Sr. Security Engineer (671)

Purpose of Position: This position is responsible for maintaining and improving the security of the organization's information systems, networks and data. Key responsibilities include proactively identifying potential security risks, developing and implementing security measures to prevent data loss.

Essential Functions:

• Perform active threat hunting, looking for potential attacks rather than just passively waiting for attacks
• Perform red team/blue team exercises to test defenses and improve security operations.
• Assists with vulnerability assessments, using provided security tools to identify system vulnerabilities
• Design and implement security controls across cloud and on-premises environments
• Create and maintain security monitoring and alerting solutions
• Data Loss Prevention (DLP): Monitor DLP alerts, investigate incidents, and recommend actions to relevant teams to mitigate data breaches.
• Assists in the planning and deployment of the company's cloud information security strategies
• Manage Infrastructure and application security monitoring tools to detect and respond to security incidents in real-time
• Participate in the development and improvement of the company's SDLC processes, ensuring security practices are integrated into all stages of product development
• Responsible for evaluating, influencing, and recommending technology and product direction
• Stay informed on the latest cybersecurity trends, emerging threats, attack techniques, and zero-day vulnerabilities affecting Microsoft environments and other relevant technologies.
• On-site or remote regular attendance and punctuality are essential functions of the job.
• Perform other business tasks or functions as assigned.

Knowledge, Skills & Abilities Required:

• Experience with Microsoft Defender, Sentinel, Azure Security Center, and Microsoft 365 security solutions, helping to identify vulnerabilities, mitigate threats, and enhance security postures.
• Deep knowledge of Microsoft security solutions

o Microsoft Defender for Endpoint

o Microsoft Sentinel (SIEM/SOAR)

o Azure Security Center & Microsoft Purview Compliance Manager

o Microsoft Intune and Conditional Access Policies

• Strong understanding of security principles and best practices
• Strong knowledge and hands on experience with Data Loss Prevention
• Hands-on experience in threat hunting
• Certifications such as OSCP, OSWE, CISSP, CEH, GPEN, AZ-500 (Microsoft Azure Security Engineer), SC-200 (Microsoft Security Operations Analyst), or SC-300 (Microsoft Identity and Access Administrator) are a plus.
• Proficiency in Microsoft security technologies and tools such as Purview Information Protection, Defender for Cloud and Sentinel
• Experience with Managed Extended Detection and Response (MXDR)
• Proficient in Microsoft Office programs, including Word, Excel, PowerPoint, as well as Outlook.
• Adhere to all PHI (Protected Health Information) and HIPAA (Health Insurance Portability and Accountability Act) guidelines.

Educational Requirements:

• High School Diploma or equivalent required.
• Bachelor's degree in Computer Science, Cyber Security or equivalent experience required.
• Minimum of six (6) years of hands-on experience in IT with a focus on security.

Physical Requirements: Must be able to sit for extended periods and occasionally stand and walk. Must have adequate hearing for phone work. Vision requirements include close vision and the ability to adjust focus. Must be able to communicate effectively in English. Must be able to use a keyboard and other office equipment. Ability to lift up to 10 pounds occasionally.