Security and Compliance Engineer

Shield•Tampa, FL

9h•$150,000 - $200,000•Hybrid

About The Position

We are seeking a highly skilled Security and Compliance Engineer to join the IS&T team at Shield Technology Partners. This role is critical in fortifying our internal infrastructure, specifically focusing on the Microsoft ecosystem and our expanding SaaS portfolio. You will be responsible for the architecture, enforcement, and continuous monitoring of our security posture to ensure we meet the highest industry standards. This role will be hybrid in nature, requiring one day per week to be worked in-person at the Shield Tampa, FL office.

Requirements

Bachelor’s or Master’s degree in Computer Science, Information Systems, or a related technical field.
10+ years of progressive leadership experience in IT operations, systems architecture, or engineering management.
Platform Expertise: Deep technical knowledge of Azure, Microsoft Entra ID, and the M365 Security & Compliance Centers.
Security Tooling: Hands-on experience with EDR/XDR platforms (SentinelOne preferred) and MDM solutions (Intune).
Identity Architecture: Proficiency in SAML 2.0, OAuth 2.0, and OIDC for SaaS integrations.

Responsibilities

Azure & Microsoft 365 Security Governance
Design and implement security configurations within Azure and M365 to mitigate identity-based threats.
Manage and audit Microsoft Entra ID (formerly Azure AD), including Conditional Access policies, Privileged Identity Management (PIM), and Identity Protection.
Conduct regular security assessments of the M365 tenant using Microsoft Secure Score and industry benchmarks.
Identity & SaaS Integration
Lead the integration of all internal SaaS applications behind Single Sign-On (SSO) via Entra ID.
Enforce Multi-Factor Authentication (MFA) and passwordless strategies across all corporate platforms.
Monitor and secure API-based integrations between SaaS products to prevent data leakage and unauthorized access.
Endpoint Security & MDM Enforcement
Oversee the deployment and management of Mobile Device Management (MDM) via Microsoft Intune for a diverse fleet of devices.
Administer and tune SentinelOne (or equivalent EDR) for proactive threat hunting, automated response, and endpoint hardening.
Develop automated remediation scripts to address non-compliant devices in real-time.
Incident Response & Threat Monitoring
Act as the primary technical lead for internal security alerts, investigating potential breaches and coordinating response efforts.
Configure and monitor logging and alerting systems to identify anomalous behavior across the cloud environment.
Perform root cause analysis (RCA) following security incidents to improve defensive layers.
Compliance & Security Auditing
Ensure the organization’s technical controls align with relevant compliance frameworks (e.g., SOC2, ISO 27001, or NIST).
Maintain comprehensive documentation of security architectures, policies, and standard operating procedures (SOPs).
Coordinate internal audits and vulnerability scans, ensuring timely remediation of discovered weaknesses.