Job Description
The Cyber Security Engineer at Enviva is responsible for leading security projects, enhancing the company's cybersecurity posture, investigating incidents, and supporting security initiatives to protect the organization's assets from threats.
Key Responsibilities
- Lead and advance the Cyber Security roadmap and security posture improvements.
- Maintain and optimize security software, tools, and platforms.
- Evaluate control environment effectiveness and recommend enhancements.
- Liaise with MDR service providers to ensure quality security incident detection and response.
- Investigate security incidents, lead response efforts, and implement lessons learned.
- Remediate vulnerabilities in systems and applications in collaboration with IT and business teams.
- Create and maintain a secure environment in coordination with infrastructure and application teams.
- Guide best practices and security solutions for lines of business.
- Lead threat and vulnerability management using appropriate tools and processes.
- Participate in cyber security incident response and investigations.
Requirements
- A Bachelor’s degree in Information Technology, Information Systems, Engineering, or a related field, or any combination of advanced course enrollment, certification, and years of relevant work experience as a substitute.
- 10 years of experience in IT.
- 4 years of IT security experience designing or building security solutions and supporting security incident response.
- Industry certifications, or demonstrated extracurricular participation in one or multiple security domains, are required.
- A diverse technical skill set with the desire to stay up to speed with the changing threat landscape, trends, and security solutions on the market.
- Proficiency and experience in endpoint OS hardening, endpoint management, endpoint protection, anti-virus, disk encryption, USB protection.
- Proficiency and experience in network UTM, TCP IP, SSL TLS, proxy, content filtering.
- Understanding of data security implications of data-in-transit, at-rest, and in-use, including DLP and DAG.
- Knowledge of identity management concepts such as SSO, MFA, authentication and authorization logic.
- Demonstrated knowledge of tactics, techniques, and procedures (TTPs) commonly used by threat actors and indicators of compromise (IoCs).
- Awareness of cyber attack models such as MITRE ATT&CK and Cyber Kill Chain, and how these translate to defense planning.
- Ability to quickly assess risk impact from environment changes like implementation of new solutions or software, network design change or integration, and modification of system features.
- Motivation and drive to hunt for threats or seek out optimization opportunities to improve effectiveness of controls.
- Ability to maintain a people, process, technology view through design, build, and run phases of service and capability delivery.
- Ability to handle multiple tasks, prioritize, and meet deadlines.
- Familiarity with regulatory and legal obligations including SOX ITGC.
- Understanding of IT Security frameworks such as NIST CSF, CIS CSC.
- Excellent written and verbal communication skills.
- Ability to lead or participate in Cyber Security incident response and investigations.
- Up to 10 domestic travel to Enviva facilities; occasional international travel may be required depending on future business needs.
- Willing and able to maintain strict adherence to safety rules and regulations, including wearing safety equipment.
- Ability to safely and successfully perform the essential job functions consistent with the ADA and other federal, state, and local standards, including meeting productivity standards.
- This position does not offer visa sponsorship or support for work authorization.
Benefits & Perks
Up to 10 domestic travel to Enviva facilities
Occasional international travel depending on future business needs
Normal office hours with potential for longer hours when required
Shared responsibility for 24x7x365 application availability
Willingness to adhere to safety rules and regulations, including wearing safety equipment
Ready to Apply?
Join Enviva and make an impact
Stay Updated on Sustainability Jobs
Get the latest renewable energy jobs and career tips delivered to your inbox.
Job Alerts
Get notified about new sustainability jobs
