• Investigate and respond to security incidents, conduct root cause analysis, and document findings and remediation actions.
• Manage security patching cadence and track remediation SLAs across systems and applications.

DevOps and Infrastructure Support (~35%):

• Assist in maintaining CI/CD pipelines and integrating security scanning into build and deployment workflows.
• Support cloud infrastructure management on AWS, including provisioning, configuration, and cost optimization.
• Troubleshoot pipeline and infrastructure issues as needed to support development and operations teams.

Compliance and Policy Support (~20%):

• Support compliance initiatives and audits (e.g., CIS Benchmarks, NIST CSF/800-53) by gathering evidence, maintaining documentation, and tracking control implementations.
• Assist in developing, reviewing, and maintaining security policies, standards, and procedures.
• Conduct security awareness training and phishing simulations for end users.

Collaboration and Continuous Improvement:

• Work closely with cross‑functional teams to promote a security‑first culture and integrate security practices into development and operations workflows.
• Participate in knowledge‑sharing sessions, document processes, and provide training to team members as needed.
• Identify opportunities to improve security controls, automate compliance workflows, and enhance operational efficiency.

Who You Are

• Bachelor’s degree in Computer Science, Information Technology, Cybersecurity, or a related field and 2 years of relevant experience, or a Master’s degree in CS, IT, or Cybersecurity.
• Foundational knowledge of cybersecurity principles, including vulnerability management, incident response, and security monitoring tools (SIEM, EDR).
• Understanding of compliance and security frameworks (e.g., CIS Benchmarks, NIST CSF/800-53) and experience supporting audit or evidence‑gathering processes.
• Basic understanding of AWS services (e.g., EC2, S3, RDS, IAM) and familiarity with CI/CD tools (e.g., GitHub Actions, Jenkins).
• Experience with scripting languages (e.g., Python, Bash) for automation tasks.
• Strong problem‑solving skills and attention to detail.

Preferred

• Certifications such as CompTIA Security+, CySA+, AWS Certified Security – Specialty, or equivalent.
• Familiarity with containerization and orchestration tools (e.g., Docker, Kubernetes).
• Experience with security tools such as SIEM platforms, vulnerability scanners, WAFs, or endpoint protection solutions.
• Understanding of Agile methodologies and experience working in cross‑functional security and engineering teams.
• Experience with using Jira Project Management Suite.