Senior Information Security Engineer

QTS Realty Trust, Inc.•Suwanee, GA

44d

About The Position

Embark on a pivotal role with a team dedicated to fortifying the security of a rapidly expanding global Data Center Infrastructure Management architecture. As a Senior Information Security Engineer - Endpoint & Identity, you will spearhead efforts to challenge and enhance our defensive capabilities, ensuring resilience against evolving cyber threats through the integration of Converged Security strategies. Role Overview: As the Senior Information Security Engineer - Endpoint & Identity - you will collaborate with a dynamic team to audit, assess, and strategize the protection of our Cloud and on-prem identity providers and the security posture of our user endpoints. Your leadership and expertise will evaluate, implement, and improve identity management and help bolster the defensive configuration and state of a diverse host of user-facing endpoints, fostering a culture of proactive defense and resilience against sophisticated cyber adversaries.

Requirements

Bachelor's degree in Cybersecurity, Computer Science, Engineering, or related technical discipline, or equivalent experience.
Strong understanding of Entra identity concepts and management.
Experience in Windows and Mac configuration and security features.
5 years of experience, or equivalent experience in high-paced Information Security environment(s) and security assessments, integrating teaming methodologies.
Entra - Identity, security, and configuration.
Windows 10/11, Mac - OS management and configuration.
Intune, Jamf - Configuration policies and inventory management.
Incident Response - Quickly analyzing and mitigating security breaches or cyber-attacks.
Vulnerability Assessment - Identifying and prioritizing security weaknesses in systems.
Analytical Thinking: Ability to analyze complex security issues and develop effective solutions.
Problem-Solving: Quickly identifying and resolving security issues.
Effective Communication: Clearly conveying security policies and procedures to team members and stakeholders.
Attention to Detail: Ensuring all security measures are meticulously implemented and monitored.
Adaptability: Staying updated with the latest security threats and adapting strategies accordingly.

Nice To Haves

Highly desirable certifications such as MS IAAA, Security+, ISC2 CCSP, GSEC, and knowledge of MITRE ATT&CK.

Responsibilities

Develop and implement security policies and procedures for Entra.
Ongoing evaluation of Entra configuration.
Design, evaluate, and assist in implementation of Conditional Access policies.
Onboarding/offboarding automation review and auditing.
SaaS/API/SAML configuration and auditing.
Endpoint Detection & Response configuration, evaluation, and management. (Microsoft Defender, Symantec, CrowdStrike)
Endpoint Patching (Qualys, Jamf)
DNS/Network management (Cisco)
Device Configuration and Management (Intune, Jamf)
Evaluation and management of user endpoint permissions and elevation (CyberArk EPM, Jamf Connect)
Lead and manage Entra or endpoint related emergent threats, quickly evaluating organizational exposure and formulating and managing a rapid response.
Perform root cause analysis and develop strategies to prevent future incidents.
Work closely with Enterprise IT engineers, developers, and other stakeholders to manage changes and remediations to minimize disruption and downtime.
Provide security training and guidance to internal teams.
Maintain detailed documentation of security policies, procedures, and incidents.
Prepare and present security reports to stakeholders and senior management.
Conduct regular security audits and reviews of endpoint security state and Entra, Intune, Conditional Access, and other related technologies.
Provide recommendations for security improvements based on findings.