Senior Cybersecurity Engineer

Role Summary

Reporting to the Vice President of IT, the Senior Cybersecurity Engineer will be responsible for designing, building, and maintaining the cyber security solutions used within Kiniksa. This role ensures that systems are well designed and operating at their potential to protect from internal and external threats. The senior engineer brings deep and varied technical skills and strong communication skills to collaborate with IT and business teams. This role is based in Lexington, MA with a hybrid schedule of 4 days in the office, and 1 day remote.

Responsibilities

• Design and implement enterprise cyber security technologies
• Evaluate and recommend improvements in existing and new security tools, technologies, and practices
• Facilitate risk assessments, penetration testing and threat modeling to identify and mitigate vulnerabilities
• Lead incident response planning and execution, including configuration and performance of our security operation center, triage, support and escalation processes. This may range from oversight to playing a hands-on role in investigating incidents and conducting forensics.
• Collaborate with infrastructure, IT operations and application teams and drive initiatives that mitigate risk
• Stay current with emerging threats, advancements in technologies and industry trends
• Assist with employee education to both IT and wider business teams on cyber security best practices
• Assist in maintaining security policies, standards, and procedures

Qualifications

• Required: 8+ years of experience in IT operations, system admin and/or network admin roles with at least 3 years focused on cyber security engineering
• Preferred: Bachelor’s or Master’s degree in Computer Science, Information Security, or related field; Experience in lieu of a degree will be considered
• Required: Strong understanding of security frameworks (e.g., NIST, CIS, ISO) and Zero Trust principles
• Required: Experience with cloud security centered around AWS, Azure
• Required: High level of proficiency in network security, identity and access management (IAM), data protection, and endpoint security
• Required: Proficiency with SIEM, firewalls, IDS/IPS, EDR, vulnerability management, and anomaly detection
• Required: Demonstrated strong written and verbal communication skills
• Required: Proven mindset of proactive continuous improvement
• Required: Efficient independent worker with ability to focus and drive for results
• Required: Strong attention to detail
• Required: Ability to work in a fast paced-environment and to handle multiple tasks
• Required: Strong commitment to compliance and ethical standards

Skills

• Security frameworks: NIST, CIS, ISO and Zero Trust
• Cloud security: AWS, Azure
• Network security; IAM; data protection; endpoint security
• SIEM, firewalls, IDS/IPS, EDR, vulnerability management, and anomaly detection
• Incident response and forensics
• Risk assessment, penetration testing, and threat modeling
• Strong written and verbal communication
• Proactive continuous improvement and independent, results-driven work style