Senior Cybersecurity Engineer

JMA is restoring U.S. leadership in wireless technology at a critical time in the transition to 5G. It makes the world’s most advanced software-based 5G platform, designed, coded, and manufactured in Syracuse, NY at the only U.S.-owned 5G factory in the country.

Across its global tech centers, JMA makes 5G possible for organizations with the most critical connectivity demands in the world. JMA’s technology is ushering in a new era of connectivity for leading mobile carriers, the most iconic stadiums, major universities, leading healthcare centers, the busiest transit centers, and the U.S. Military.

5G is more than another G on your phone — it is a generational opportunity to change the way the world operates. Join the industry’s fastest growing technology company to shape that future today. 

We are seeking an experienced Senior Cybersecurity Engineer to join our team. The ideal candidate will be responsible for managing and maintaining our Cybersecurity Program and JMAs cybersecurity technology stack, ensuring the security, and compliance of our infrastructure. This role requires a highly skilled individual with a strong technical background, deep experience in cybersecurity activities, and the ability to implement new cybersecurity tools and address compliance frameworks such as CMMC, SOC2, and/or ISO 27001. A hands-on approach, excellent incident and response capabilities, and strong compliance knowledge are essential to success in this position. This is an Onsite position in Syracuse, NY.

Position Responsibilities:

• Implement, manage, and maintain the JMA cybersecurity technology stack including but not limited to; endpoint detection and response (EDR) systems, Intrusion Detection/Prevention systems (IDS/IPS), Vulnerability Management Tools, Security Information and Event Management (SIEM) tools, Ticketing Systems, Security Awareness Training & Phishing simulation platforms, Privilege Access Management (PAM) tools, etc.
• Monitoring JMA cybersecurity tools and JMA systems (servers, computers, network infrastructure etc.) for potential security incidents (e.g., suspicious and/or malicious activity), indicators of compromise and other relevant issues. Serve as JMAs primary point of contact for managed detection and response activities. Manage and maintain an Incident Response Plan and supporting documentation.
• Support Cybersecurity projects and initiatives as necessary including but not limited to penetration tests, risk management activities, supply chain risk management activities, responding to customer request for information (RFI) or request for purchase (RFP) related activities. Complete cybersecurity vendor evaluation forms on behalf of JMA.
• Creating, managing, and maintaining Cybersecurity Program Documentation including but not limited to: System Security Plans (SSP)s, Key Performance Indicators (KPIs), Standard Operating Procedures (SOPs), Plans of Action and Milestones (POA&Ms), and other security-related artifacts.
• Ability to interpret ISO 27001, SOC2 Type 2, CMMC, NIST Cybersecurity Framework (CSF) or other NIST controls and evaluate current compliance, identify technical solutions to achieve compliance, and test solutions for compliance.
• Test and evaluate different security tools to determine their effectiveness in protecting JMA assets, while staying up to date with the latest industry trends and technologies to continually improve our cybersecurity posture.
• Collaborate with other IT team members, R&D, and Engineering departments to optimize cybersecurity.

Required Skills & Experience:

• Bachelor’s degree in Cybersecurity, Information Security or related field as desired.
• 8 - 10+ years of experience in a cybersecurity, security operations center, information security or system administration role as desired.
• Strong understanding of cybersecurity tools and systems including but not limited to; EDR, IDS/IPS, SIEM, PAM, Vulnerability Scanning tools, Awareness and Training platforms, etc.
• Expertise in implementing and maintaining compliance frameworks like CMMC, SOC2, ISO 27001, or NIST special publications (e.g., NIST CSF, NIST 800-53, 800-171, etc.).
• Strong organizational skills with the ability to create and maintain documentation, particularly around security controls and compliance.
• Ability to work both independently and collaboratively with a team, providing technical leadership and support.
• CISSP, CISA, CISM, CompTIA Security+, or similar certification is a plus

At JMA, our people are deeply committed to their work and we provide benefits to match. When you join JMA you have immediate access to everything you need. Whether you're looking for employee discounts, financial, legal and/or childcare resources and support, we have you covered. We believe in providing comprehensive health and wellness coverage along with monetary rewards towards health goals, in addition to numerous company-provided personal protection benefits at no additional cost to you.

At JMA, we don’t just accept differences — we embrace them. JMA is proud to be an equal opportunity workplace. We do not discriminate based upon race, religion, color, national origin, gender (including pregnancy, childbirth, or related medical conditions), sexual orientation, gender identity, gender expression, age, status as a protected veteran, status as an individual with a disability, or other applicable legally protected characteristic.