Cyber Security Engineer

About Us TrueBlue (NYSE: TBI) is a leading staffing, recruiting and workforce management company. The company fills individual positions on demand, staffs entire facilities, and manages outsourced recruiting processes and staffing vendor programs for a wide variety of clients. The company's specialized workforce solutions meet clients' needs for a reliable, efficient workforce in a wide variety of industries including - construction, manufacturing, financial services, pharmaceuticals, transportation, aviation, and energy.

TrueBlue assigns as many as 100,000 people to work each day, drawing from a data base of hundreds of thousands of candidates, and places more than 250,000 people in permanent positions each year. Responsibilities: Serve as the primary incident responder to review, analyze, and triage all alerts from end-point detection tools, MDCA, email protection, AWS security tools, IDS/IPS, and web application firewalls. Participate in the on-call rotation & work extended or off-shift hours to support Incident Response activities as needed.

Supports the information security policy and standards lifecycle from creation through approval, to communication and maintenance. Participate in and contribute to the design and architecture of cyber threat defenses and the development of playbooks for automated response activities, in alignment with the TBI Incident Response Plan. Participate in security review of new technologies, designs, and remediation planning efforts.

Respond to security-related incidents or emerging security threats, actively participate in incident response investigation efforts, and create relevant incident reports that include remediation details. Regularly communicate vital information about security threats and vulnerabilities, security needs, and priorities to Security leadership. Serves as a liaison between IT operations, engineering, and department leaders to maximize the adoption of and support information security standards, procedures, and regulatory controls.

Collaborate and provide cybersecurity support for projects and initiatives in support of groups such as billing operations, application support, engineering operations, finance, legal, privacy, and risk management. Work in active partnership with cross-company stakeholders to understand business and technical requirements. Provide coaching and guidance to junior members of the security team as needed.

Skills & Qualifications Passion for constant improvement and better user experience, including successful delivery of self-service tools and automated management/optimization of security services, and strong services orientation. Experience with Microsoft Entra Security tools, including but not limited to MDE, Sentinel, MDO, Purview, and MDCA. The ideal candidate should be comfortable leveraging modern AI‑enabled security capabilities to enhance detection, response, and operational efficiency, while validating AI-generated outputs for accuracy and security compliance.

Specifically: -Ability to use AI‑assisted threat detection and analysis tools (e.g., anomaly detection behavioral analytics) -Familiarity with AI‑driven security platforms in Microsoft ecosystems (Defender, Sentinel, Purview) -Experience using AI tools to automate security tasks, such as log analysis, alert triage, and incident enrichment with context, intelligence, and supporting data, etc. Understanding of and experience with endpoint security solutions using the MITRE ATT&CK Matrix. Experience with enterprise-scale solutions that leverage the AWS Services: EC2, S3, ECS, RDS, Containers, Lambda, CloudFormation, WAF, CloudWatch, Guard Duty, Inspector, Systems Manager, Macie, Config, CloudFront, VPC security configuration, CI/CD, DevOps, SecOps.

Intermediate understanding of regulatory controls such as SOX and ISO 27001. Intermediate understanding and/or experience applying ITIL, 27001, or NIST frameworks. Intermediate understanding and/or experience with hardening operating systems (Windows / Linux/MacOS).

Ability to learn from others and adapt to standards. Ability to participate in peer-review sessions to help refine processes and procedures. Ability to express complex technical concepts effectively, both verbally and in writing.

Ex Experience/Education Associate or bachelor's degree in computer science, Cyber Security, or Information Technology. 5+ years of relevant security experience OR master's degree in information security with 3+ years of relevant security experience. The ideal candidate would possess two or more of the following: Certified Information Systems Security Professional (CISSP) Certified Ethical Hacker (CEH) Offensive Security Certified Professional (OSCP) AWS Certified Solutions Architect Associate or AWS Certified Cloud Practitioner