IT Security Engineer III
Pegasus Steel
- Ladson, South Carolina, United States
- Ladson, South Carolina, United States
Über
Full-time
Description
We are seeking a full-time IT Security Engineer to support and mature a compliance-driven security program in a hybrid, multi-site defense contracting environment. This role is responsible for designing, implementing, and operating security controls across on-premises infrastructure and Microsoft Azure Government (GCC High), while directly supporting regulatory requirements including CMMC Level 2, DFARS 252.204-7012, ITAR, and NIST SP 800-171.
This is a hands-on, engineering-focused position. The IT Security Engineer will work closely with IT, infrastructure, compliance, and operations teams to deploy and maintain technical security controls, enhance detection and response capabilities, and support internal and external audits and assessments. This position reports to the Security Manager.
U.S. Person required (as defined by ITAR, due to export-controlled information and technology).
Active U.S. security clearance is a plus, but not required.
Responsibilities and Duties:
- Design, deploy, and maintain security architecture and technical controls across on-premises infrastructure (Active Directory, servers, endpoints, network systems) and Microsoft Azure Government (GCC High) environments.
- Engineer secure solutions supporting multi-site operations, network segmentation and isolation, and regulated environments handling Controlled Unclassified Information (CUI) and export-controlled data.
- Lead and participate in security and architecture reviews for new systems, applications, vendors, SaaS platforms, and cloud services.
- Engineer and operate endpoint and identity security controls, including Microsoft Intune, device compliance, Conditional Access, Entra ID (Azure AD) hybrid identity, Privileged Identity Management (PIM), role-based access control, and service account governance.
- Support Active Directory and Entra ID modernization, consolidation, and identity security initiatives.
- Build and maintain detection and response capabilities using Microsoft Defender XDR, including KQL-based detection engineering and threat hunting aligned to MITRE ATT&CK and regulatory requirements.
- Assist with incident response activities including investigation, triage, containment, remediation guidance, root cause analysis, and corrective action planning.
- Implement, validate, and document technical security controls aligned to NIST SP 800-171, CMMC Level 2, DFARS, and ITAR requirements.
- Produce technical documentation and engineering evidence to support internal assessments, external audits, customer reviews, and prime contractor security evaluations.
- Support firewall and perimeter security platforms, secure remote access, site-to-site connectivity, internal segmentation, vulnerability management, and centralized logging/SIEM integrations.
- Participate in vendor risk assessments and evaluate third-party security posture and data handling practices.
- Develop and maintain security standards, configuration baselines, implementation guides, and hardening documentation.
- Support operational readiness through tabletop exercises, incident response testing, cyber recovery, and disaster recovery planning.
- Provide hands-on technical guidance to IT and engineering teams to ensure secure configuration and deployment practices across regulated environments.
Requirements
Education and Experience:
- Bachelors Degree in Cybersecurity, Information Security, Information Technology, Computer Engineering or related field
- 5+ years of experience in information security engineering, infrastructure security, or security operations.
- Strong hands-on experience with:
- Microsoft Defender XDR
- Microsoft Intune
- Entra ID / Azure AD (hybrid identity)
- Active Directory
- SIEM and log ingestion / syslog integration
- Enterprise networking fundamentals
- Experience engineering and operating security controls in a hybrid environment (on-premises and cloud).
- Experience supporting regulated environments (defense, aerospace, manufacturing, government, or similar).
- Experience working within the Defense Industrial Base (DIB) or Maritime Industrial Base (MIB).
- Experience supporting ITAR-regulated or export-controlled environments.
- Experience operating security services in Microsoft Azure Government (GCC High).
- Experience developing advanced KQL-based threat-hunting and detection use cases.
- Prior experience supporting third-party audits and security assessments.
Required Skills and Abilities:
- Working knowledge of:
- NIST SP 800-171
- CMMC Level 2 requirements
- DFARS cybersecurity obligations
- Demonstrated ability to translate compliance and contractual requirements into practical, enforceable technical controls.
- Strong troubleshooting, investigative, and problem-solving skills.
- Familiarity with:
- Zero Trust and network segmentation architectures
- vulnerability management platforms
- EDR/XDR tooling beyond Microsoft
- Microsoft SC-200, SC-300, or equivalent Microsoft security certifications preferred
- Security+, CISSP, GCIH, GCED, GDSA, or similar industry certifications preferred
- Strong engineering mindset with an emphasis on reliability, scalability, and operational effectiveness
- Ability to work effectively in a multi-site, multi-stakeholder environment
- Clear and professional written and verbal communication skills
- Ability to collaborate with IT, compliance, legal, and operational teams
- Comfortable operating in highly regulated and audit-driven environments
Special Requirements
- Must be a U.S. Person as defined by U.S. export control regulations (ITAR).
- Must be able to work in environments handling Controlled Unclassified Information (CUI) and export-controlled technical data.
Competencies:
- Upholds Safety and Quality Standards
- Embodies Team Spirit
- Relentless Customer Focus
- Conveys Integrity, Trust, and Professionalism
- Executes with Excellence and Velocity
Travel Requirements:
- Occasional travel between all Keel facilities, as business needs require.
Physical Requirements:
- May be required to stand, walk, sit, reach with hands and arms, climb or balance, stoop or kneel regularly
- Must be able to lift up to 25 pounds at times (e.g., files, office supplies, etc).
Work Environment:
- On-site role in a manufacturing facility, regular work environment will be in an office setting.
- When on manufacturing floor, possible exposure to moving mechanical parts and airborne particles. Eye protection is required. Fumes, machine vibration, noisy conditions, high temperatures, and occasional potential to a restricted space work area possible.
- All Keel locations are tobacco free where appropriate.
Equal Employment Opportunity Statement
Keel provides equal employment opportunities (EEO) to all team members and applicants for employment without regard to race, (including traits historically associated with race such as hair texture and protective hairstyles), color, religion, sex, sexual orientation, gender identity or expression, national origin, age, genetic information, service in the uniformed services, status as a protected veteran or spouse thereof, height, weight, marital or familial status, disability, or any other characteristic protected by law. In addition to federal law requirements, Keel complies with applicable state and local laws governing nondiscrimination in employment in every location in which Keel has facilities.
To provide equal employment and advancement opportunities to all individuals, employment decisions at Keel will be based on merit, qualifications, and abilities. This policy applies to all terms and conditions of employment, including recruitment, recruitment advertising, hiring, job assignment, promotion, demotion, discipline, termination, layoff, recall, transfer, leaves of absence, compensation, or rates of pay, benefits, and selection for training. Provisions in applicable laws providing for bona fide occupational qualifications, business necessity or age limitations will be adhered to by Keel where appropriate.
Management retains the right to add to, or change, the responsibilities and/or duties of this position at any time including the elimination of this position. The team member understands that his/her job description is for operational purposes and is not intended to be an employment contract. The employment relationship remains "at-will."
Sprachkenntnisse
- English
Hinweis für Nutzer
Dieses Stellenangebot stammt von einer Partnerplattform von TieTalent. Klicken Sie auf „Jetzt Bewerben“, um Ihre Bewerbung direkt auf deren Website einzureichen.