Senior Cybersecurity Engineer (Cloud & Zero Trust Specialist)

About The Position

Requirements

• Proven experience designing and implementing Zero Trust architecture in a hybrid environment.
• Deep expertise in cloud security, particularly with Microsoft Azure. This includes experience with Azure Security Center, Entra ID, and network security groups.
• Strong background in vulnerability management and security for compliance (SOC 2, SOX).
• Hands-on experience with modern Endpoint Detection and Response (EDR) platforms (e.g., CrowdStrike, Sophos).
• Proficiency in scripting and automation (e.g., PowerShell, Python) to enhance security operations.

Nice To Haves

• Experience with Data Loss Prevention (DLP) technologies and policy creation (e.g., Microsoft Purview).
• Familiarity with AWS security principles and services.
• Experience with CI/CD pipelines and securing the software development lifecycle (SDLC) using tools like Azure DevOps.
• Knowledge of data governance principles and tools (e.g., Microsoft Purview).
• Industry certifications such as CISSP, Microsoft Certified: Cybersecurity Architect Expert (SC-100), or other relevant cloud/security certifications.
• A collaborative mindset with a proven ability to mentor colleagues and lead strategic projects.

Responsibilities

• Architect and Implement Zero Trust: Lead the design, implementation, and management of a Zero Trust security model across our organization. This includes advanced network segmentation, identity and access management, incidence response, and micro-segmentation strategies.
• Enhance Cloud Security: Take charge of our cloud security posture, with a primary focus on Azure and a forward-look towards AWS. Implement and manage security controls, policies, and monitoring.
• Lead Vulnerability & Compliance Management: Drive our vulnerability management program, ensuring systems are patched and configured to meet compliance standards like SOC 2 and SOX.
• Champion Advanced Security Tools: Manage and optimize our Endpoint Detection and Response (EDR) solutions (e.g., CrowdStrike, Sophos), Data Loss Prevention (DLP) policies (e.g., Microsoft Purview), and other advanced security platforms.
• Drive Security Automation: Utilize your scripting skills (e.g., PowerShell) to automate security processes, from incident response playbooks to compliance checks, within our DevOps environment.
• Mentor and Upskill the Team: Act as a mentor to other team members, sharing your expertise in Zero Trust, cloud security, and modern security practices to elevate the team's collective skill set.
• Innovate with AI in Security: Explore and pilot the use of AI/ML for security automation, threat detection, and analytics. Help build secure sandbox environments for testing new AI tools like Copilot and Glean.

Benefits

• Comprehensive insurance options, including Medical, Dental, and Vision
• Optional coverage such as Critical Illness, Accident, Legal & Identity Theft, and Pet Insurance
• Company‑paid Life Insurance, with the option to purchase additional coverage
• Company‑paid Long‑Term Disability coverage
• Access to a benefits concierge service for personalized support
• Access to mental health and well‑being resources
• 401(k) Plan with dollar‑for‑dollar company match up to 6% of pay
• Contributions are fully vested immediately
• Eligible employees are automatically enrolled at a 4% contribution rate
• Eligibility requires a minimum age of 21 and at least 60 days of service
• Paid Time Off (PTO)
• 11 paid holidays annually
• Following six (6) months of employment, eligible employees may receive:
• Four (4) weeks of paid parental leave as a primary caregiver, or
• Two (2) weeks of paid parental leave as a secondary caregiver
• Following two (2) years of employment, eligible primary caregivers may receive up to twelve (12) weeks of paid parental leave per birth, adoption, or placement
• Tuition Reimbursement of up to $5,000 per year for pre‑approved education expenses
• Repayment obligations may apply if employment ends prior to 24 months