We use cookies. Find out more about it here. By continuing to browse this site you are agreeing to our use of cookies.
I agree and accept cookies
Main menu
Post a Job
Request a Demo
Yes
No
Both
Advanced search
#alert
Back to search results / More jobs like this
Back to search results
Remote New
US LBM Holdings, LLC jobs

US LBM Cybersecurity Engineer - DevSecOps & Cloud Security

US LBM Holdings, LLC
United States
Sep 04, 2025

US LBM is one of the leading and fastest growing distributors of specialty building materials in the United States, with a team of over 15,000 employees located throughout the country. Since our founding in 2009, we have acquired over 70 companies and have expanded to more than 500 locations serving 37 states. US LBM is a progressive organization that promotes a unique culture that focuses on the value of its customers and associates. Developing our people is critical to our strategy and fostering our culture of empowerment.

.

The US LBM Cybersecurity Engineer is responsible for designing, implementing, and maintaining security solutions that protect the organization's cloud and development environments. This role blends Cloud security engineering, security automation, and DevSecOps practices to strengthen our ability to detect, prevent, and respond to threats.

The engineer will work across teams to integrate security into our infrastructure, applications, and pipelines, ensuring that security measures are both effective and operationally efficient. Success in this role requires strong technical skills, hands-on experience with cloud security tools, and the ability to embed security into modern development and operations workflows.

What you will do

  • Serve as the subject matter expert for Microsoft Sentinel (SIEM & SOAR), including rule creation, playbook development, and integration with other security tools.

  • Manage and optimize Microsoft Defender for Cloud and Azure Policy to maintain and enhance Azure security posture.

  • Design and implement SOAR automation workflows using Azure Logic Apps.

  • Build and optimize Kusto Query Language (KQL) queries for detection, threat hunting, reporting, and automation.

  • Integrate security controls into DevSecOps pipelines, focusing on Azure DevOps, Terraform, and other CI/CD platforms.

  • Implement and maintain application security scanning using Black Duck or similar DAST/SCA tools.

  • Developing, implementing, and maintaining IAM systems and solutions

  • Troubleshooting, identifying, and resolving technical IAM related issues

  • Ensuring that solutions protect information resources against unauthorized use, inappropriate degrees of access, disclosure, damage and/or loss

  • Identifying, analyzing and resolving system design weaknesses

  • Develop a complete understanding of US LBM's technology and information systems

  • Build, implement and support enterprise-class security systems

  • Align organizational security strategy and infrastructure with overall business and technology strategy

  • Identify and communicate current and emerging security threats

  • Implement and maintain security infrastructure elements to mitigate threats as they emerge

  • Identify security design gaps in existing and proposed architectures and recommend changes or enhancements

  • Create solutions that balance business requirements with information and cybersecurity requirements

  • Validates IT infrastructure and other reference architectures for security best practices and recommend changes to enhance security and reduce risks, where applicable

  • Conducts or facilitate threat modeling of services and applications that tie to the risk and data associated with the service or application

  • Test security systems to ensure they behave as expected

  • Use current programming language and technologies to writes code, complete programming and performs testing and debugging of applications

  • Define, implement and maintain corporate security policies and procedures

  • Respond immediately to security-related incidents and provide thorough remedial solutions and analysis

  • Regularly communicate vital information, security needs and priorities to upper management

Required For All Jobs

  • Perform other duties as assigned.

  • Comply with all policies and standards.

  • Adheres to Company's commitment to workplace safety.

Education Qualifications

  • Bachelor's degree in Information Systems or equivalent experience required.

Experience Qualifications

  • 3-4 years of IT security experience required.

  • 5-7 years of IT systems engineering experience, with broad understanding of Windows Domain environment, networking, and some Cloud experience, particularly Microsoft Azure.

  • Microsoft Cloud Security Solutions: Microsoft Sentinel (SIEM & SOAR), Microsoft Defender for Cloud, Azure Policy.

  • DevSecOps / CI/CD Tools: Azure DevOps, Terraform, pipeline integration for secure deployments.

  • Application Security Tools: Black Duck or equivalent SAST/DAST/SCA tools (e.g., Checkmarx, Veracode).

  • Automation & Scripting: Azure Logic Apps, PowerShell, Python, ARM templates, Bicep.

  • Cloud & Infrastructure: Microsoft Azure resources - Virtual Machines, Storage Accounts, Logic Apps, Automation Accounts, SQL, App Services.

Skills and Abilities

  • Demonstrated ability leading security-based project.

  • Must have technical competency in IT/Systems, combined with business acumen to understand and translate between business and technical requirements.

  • Experience and strong understanding of security frameworks and concepts such as Zero Trust model, NIST Cybersecurity Framework, and Microsoft Cloud Security Benchmark.

  • Able to support multiple efforts in parallel, in a highly matrix, fast-paced, multi-site organization experiencing rapid growth

  • Proficient in performing risk, business impact, control and vulnerability assessments, and in defining treatment strategies.

  • Strong interpersonal skills required, with a positive approach to collaboration and relationship building.

  • Must have excellent written and verbal communication skills.

  • Strong analytical, organizational and demonstrated problem solving and conflict resolution skills.

  • Must be a self-starter with an attitude to "get things done" and an excellent understanding of information security concepts, protocols, industry best practices and strategies.

  • Travel required to various operating locations along with business-related meetings & conferences.

Licenses and Certifications

  • Industry certifications related to Security, Systems and Network Engineering, such as Network +, Security +, CCNA, Microsoft Certified Azure Security Engineer Associate (AZ-500)

.

US LBM Holdings, LLC, is an equal-opportunity employer. We do not discriminate on the basis of race, color, religion, creed, national origin or ancestry, sex, age, physical or mental disability, veteran or military status, genetic information, sexual orientation, gender identity, marital status, military status, order of protection status, or any other legally recognized protected basis under federal, state, or local law.

Applied = 0
MORE JOBS LIKE THIS

(web-759df7d4f5-mz8pj)