Security Engineer II – Cloud Security

Job Description

The Security Engineer II will be responsible for monitoring security alerts, investigating incidents, and escalating them as needed across security tools. They will support SIEM and detection (Sentinel, Defender XDR), tuning alerts and improving detections. This role will also assist in the vulnerability management program by working with IT/Engineering and other app developers, providing security expertise, tracking remediation, and ensuring SLA compliance. Additionally, they will help manage identity security including conditional access, PIM, MFA, RBAC, risky sign-ins, and access reviews. The engineer will maintain security documentation and collect evidence, develop and automate security workflows, playbooks, and tools to improve the efficiency and effectiveness of security operations. Develop, enforce, and update security policies, procedures, and guidelines for access control, threat detection, and compliance with standards such as ISO 27001, SOC 2, PCI, NIST CSF, and Sarbanes-Oxley. They will communicate risks and vulnerabilities to stakeholders, document remediation plans, and proactively share information with management. Building and executing regular threat hunting campaigns focused on current, emerging, and obscure tactics, techniques, and procedures. Proactively search for, identify, and analyze new and existing techniques to detect advanced and targeted threats, utilize advanced threat hunting techniques to detect anomalies and suspicious activities. Collaborate with security team members, developers, operations, and stakeholders to share knowledge and best practices. Identify process improvements and provide actionable guidance and perform other duties as assigned.

Qualifications

1. Requires 4+ years of hands-on work experience with security architecture and engineering in a cybersecurity operations program. 2. Requires 2+ years of experience in incident response, detection, threat intelligence, or access control security engineering roles. 3. Requires excellent knowledge and experience with access control frameworks and tools (IAM, RBAC, ABAC, OAuth, SAML), cloud security, network security, endpoint security, and threat intelligence. 4. Must have in-depth knowledge of Azure services (especially Azure Active Directory, Azure AD Identity Protection, Azure RBAC), and experience securing cloud-based infrastructures (Azure, M365, Google Workspace, Salesforce). 5. Must have proficiency in scripting languages such as Python, PowerShell, Go, or Bash. 6. Strong knowledge of industry-standard frameworks (MITRE ATT&CK, ISO 27001, SOC 2, NIST CSF, PCI, SOX, GDPR). 7. Proven ability to manage multiple risk and compliance projects. 8. Strong written and verbal communication; effective collaborator with outstanding interpersonal skills. 9. Excellent analytical and problem-solving skills supporting business objectives. 10. Detail-oriented, organized, and able to balance precision with big-picture thinking. 11. Quick learner who proactively drives personal and professional growth. 12. Demonstrated initiative and ownership in problem-solving. 13. Strong design and solution implementation skills for Zero Trust Architecture. 14. Desire to solve response challenges with automation. 15. Security+, CISSP, CISA, CISM, CRISC, GCIA, GCIH, GREM, or similar certifications preferred; equivalent experience accepted.

Benefits

- Medical, Term & Accidental Insurance - All Purpose Leave (casual & sick time): 12 days - Earned Leave: 15 days - Public Holiday: 12 days - Generous Maternity & Paternity Leave - Quarterly Wellness Day - Work From Home Allowance