Sr Security Engineer

• Exercise expert-level judgment to independently investigate and report complex cyber incidents, setting standards for incident response and mentoring junior staff on advanced cases.
• Oversee system cybersecurity operations, making high-stakes decisions in ambiguous scenarios and shaping escalation protocols for critical issues.
• Lead and define initial cyber incident triage strategies, determining scope and urgency with authority, and guiding the team through complex incidents.
• Set organizational standards for vulnerability identification and documentation, utilizing advanced tools and methodologies, and influencing escalation practices for non-standard or high-risk findings.
• Direct advanced data analysis using CND tools (IDS alerts, firewall logs, host system logs), recognizing sophisticated threat patterns and mentoring others in expert analysis.
• Ensure the highest standards of incident documentation, reviewing and resolving discrepancies with expert judgment, and influencing documentation practices across the team.
• Lead root cause analysis for major incidents, applying advanced analytical skills and shaping investigative methodologies for the organization.
• Stay at the forefront of cybersecurity threats and best practices, driving process improvements and influencing team knowledge sharing.
• Architect and optimize the Microsoft Security stack, resolving advanced issues and leading strategic process improvements that impact enterprise security.
• Oversee identity and access management (IAM) at an expert level, handling complex issues and shaping IAM standards and policies.
• Lead response efforts to active attacks in cloud and on-premises environments, exercising advanced judgment and authority in high-stakes scenarios.
• Provide expert input on threat protection, leading initiatives that drive team efficiency and influence organizational security practices.
• Independently report and lead reviews of suspected policy violations, shaping investigative standards for cases requiring further scrutiny.
• Lead risk mitigation efforts, making high-stakes decisions to manage exposure and influencing improvements to organizational risk management processes.
• Drive the development of enterprise-wide security architectures and standards, leading strategic meetings and initiatives that influence organizational direction.
• Oversee baseline and risk assessments, setting standards for data collection and analysis, and guiding the team through complex findings.
• Provide advanced cybersecurity consultation, leading enterprise-wide health checks and resolving complex questions that shape organizational security posture.
• Lead research into emerging cybersecurity threats, applying deep functional knowledge and influencing investigative approaches for complex incidents.
• Maintain and review the enterprise cybersecurity risk register, setting standards for risk documentation and resolving unusual entries with expert judgment.
• Lead forensic investigations and advanced cybersecurity activities, setting standards for data collection and documentation, and mentoring junior analysts.
• Manage intrusion prevention systems and define endpoint protection policies, leading strategic improvements and influencing routine security practices.
• Triage advanced threat detection (ATD) alerts, exercising expert judgment and shaping team approaches to complex alerts.
• Provide advanced advice and assistance on cybersecurity matters, mentoring junior analysts and influencing the resolution of complex questions.
• Lead training sessions and drive adoption of new cybersecurity and communication technologies, shaping team efficiency and mentoring others.

• Degree or diploma in Computer Science, Information Systems, or Network Security from an accredited institution.
• Certification in Microsoft security (such as SC-200 or SC-300) preferred; candidates must demonstrate expert-level competency and practical experience.
• Alternatively, a combination of equivalent training and substantial experience will be considered.
• Advanced expertise in Microsoft security platforms, EDR, IPS, Next Gen Firewalls, IAM, PKI, encryption, and tokenization.
• Demonstrated experience with vulnerability scanning, penetration testing, and threat modeling at a senior level.
• Awareness of mobile security, micro segmentation, and industrial controls of security is beneficial.
• Exceptional communication, analytical, and problem-solving skills, with a proven ability to mentor and influence others.
• Demonstrated self-direction, openness to feedback, and authority to shape security strategies and standards.
• Prior experience in Microsoft security management or equivalent at a senior level.

Equal Opportunity Employer
This employer is required to notify all applicants of their rights pursuant to federal employment laws. For further information, please review the Know Your Rights notice from the Department of Labor.