Cyber Security Engineer

Job Title: Cyber Security Engineer (Mid-Level)

About Threye

Threye is a deep-tech startup working in the defense and simulation space, building high-fidelity systems using game engines, geospatial data, and secure infrastructure. Much of our stack is hosted on-premise due to the sensitive nature of our work, with controlled exposure to external networks.

Role Overview

We are looking for a Cyber Security Engineer (36 years experience) who can take ownership of securing a hybrid environment that is primarily on-premise, with selective external exposure.

This is not a purely policy/compliance role you will be expected to design, implement, and operate real security systems, working closely with infrastructure, networking, and development teams.

Key Responsibilities

Infrastructure & Network Security

• Secure and manage on-premise infrastructure (servers, firewalls, internal services)
• Configure and monitor firewalls, VPNs, and network segmentation
• Design secure access controls for internal tools (Git, project management, storage, etc.)
• Harden Linux/Windows systems and enforce baseline configurations

Threat Detection & Monitoring

• Deploy and manage SIEM / EDR solutions (e.g., Wazuh, OSSEC, etc.)
• Monitor logs, detect anomalies, and respond to incidents
• Reduce noise and improve signal quality in alerts (tuning rules, filtering)

Application & Dev Security

• Work with dev teams to secure APIs and external endpoints
• Conduct vulnerability assessments and basic penetration testing
• Review authentication, authorization, and secrets management practices

Endpoint & Identity Security

• Manage endpoint security (laptops, workstations)
• Implement device control, patching, and MDM (if applicable)
• Strengthen identity systems (SSO, MFA, role-based access)

Incident Response

• Investigate security events and lead response actions
• Build incident response playbooks
• Perform root cause analysis and recommend fixes

Compliance & Best Practices

• Implement security practices aligned with defense sector expectations
• Maintain documentation for audits and internal processes
• Balance security with usability in a fast-moving startup environment

Required Skills & Experience

• 36 years in cybersecurity / network security / system security roles
• Strong understanding of:
• Networking fundamentals (TCP/IP, routing, firewalls, VPNs)
• Linux systems and basic Windows administration
• Hands-on experience with:
• Firewalls (Fortinet, pfSense, etc.)
• SIEM/log monitoring tools (Wazuh, ELK, Splunk, etc.)
• Vulnerability scanning tools
• Familiarity with:
• On-premise deployments and air-gapped environments
• Identity and access management (IAM, RBAC, MFA)
• Basic scripting (Python/Bash) for automation

What Were Looking For

• Someone who actually builds and fixes systems, not just audits them
• Strong problem-solving mindset able to deal with imperfect, evolving infra
• Ability to work in a low-trust, high-sensitivity environment
• Comfortable making trade-offs between security and productivity