Security Engineer

About The Position

Requirements

• 3–5 years of experience in cybersecurity, security engineering, or security operations
• Hands-on experience with Microsoft security technologies, including: Microsoft Defender suite (Endpoint, Identity, Cloud Apps, Office 365)
• Hands-on experience with Microsoft Entra ID (Azure AD) security features and Intune administration
• Experience with endpoint detection and response (EDR/XDR) and SIEM platforms
• Identity and access management (IAM)
• Network security fundamentals (TCP/IP, firewalls, segmentation, switching, and routing)
• Windows and cloud security principles
• SIEM platforms and operations
• Experience with vulnerability management and remediation processes
• Familiarity with security frameworks and compliance standards (SOC 2, HIPAA, NIST, CIS)
• AWS networking, security configuration, and tools
• Strong analytical, troubleshooting, and problem-solving skills
• Linux terminal and PowerShell experience
• Copilot administration and machine learning familiarity
• Effective communication and collaboration skills

Nice To Haves

• Microsoft certifications (SC-200, SC-300, AZ-500, or equivalent)
• Experience with automation and scripting (PowerShell, Python)
• Exposure to cloud security (Azure and/or AWS)
• Experience implementing conditional access policies and Zero Trust principles
• Knowledge of threat intelligence and detection engineering

Responsibilities

• Monitor, investigate, and respond to security alerts across Microsoft security and other platforms (Purview, Defender suite, SIEM, Entra ID)
• Analyze logs and telemetry to identify suspicious activities and potential threats
• Support incident response activities, including containment, eradication, and root cause analysis
• Maintain and improve detection rules, analytics, and alert tuning
• Administer and Optimize Microsoft Defender for Endpoint, Identity, Cloud Apps, and Office 365
• Administer and Optimize Microsoft Entra ID (Azure AD) security controls and tools
• Administer and Optimize Microsoft Purview controls and tools
• Develop and maintain automated workflows and playbooks
• Integrate Microsoft security tools with other enterprise systems
• Conduct vulnerability assessments and coordinate remediation efforts
• Partner with infrastructure and application teams to prioritize and mitigate risks
• Contribute to risk tracking, reporting, and audit readiness (SOC 2, HIPAA, etc.)
• Work with the Security Architect to identify and recommend improvements to enterprise security architecture
• Assist with the implementation of security controls across cloud (Azure/AWS) and on-premises environments
• Support identity and access management initiatives, including MFA, conditional access, and least privilege
• Assist with audits, security reviews, and third-party assessments
• Ensure alignment with organizational security policies and regulatory requirements
• Provide input into security standards, procedures, and documentation
• Work closely with infrastructure, network, and application teams to embed security controls
• Provide technical guidance and support for security best practices
• Help drive security awareness across engineering teams