Security Engineer II

About The Position

Requirements

• 1-3+ years of IT security experience
• BS Engineering/Computer Science or equivalent experience required
• Purple Teaming
• Threat Hunting
• Microsoft Defender or similar
• Entra ID / Active Directory
• ServiceNow or similar
• SIEM Knowledge and expertise

Responsibilities

• Handling escalated security investigations
• Detecting and responding to advanced threats, actor techniques, anomalous or suspicious activity, combined with intelligence, identifying potential and active risks to systems and data
• Defining and implementing new defensive security processes
• Incident Management
• CI/CD Pipeline Devops (Github)
• Security mitigation efforts based on vulnerability assessment results
• All other duties as assigned.
• Manage and monitor Azure and AWS cloud security configurations to ensure compliance and best practices.
• Implement and maintain cloud-native security tools.
• Support cloud access control, encryption, and network security processes.
• Investigate and respond to security incidents, coordinating remediation efforts across teams.
• Develop and maintain incident response playbooks and procedures.
• Utilize XDR / SIEM platforms (e.g., Microsoft Defender / Sentinel) to monitor, detect, and analyze security events.
• Conduct vulnerability assessments and manage remediation efforts.
• Design and configure ServiceNow Security Incident Response workflows to streamline incident tracking and resolution.
• Automate security operations processes within ServiceNow.
• Analyze threat intelligence to identify and mitigate risks.
• Perform proactive threat hunting to identify potential vulnerabilities or compromises.
• Work with cross-functional teams, including the Security Operations Center teams (SOC), to strengthen our security posture.
• Provide mentorship and technical guidance to junior team members.