Senior Security Operations Engineer (Azure Security)

Job Summary
We are seeking a highly motivated and experienced Senior Security Operations Engineer specializing in Azure Security to join our dynamic cybersecurity team. In this pivotal role, you will lead the design, implementation, and management of advanced security solutions in cloud environments, with a primary focus on Microsoft Azure. Your expertise will be essential to safeguard our IT infrastructure, ensure compliance with industry standards such as NIST and ISO 27000, and enhance our threat detection and incident response capabilities. This position offers an exciting opportunity to influence our security posture through innovative strategies, proactive vulnerability management, and robust system hardening practices.

Responsibilities

• Develop and execute comprehensive security strategies aligned with cloud architecture best practices, emphasizing Azure security tools and services.
• Monitor, analyze, and respond to security alerts using SIEM platforms like Splunk or New Relic, ensuring rapid incident detection and recovery.
• Conduct vulnerability assessments and research on emerging threats affecting cloud infrastructure, network protocols, and operating systems such as Windows, Linux (Debian, CentOS), and macOS.
• Implement and manage network security measures, including firewalls (Cisco ASA), IDS/IPS systems, VPNs (IPsec), load balancers, and network protocols like TCP/IP, OSPF, and BGP, to secure LAN/WAN environments.
• Maintain system security plans adhering to standards such as FedRAMP, FISMA, DIACAP, and RMF; ensure compliance with PCI DSS for payment systems.
• Collaborate with cross-functional teams to design secure cloud infrastructure using tools like Terraform, Ansible, VMware vSphere, and cloud platforms such as AWS and Google Cloud Platform.
• Lead incident response efforts by analyzing logs, performing threat intelligence analysis, executing incident management protocols, and documenting system security plans.
• Manage identity & access management solutions, including Active Directory, LDAP, SSO integrations, RBAC policies, and GPO configurations to enforce strict access controls.
• Conduct threat detection & response activities utilizing attack frameworks and vulnerability research techniques; implement system hardening across operating systems, including openSUSE or Ubuntu.

Qualifications

• Proven experience in cybersecurity roles with a focus on cloud security architecture within Azure environments.
• Strong understanding of computer networking concepts such as LAN/WAN design, routing protocols (EIGRP, OSPF), network installation/configuration, and network support functions.
• Hands-on knowledge of network security devices, including Cisco ISE for identity management, Cisco routers, Juniper devices, firewalls like Cisco ASA, VPN technologies, SDLC processes, high availability configurations, disaster recovery planning, load balancing solutions, SAN storage management, and open-source tools like Bash scripting or PowerShell for automation.
• Familiarity with industry standards such as NIST standards (including SP 800 series), ISO 27000 series (ISO 27001/27002), and FIPS compliance requirements for encryption modules.
• Experience with vulnerability assessment tools (e.g., Nessus), threat detection & response platforms (Splunk/SolarWinds), log analysis techniques, and incident management workflows.
• Knowledge of system administration across multiple operating systems, including Windows Server environments and Linux distributions like Debian or CentOS.
• Ability to implement encryption protocols (SSL/TLS), PKI infrastructures for digital certificates; utilize open-source security tools such as SELinux or Fiddler for system hardening or traffic analysis.
• Strong scripting skills in Python or Shell Scripting to automate tasks within DevOps pipelines, utilizing CI/CD practices with tools like Terraform or Ansible.
• Excellent problem-solving skills combined with a proactive approach to vulnerability research and threat intelligence gathering. Join us if you’re passionate about defending complex IT ecosystems through innovative cybersecurity solutions! This role offers an engaging environment where your expertise directly impacts organizational resilience while working with cutting-edge technologies in a collaborative setting committed to continuous improvement.
• Demonstrated expertise in applying information systems security principles in alignment with federal frameworks, including guidance from the National Institute of Standards and Technology (NIST), compliance with the Federal Information Security Modernization Act (FISMA), and directives from the Cybersecurity and Infrastructure Security Agency (CISA), to conduct continuous security assessments and recommend risk-based corrective actions.
• Proven ability to perform systems engineering, integration, and maintenance activities in accordance with established operational and cybersecurity standards, ensuring system reliability, performance, and compliance.
• Advanced knowledge of networking technologies, including LAN, Microsoft Azure cloud environments, and wireless systems, with hands-on experience implementing and troubleshooting secure architectures across hybrid infrastructures.
• Experience evaluating and enhancing enterprise security operations capabilities, aligning current strategies with industry best practices to improve organizational cybersecurity maturity.
• Extensive hands-on expertise in configuring, integrating, and operating enterprise cybersecurity tools, including SIEM platforms, Syslog, Network Detection and Response (NDR), Endpoint Detection and Response (EDR), firewalls, Microsoft 365 cloud security, Microsoft Defender for Cloud, and Continuous Diagnostics & Mitigation (CDM) solutions.
• Demonstrated ability to collaborate with executive leadership, including CISO and Privacy Officer, to develop strategic cybersecurity and privacy initiatives, including measurable goals and implementation plans to protect sensitive information assets.
• Strong cross-functional collaboration skills, working with application, infrastructure, and IT service teams to ensure security requirements are integrated into system design, deployment, and operations.
• Proven capability to maintain continuous threat awareness by monitoring enterprise systems, analyzing aggregated logs, and conducting proactive threat hunting to identify and mitigate potential security risks.
• Experience designing and implementing Security Orchestration, Automation, and Response (SOAR) capabilities to improve operational efficiency and accelerate incident response.
• Deep understanding of Continuous Monitoring practices to evaluate the effectiveness of security controls and ensure the confidentiality, integrity, and availability of organizational systems.
• Ability to develop and implement detection and response policies that enhance automation, improve consistency, and reduce response times across the security operations lifecycle.
• Hands-on experience executing Incident Response activities in accordance with established plans, including investigation, containment, eradication, and recovery.
• Proven ability to develop and refine incident handling procedures and playbooks to standardize and improve response effectiveness.
• Expertise in ensuring proper data capture, retention, and log management to support security monitoring, forensic analysis, and incident investigations.
• Strong analytical capability in collecting and interpreting security operations metrics and security posture data, producing actionable threat intelligence reports to support risk-informed decision-making.
• Demonstrated experience developing and maintaining comprehensive security operations documentation, including standard operating procedures (SOPs), ensuring repeatability, compliance, and knowledge transfer.

Pay: $104,515.38 - $125,867.98 per year

Work Location: In person