Cybersecurity Engineer
US-PA-Malvern
Corporate Jobs
Req #: 25307
Type: Regular
|
|
|||||||||||
|
||||||||||||
Overview: This is a hybrid role - 2 days remote and 3 days in the Malvern, PA office. CubeSmart is hiring a Cybersecurity Engineer to join our Information Technology team at our Malvern, PA headquarters. This role is responsible for driving technical improvements that strengthen CubeSmart's cybersecurity posture across infrastructure, cloud services, applications, and end-user environments. The Cybersecurity Engineer partners closely with Infrastructure, Application Development, and external security providers to design and advance practical, risk-based security capabilities. Working cross-functionally across IT and business teams, this teammate will help reduce cybersecurity exposure, improve detection readiness, and support secure implementation of new technologies. This position is ideal for a cybersecurity or infrastructure professional who enjoys solving complex technical problems, influencing security outcomes, and contributing to the growth of a modern cybersecurity program. Who we are: At CubeSmart, we're intentional about culture. You can experience it everywhere from our mission statement of "genuine care" to our "It's What's Inside That Counts" tagline to calling each other "teammates" rather than employees. This spirit fosters a fun and collaborative environment that has resulted in our rapid growth and being recognized amongst the top in our industry. CubeSmart's award-winning team is made up of people who genuinely care. Teammates care about our customers and the life events and/or business needs they are facing. Teammates are passionate, responsible and understanding. The CubeSmart team is made up of people who have a can-do attitude, are committed to their own success and the success of the company, and lead by example. If this sounds like a team and culture that matches your personal values and motivations, we want to hear from you. Responsibilities: Reporting to the Head of Cybersecurity, this role is responsible for driving technical improvements that strengthen CubeSmart's cybersecurity posture across infrastructure, cloud services, applications, and end-user environments. The Cybersecurity Engineer partners closely with Infrastructure, Application Development, and external security providers to design and advance practical, risk-based security capabilities. Platform Hardening & Security Engineering * Drive implementation of security improvements in partnership with Infrastructure and Application teams, helping ensure systems and services are configured in alignment with cybersecurity standards. * Support endpoint and server hardening initiatives, including authentication controls, device security requirements, and privilege management practices. * Contribute to identity security enhancements such as strengthening MFA adoption, access control practices, and protection of privileged accounts. * Help improve security configuration of enterprise SaaS and cloud platforms through structured reviews and collaboration with system owners. Exposure Reduction & Vulnerability Management * Support execution of vulnerability management and attack surface reduction initiatives by helping prioritize remediation activities and working with IT teams to implement risk-based improvements. * Identify opportunities to reduce unnecessary system exposure, improve segmentation, or strengthen defensive controls across the technology environment. * Assist in evaluating emerging threats and recommending technical mitigation strategies aligned to business risk priorities. Visibility & Detection Enablement * Help expand and improve logging coverage, monitoring visibility, and detection capabilities in collaboration with internal teams and CubeSmart's external security monitoring provider. * Support tuning and effective operation of security tools and platforms to ensure meaningful risk insights are generated. * Contribute to development of technical use cases or control improvements following security incidents or monitoring findings. Security Design & Technology Enablement * Provide cybersecurity engineering input on infrastructure projects, application deployments, and new technology initiatives to help ensure secure implementation. * Support secure development and application security practices through collaboration with engineering teams. * Participate in evaluation and rollout of new security capabilities, tools, or technical standards that improve CubeSmart's overall defensive posture. Qualifications: Education * Bachelor's degree in Information Security, Information Technology, Computer Science, or a related field preferred. Experience * Approximately 5-8 years of experience in IT infrastructure, cybersecurity engineering, cloud engineering, or related technical roles. * Experience designing, implementing, or supporting enterprise security controls such as endpoint hardening, identity security, vulnerability management, or security logging solutions. * Demonstrated experience leading or driving technical security improvements across teams or environments. * Experience working in environments with managed security service providers (MSSP/CSOC) or security monitoring tools preferred. * Exposure to cloud platforms (Azure, AWS, or similar), SaaS security, or modern endpoint management solutions is beneficial. * Experience supporting secure implementation of new technologies, applications, or infrastructure initiatives. Knowledge & Skills * Strong understanding of cybersecurity fundamentals including attack surface reduction, defense-in-depth principles, identity security, and threat detection concepts. * Working knowledge of vulnerability management practices, endpoint security controls, authentication and access management, and security monitoring capabilities. * Ability to translate cybersecurity risk priorities into practical technical improvements in partnership with IT teams. * Familiarity with cybersecurity frameworks or best practices such as CIS Critical Security Controls or NIST Cybersecurity Framework. * Understanding of logging and monitoring concepts and how visibility supports incident detection and response. * Exposure to secure development concepts or application security practices is helpful. Professional & Interpersonal Skills * Strong problem-solving mindset and ability to operate effectively in evolving or partially defined environments. * Ability to influence technical teams and collaborate across Infrastructure, Engineering, and business functions. * Ownership mentality with demonstrated ability to drive initiatives from concept through implementation. * Clear communication skills, including ability to explain cybersecurity risks and technical recommendations to non-specialist audiences. * Comfortable balancing strategic risk priorities with hands-on technical contribution. Preferred Certifications (Optional) * CISSP (Associate acceptable) * GIAC certifications * Microsoft Security certifications * AWS / Azure security certifications * CompTIA Security+ or CySA+ #LI-MT1
Share this job:
