Security Engineer

About the Position

Position Qualifications

Education

• Bachelor's degree in Computer Science, Information Technology, Cybersecurity, or equivalent experience.
• Preference for candidates with CISA, CRISC, or other relevant certifications.
• Other combinations of education and experience may be considered in substitution for the minimum qualifications.

• Minimum of 5 years of experience in information security, network security, or system administration.
• 2+ years of experience with enterprise IT architecture technical writing
• 2+ years of experience with cloud security and administration, specifically in Microsoft Azure, including Azure Security Center, Defender for Cloud, and Purview.
• Proven experience with security tools and technologies such as firewalls, SIEM, encryption, IPS/IDS, and data loss prevention systems.
• Strong experience with Cisco security solutions, including Cisco Firepower, Cisco ISE, Cisco SecureX, and Cisco Umbrella
• Strong technical knowledge of operating systems (Windows, Linux), databases, and networking.
• Experience with enterprise risk management, disaster recovery, and incident response.
• Experience with security audits (SOC, PCI, CMMC), compliance efforts, and security governance.
• Experience with configuring, managing, and troubleshooting firewalls, VPNs, and network segmentation, preferably using Cisco technologies.
• Ability to manage multiple priorities and adapt to shifting deadlines in a fast-paced environment.
• Strong problem-solving and analytical skills.
• Experience maintaining secure networks, systems and application architectures.
• Direct experience with maintaining security tools such as WAF, DAM, IPS/IDS, Anti-DDoS, Bot Detection, SIEM, Data Leakage Prevention, Proxy, Automation & Orchestration, etc.
• Technical knowledge of database and operating system security
• Experience with network security and monitoring tools.

• (This is not an all-inclusive list of all job duties that may be required; employees will be required to perform other related duties as assigned.)

• Design, implement, and maintain security measures for both on-premise and cloud environments to protect corporate systems, networks, and data.
• Provide third-tier technical support for security incidents, troubleshooting issues related to security infrastructure.
• Deploy and manage Cisco network security solutions such as Firepower, ISE, and Secure Endpoint (AMP).
• Conduct risk assessments and identify areas of vulnerability, providing solutions for risk mitigation.
• Implement and enforce security best practices for SaaS applications, ensuring secure authentication, authorization, and API access controls. Work with vendors to assess and enhance the security posture of third-party applications.
• Monitor security systems and networks, ensuring compliance with policies, procedures, and standards.
• Develop and maintain comprehensive documentation, including security policies, procedures, and protocols.
• Assist with the implementation and management of security tools such as firewalls, IPS/IDS, SIEM, encryption, and data leakage prevention.
• Collaborate with other teams to develop and implement disaster recovery, business continuity, and incident response plans.
• Provide technical guidance and training to other team members on security best practices.
• Participate in change management processes, ensuring that all changes are properly assessed for security risks.
• Analyze new security threats and recommend improvements to the security environment.
• Lead efforts to achieve and maintain compliance with relevant regulations and standards (e.g., NIST, PCI-DSS, GDPR, etc.).
• Troubleshooting security and network problems.
• Identifying and resolving network and system vulnerabilities
• Lead in promoting security awareness.
• Troubleshoot and resolve issues and participate in a 24 x 7 on-call rotation as required.
• Manage and administer Microsoft Azure resources, including virtual machines, networking, storage, and security configurations.
• Implement and maintain Azure Active Directory (Entra ID), including role-based access control (RBAC), identity protection, and conditional access policies.
• Deploy and manage Azure Virtual Networks (VNet), ExpressRoute, and VPN Gateway for secure hybrid connectivity.
• Manage Azure Virtual Desktop (AVD) policies, including user access, application delivery, and security baselines.
• Performs other duties as assigned.

Skills and Competencies

• Strong knowledge of risk management, network security architecture, and security testing methodologies.
• Familiarity with security governance frameworks (e.g., NIST, ISO, PCI-DSS).
• Ability to communicate technical security issues to non-technical stakeholders.
• Expertise in developing security strategies, policies, and procedures.
• Strong written and verbal communication skills, especially in technical documentation.
• Ability to analyze complex security environments and identify gaps.
• Strong project management skills and the ability to work effectively under pressure.

Other requirements

• Prior to hiring, BS&A requires that all candidates pass a background review.

Knowledge, Skills, and Abilities

Knowledge of

• Cybersecurity frameworks and regulations (NIST, PCI-DSS, CIS, GDPR, HIPAA, and other relevant standards).
• Network architecture, including firewalls, VPNs, proxies, and encryption technologies.
• Security technologies such as Intrusion Detection/Prevention Systems (IDS/IPS), Web Application Firewalls (WAF), Data Leakage Prevention (DLP), Anti-DDoS, and Bot Detection.
• Azure security solutions, including Microsoft Defender for Cloud, Purview, Conditional Access and Microsoft Entra ID security policies.
• Threat intelligence platforms, malware analysis, and common attack vectors.
• Security best practices in cloud and on-premise environments (e.g., Azure, AWS, VMware, HyperV).
• Incident response protocols and disaster recovery planning.
• Vulnerability management tools and methods for identifying, assessing, and mitigating risks.
• Continuous improvement methodologies for security systems and processes.

Skill in

• Managing and configuring security tools such as Security Information and Event Management (SIEM), firewalls, IDS/IPS, endpoint detection, and response (EDR) systems.
• Designing and manage Azure Managed Identities to enforce secure, least-privilege access for applications and services.
• Expertise in Cisco security tools, including Cisco Firepower, ISE, SecureX, and Umbrella.
• Azure administration, including virtual networks, storage accounts, and VM security configurations.
• Assessing and implementing risk mitigation strategies, including threat modeling, vulnerability assessments, and penetration testing.
• Incident detection, analysis, and remediation, including log analysis and forensic investigation.
• Creating, testing, and maintaining disaster recovery and business continuity plans.
• Collaborating with cross-functional teams, including IT, legal, and management, to ensure security policies and procedures are implemented effectively.
• Scripting and automation to enhance security operations (e.g., PowerShell, Python).
• Documenting security controls, creating Standard Operating Procedures (SOPs), and technical documentation for compliance audits.
• Deploying, configuring, and securing Azure Virtual Desktop (AVD) environments, ensuring compliance with security policies and performance best practices.

Ability to

• Prioritize and manage time efficiently while balancing multiple, competing security projects and responsibilities.
• Implement API security measures, including OAuth, OpenID Connect, and API gateway security policies to protect against unauthorized access and data exposure.
• Analyze complex security issues and apply critical problem-solving to resolve incidents quickly under pressure.
• Design, implement, and test security controls across all IT infrastructure and functional areas.
• Continuously improve security processes, ensuring they align with evolving threats and regulatory requirements.
• Build strong working relationships with colleagues across technical and non-technical disciplines.
• Clearly communicate security risks, vulnerabilities, and recommendations to both technical and non-technical stakeholders.
• Ability to troubleshoot and resolve Azure-related performance, security, and networking issues.