About True Aim Solutions
True Aim Solutions is an IT advisory and talent placement firm that connects organizations with specialized cybersecurity and infrastructure professionals. We are conducting this search on behalf of a client, and the successful candidate will be placed with the client's team. True Aim partners closely with both clients and candidates — bringing integrity, technical fluency, and a people-first approach to every placement — to make sure the role is the right fit on both sides.
This is a placement opportunity. True Aim Solutions is managing the search and hiring process on behalf of a confidential client. Client details are shared with candidates as the process advances.
Role Overview
On behalf of our client, True Aim Solutions is seeking a Cyber Security Engineer to design, build, and harden the security controls that protect the client's cloud and on-premises environments. This is a hands-on engineering role focused on the future of the discipline: you will evaluate and operationalize emerging security tooling, embed security into modern architectures, and help the organization stay ahead of a rapidly evolving threat landscape rather than reacting to it.
Emphasis: Forward-Looking Security Tooling
This role is intentionally future-oriented. Our client wants an engineer who is curious about where security is heading and eager to pilot and mature next-generation tools — AI/LLM security, cloud-native security platforms, secure-by-design architecture, and automation — turning promising technology into production-ready protection.
Key Responsibilities
- Design, implement, and maintain security controls across cloud (AWS, Azure, GCP) and on-premises environments.
- Evaluate, pilot, and operationalize emerging security tooling, including AI/LLM security, cloud security posture management (CSPM), and cloud-native protection platforms (CNAPP).
- Assess the security of AI and machine-learning systems, including risks such as prompt injection, RAG/data poisoning, and model and tool-calling abuse (e.g., OWASP Top 10 for LLMs).
- Conduct architecture and design reviews, integrate security requirements early in the build phase, and produce reference architectures and configuration guides.
- Build automation and infrastructure-as-code to deploy and enforce security controls consistently and at scale.
- Implement and tune controls across identity and access management, encryption, network security, IDS/IPS, SIEM, and DLP.
- Support security across converged IT and operational technology (OT) environments, including segmentation between enterprise and industrial networks.
- Identify vulnerabilities and threats, develop mitigation strategies, and recommend appropriate, risk-based controls.
- Collaborate with engineering, operations, and business stakeholders to deliver secure, scalable solutions and clearly communicate risk.
- Stay current on the threat landscape and emerging technologies through self-directed research.
Required Qualifications
- 3–5 years of hands-on experience in cybersecurity engineering or a closely related technical role.
- Working knowledge of at least one major cloud platform (AWS, Azure, or GCP) and cloud-native security services.
- Proficiency in a scripting or programming language (e.g., Python) for automation.
- Experience with containerization technologies (Docker, Kubernetes) and infrastructure-as-code (Terraform).
- Solid understanding of network security, cryptography, and secure software development practices.
- Familiarity with security frameworks and standards such as NIST, ISO/IEC 27001, and CIS Benchmarks.
- Strong analytical, problem-solving, and written and verbal communication skills.
- Bachelor's degree in Computer Science, Information Security, or equivalent practical experience.
Preferred Qualifications
- Experience securing AI/ML or LLM-based systems and familiarity with MCP (Model Context Protocol) authorization patterns.
- Hands-on experience with CSPM/CNAPP tooling (e.g., Wiz, Prisma Cloud, Defender for Cloud).
- Security certifications such as Security+, CCSP, AWS/Azure Security, GIAC (GCSA, GCLD), or CISSP.
- Experience in a consulting, MSSP, or multi-environment setting.
- Exposure to secure coding reviews and DevSecOps pipelines.
- Exposure to operational technology (OT)/ICS security — securing, supporting, and maintaining SCADA, PLCs, and industrial control systems, and bridging IT/OT environments (e.g., the Purdue Model, IEC 62443).
- Familiarity working in a professional services environment — such as a legal firm or financial institution — including the confidentiality, discretion, and regulatory expectations those settings demand.
Compensation & Benefits
- Compensation in the 140-160k, commensurate with experience.
- Comprehensive benefits offered through the client — medical, dental, vision, and retirement [to be specified].
- Hybrid schedule balancing on-site collaboration and remote focus.
- Long-term growth opportunity with an established Professional Services organization.
- Placement, onboarding, and ongoing support provided by the True Aim Solutions team.
How to Apply
To apply or learn more about this confidential opportunity, submit your resume to True Aim Solutions. All inquiries are handled confidentially, and our recruiting team will share additional details about the client and role with qualified candidates during the process.
Equal Opportunity
True Aim Solutions and our client are equal opportunity employers. All qualified applicants will receive consideration without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, age, disability, veteran status, or any other characteristic protected by law.
Job Type: Full-time
Pay: $140,000.00-$160,000.00 per year
Benefits:
- Dental care
- Extended health care
- Paid time off
Work Location: In person