Senior Security Engineer II

BerryDunn

21h•$155,000 - $180,000•Remote

About The Position

We are looking for a talented and driven Senior Security Engineer II to join our expanding security team. In this role, you will be instrumental in strengthening and maintaining our organization’s security posture while also supporting the security of our products and services. This is a hands-on position that requires a strong grasp of multiple security domains and the ability to thrive in a dynamic, fast-paced environment. You will design, implement, and maintain security infrastructure to protect enterprise systems, networks, and data from cyber threats while ensuring compliance with regulatory standards. Collaboration will be key as you work closely with IT, compliance, and business teams to implement security best practices, monitor risks, and respond promptly to security incidents. This role is primarily responsible for designing, implementing, and managing Microsoft security solutions—including Purview, Entra, and Defender Cloud—to ensure robust data governance, compliance, and risk management across the organization’s data assets. A key focus will be maintaining compliance with HIPAA (Health Insurance Portability and Accountability Act), HITECH (Health Information Technology for Economic and Clinical Health Act), and AICPA requirements. The Security Engineer will play a vital role in safeguarding Protected Health Information (PHI) throughout its lifecycle within Microsoft 365 and Azure environments. Secondary responsibilities include leading projects and implementing initiatives within Information Governance, Vulnerability Management, Asset Management, and Access Management domains across the organization. This position can sit remotely or at any of our office locations. Travel Expectations: This role requires minimal travel, less than 10% per year.

Requirements

Strong technical expertise in O365, Microsoft 365 Purview, Microsoft Purview in Azure, Microsoft Defender, and Entra.
Understanding of security within on-premise infrastructure using VMWare and Azure Hybrid environments.
Proven experience designing, deploying, and managing Microsoft Purview environments.
Deep understanding of ISO 27001, NIST CSF, HIPAA, AICPA, and SOC 2 frameworks, including associated Privacy and Security Rules.
Hands-on experience implementing technical safeguards to meet HIPAA and other regulatory requirements.
Solid knowledge of cloud security best practices and identity/access management principles.
Proficiency in data classification, labeling, and Data Loss Prevention (DLP) strategies.
Strong communication, collaboration, documentation, and problem-solving skills.
Ability to work both independently and collaboratively within cross-functional teams.
Bachelor’s degree in Computer Science, Information/Cyber Security, or a related field (or equivalent professional experience)
7+ years of experience in cybersecurity, including at least 2 years in enterprise environments

Nice To Haves

Industry certifications such as CISSP, CISM, CEH, or GIAC (preferred)
Strong expertise in network, system, and cloud security
Cloud-specific security certifications (e.g., Microsoft Azure, Microsoft Purview, AWS Certified Security)
Experience in cybersecurity vendor environments
Proficiency with Microsoft Records Management and/or Information Governance processes
Advanced knowledge of cloud security, particularly with Azure and GCP; experience with other data catalog and governance tools (e.g., Collibra, Alation, Informatica)
Client-facing consulting experience in compliance, data governance, and regulatory alignment

Responsibilities

Implement and Manage Cloud Security Controls: Apply cloud security best practices across corporate and cloud environments (preferably Microsoft Azure) to monitor, maintain, and continuously improve enterprise security posture.
Framework Alignment & Compliance: Ensure alignment with industry-standard security frameworks and regulatory requirements (e.g., ISO/IEC 27001, NIST, HIPAA, SOC 2, AICPA Trust Services Criteria).
Data Governance & Compliance Tools: Design, deploy, and maintain Microsoft Purview features including data cataloging, classification, lineage, and compliance policies.
Identity and Access Management: Administer and optimize identity management and access control systems, including Microsoft Entra ID (Azure AD), to ensure secure authentication and authorization.
Incident Response: Support the development, execution, and continuous improvement of incident response procedures, including active participation during security incidents.
Policy/Standard/Procedure Development: Create, update, and enforce security policies, standards, and procedures aligned with organizational goals and compliance requirements.
Security Architecture Collaboration: Work closely with IT and architecture teams to embed security controls into system and application design.
Security Tooling & Technology Evaluation: Research, recommend, and assist in the implementation of modern security technologies and solutions to enhance defenses.
Network and Protocol Security: Leverage knowledge of networking fundamentals and security protocols to ensure proper segmentation, encryption, and protection of corporate assets.
Application Security Participation: Support application security initiatives including secure development practices, vulnerability management, and remediation workflows.
Cloud Defense Platforms: Administer Microsoft Defender for Cloud and other cloud-native security tools to detect and respond to threats.
Additional Responsibilities: Perform other security-related tasks and initiatives as required in support of evolving organizational needs and technology initiatives.
Actively contribute to cross-functional projects involving information security, privacy, risk, and compliance.