Senior Cybersecurity Engineer

Position Overview

We are seeking a dedicated and skilled Senior Cybersecurity Engineer to join our team at Proterra. You will play a crucial role in designing, implementing, and enhancing comprehensive cybersecurity solutions to ensure the protection and integrity of our IT systems and data across various environments, including corporate, manufacturing, cloud, and IoT. You will also lead our incident processes and help drive operational improvement across all of security operations. The ideal candidate is a detail-oriented and proactive cybersecurity expert with a strong technical background in designing and managing comprehensive security measures across enterprise environments.

About the Role - You Will:

• Work with IT and internal and external business partners to integrate security into the evaluation, selection, installation, and configuration of hardware and software. Collaborate with cross-functional teams to support vulnerability management and security operations to protect corporate, manufacturing, cloud, and IoT environments.

• Build and enhance cybersecurity tools, configure and manage security technologies such as endpoint detection, antivirus, vulnerability management, firewalls, intrusion detection systems, cloud tools and more.

• Research, design, and implement cybersecurity solutions for Proterra, driving automation, orchestration and advanced threat analysis.

• Lead the secure design and management of on premise, cloud, and network infrastructure.

• Manage and optimize tool and environment configurations to maintain a strong security posture, perform vulnerability assessments, and prioritize remediation based on risk.

• Lead incident response, including containment, eradication, and recovery across IT systems, and handle suspicious files, malware analysis, and response process development.

• Conduct forensic investigations and produce detailed reports in response to complex or broad-scale security incidents, coordinating with internal/external counsel, law enforcement, and government entities.

• Conduct proactive threat hunting using, log collection, parsing, and normalization technologies.

• Analyze network, system, and application architectures to make recommendations for improvement, including advanced packet analysis and log trail analysis.

• Assist in the development, review, and updates of cybersecurity policies, architectures, and standards and respond to any audit requests.

• Lead continual improvement initiatives for security to improve detection and orchestration of security events.

• Conduct vulnerability assessments, threat assessments, and penetration testing.

• Provide user training on cybersecurity ensure to improve awareness.

• Support processes for documentation, reporting and departmental KPIs for cybersecurity.

• Support on-call emergency incidents as required.

• Perform other duties as assigned.

About You

• Self-starter with the ability to adapt interpersonal styles and techniques to influence at all levels of the organization.

• Customer-focused attitude, with high level of professionalism and discretion.

• Excellent trouble-shooting abilities in software and hardware and be able to lead security incident calls and trouble-shooting conversations until resolved and help provide detailed root cause analysis reports.

• Ability to maintain strict confidentiality, establish trust and credibility, and act with complete integrity.

• Detail-oriented, resourceful and diligent.

• Strong time management and organizational skills.

• Sound judgment and team problem-solving skills.

• Excellent English written and verbal communication skills.

Your Experience Includes

• Bachelor's or Master's degree in Computer Science, Cybersecurity, or related field, with 6+ years of IT security experience or 8+ years in IT roles.

• Experienced in incident response, threat hunting, ethical hacking, malware mitigation, and patch management strategies

• Knowledgeable in regulatory compliance and frameworks, with experience in implementing controls based on NIST. ISO, CIS, and PCI-DSS.

• Active security certifications such as CEH, Security+, ISC2, SANS/GIAC, CISSP, CASP+, SSCP+ or equivalents preferred.

• Deep technical knowledge in application and infrastructure security.

• Experience with Active Directory and PKI

• Experience with SIEM, Okta, Vulnerability Management solutions such as Tenable

• Experience with cloud security technologies (SWG, CSG, CASB, DLP, CWP etc.)

• Experience with mobile security.

• Experienced in application security tools (SCA, SAST, DAST) and mobile security management.

• Skilled in scripting languages such as PowerShell, Python, and Bash to automate security tasks and enhance system defenses.

• Proficient in advanced threat models such as MITRE ATT&CK to inform security strategies and responses.

Travel: 0 - 10%

Location: Greer, SC

Proterra is an Equal Employment Opportunity Employer, providing equal employment opportunities to all Employees and applicants for employment without regard to race, color, creed, religion, sex, sexual orientation, gender identity, national origin, disability, age, genetic information, veteran status, pregnancy, childbirth, or related medical conditions, including, but not limited to, lactation or any other characteristic protected by applicable federal, state, or local law or ordinance. Proterra participates in the Electronic Employment Verification Program (E-Verify).

Equal Opportunity Employer/Protected Veterans/Individuals with Disabilities

The contractor will not discharge or in any other manner discriminate against employees or applicants because they have inquired about, discussed, or disclosed their own pay or the pay of another employee or applicant. However, employees who have access to the compensation information of other employees or applicants as a part of their essential job functions cannot disclose the pay of other employees or applicants to individuals who do not otherwise have access to compensation information, unless the disclosure is (a) in response to a formal complaint or charge, (b) in furtherance of an investigation, proceeding, hearing, or action, including an investigation conducted by the employer, or (c) consistent with the contractor's legal duty to furnish information. 41 CFR 60-1.35(c)