Cloud Security Engineer

About The Position

Requirements

• Hands-on experience with Microsoft Defender suite (Endpoint, Identity, Office 365, Cloud Apps) including policy configuration, alert tuning, and incident investigation.
• Experience with Entra ID (Azure AD) including Conditional Access, PIM, RBAC, and application registrations.
• Experience with Microsoft Intune for endpoint management, compliance policies, and configuration profiles.
• Experience with Microsoft Purview controls including DLP, sensitivity labels, and retention policies.
• Experience with Azure security services including Azure Policy, network security groups, Key Vault, and Azure Monitor.
• Experience with vulnerability management or MDR platforms, preferably Rapid7 InsightVM/InsightIDR, including agent deployment and scan configuration.
• Demonstrated understanding of endpoint hardening principles including CIS Benchmarks and Intune security baseline implementation.
• Scripting capability (PowerShell preferred) for automation and administrative tasks.
• Ability to work across multiple Microsoft 365 tenants simultaneously and maintain consistent configurations.
• Strong troubleshooting and analytical skills with the ability to investigate and resolve complex security issues.
• Clear written and verbal communication skills, including the ability to document procedures and explain technical issues to non-technical stakeholders.
• Ability to manage multiple priorities and coordinate remediation activities across teams.
• Ability to work effectively both independently and as part of a small, collaborative security team.
• Bachelor’s degree in Information Technology, Computer Science, Cybersecurity, or related discipline; or equivalent combination of education and experience.
• 3–5 years of hands-on experience in information security, cloud security, or security engineering with a focus on Microsoft 365 and Azure environments.

Nice To Haves

• Microsoft Security certifications preferred (SC-200, SC-300, SC-400, or AZ-500).

Responsibilities

• Security Control Implementation & Hardening
• Deploy, configure, and tune Microsoft Defender for Endpoint, Identity, Office 365, and Cloud Apps across all managed tenants.
• Implement and maintain endpoint hardening baselines through Intune configuration profiles, compliance policies, and security baselines.
• Configure and manage Microsoft Purview controls including DLP policies, sensitivity labels, retention policies, and insider risk indicators.
• Implement privileged access controls and hardened administrative workstation configurations as directed by the Information Security Manager.
• Deploy and manage Azure security controls including Azure Policy, network security groups, Key Vault configurations, and Private Link implementations.
• Security Operations & Incident Support
• Monitor and triage security alerts from Microsoft Defender XDR and Rapid7 platforms.
• Provide Tier 2–3 escalation support for security incidents, coordinating investigation and containment with internal teams and the Rapid7 MDR team.
• Support Rapid7 Collector and agent deployment, maintenance, and troubleshooting across managed tenants.
• Assist with vulnerability remediation efforts as needed, coordinating with the operations team on patching and hardening activities.
• Build and maintain security automation using Azure Automation, Logic Apps, or Rapid7 workflows to improve detection and response efficiency.
• Develop and document runbooks for common security scenarios, alert triage procedures, and incident response workflows.
• Participate in post-incident reviews and implement corrective actions to prevent recurrence.
• Compliance Support & Evidence Collection
• Assist the GRC function with technical evidence collection for SOC 2, NIST CSF, and other compliance initiatives.
• Implement and validate technical controls mapped to compliance framework requirements.
• Support internal security assessments and audits by providing technical documentation and control validation.
• Maintain technical documentation for security configurations, baselines, and standard operating procedures.
• Continuous Improvement
• Stay current on Microsoft security product updates, new capabilities, and best practices.
• Evaluate and recommend improvements to existing security controls based on threat intelligence, industry developments, and lessons learned.
• Provide knowledge transfer and technical guidance to operations staff on security-related procedures and best practices.
• Completion of Assigned Tasks and Deliverables on Time and on Budget
• Performs Other Related Duties as Assigned

Benefits

• Choice of comprehensive medical plans (including two PPO-style plans and a HDHP w/ HSA option)
• Flex spending accounts (FSA)
• Dental and vision plans
• Comprehensive medical, dental and vision benefits extended to spouse / domestic partner and dependent children up to age 26
• 401k with company match and self-directed brokerage account option
• PTO including additional paid time off during the last week of the year
• Company paid life insurance coverage for employees and their eligible dependents
• Short and long-term disability, AD&D coverage
• Professional development opportunities, tuition reimbursement and professional licensing assistance
• Paid parental leave after one year of employment