100% Remote: Senior Security Engineer

Montek System Logo
Montek System
United States (Remote)
  • Healthcare

Senior Security Engineer

100% Remote

3-6+ Months

  1. Code42 / Mimecast Incydr (insider risk/DLP)
  2. Thales CCKM (multi-cloud key management)
  3. KnowBe4 (security awareness admin)

High-Level Scope Overview Interim administration & day to day operations for:

  1. Code42/Mimecast Incydr
  2. Thales CipherTrust Cloud Key Manager (CCKM)
  3. KnowBe4 Resource Requested A. Single SME (preferred if available) Commitment: ~40 hrs/week for 12 weeks Required Skills: Senior engineer/analyst with hands on expertise in Incydr, CCKM (multi cloud BYOK/HYOK), and KnowBe4 admin. B. Split Role Model (less preferred due to scheduling complexity) Incydr / Insider Risk & DLP Engineer: ~20 30 hrs/week Cloud Key Management (CCKM) Engineer: ~20 30 hrs/week KnowBe4 Admin (can be fractional or bundled): ~5 10 hrs/month High Level Activities by Solution 1) Code42/Mimecast Incydr (Insider Risk & DLP)
  4. Daily alert triage, case creation, investigation, and closure; stakeholder comms.
  5. Policy/watchlist hygiene and tuning (exfiltration vectors; thresholds; noise reduction).
  6. Maintain & validate data sources (endpoints, cloud storage/email, browser plug ins).
  7. Maintain integrations (SIEM/SOAR ticketing & response), enrichment and routing.
  8. Weekly metrics & trend reporting (notable events, MTTR, false positive reduction)
  9. Runbook/documentation updates; handoff briefings. 2) Thales CCKM (CipherTrust Cloud Key Manager)
  10. Key lifecycle operations; creating/importing, enabling, rotating, retiring.
  11. BYOK/HYOK across cloud service providers.
  12. Ensure connector health & policy alignment.
  13. Access control reviews (roles, least privilege), break glass procedures.
  14. Audit & evidence prep (rotation logs, access reviews, change records).
  15. Automation hygiene (scripts/Terraform where applicable) for repeatable key ops. 3) KnowBe4 (Security Awareness & Phishing Simulation)
  16. Operate recurring phishing simulations.
  17. Update templates & landing pages.
  18. Manage user lifecycle via SSO/SCIM; Smart Groups and risk scoring hygiene.
  19. Training assignments, reminders, and escalation rules and track completions.
  20. Monthly KPI reporting (phish prone %, repeat clickers, tracking training completion).
  21. Tune Phish Alert Button workflows.
Apply for job