Senior IT Security Engineer

Arraya Solutions, a leading Mid-Atlantic technology consulting firm, is looking for an IT Security Engineer to join our team!

We are a culture that embraces change, values family and are actively involved with the community. Our team consists of people with positive attitudes who are interested in growing their knowledge around technology and leaders that are heavily involved in day-to-day activities.

***PLEASE NOTE THIS POSITION WILL BE HYBRID 3 DAYS PER WEEK***

Job Overview

Our Client is seeking a senior technical engineer leading investigations, remediation, and improvements in detection and response.

• Lead the architectural vision and technical roadmap for enterprise security engineering efforts.
• Evaluate, select, and implement next-generation security technologies; define secure-by-design principles.
• Represent the Security Engineering team in enterprise architecture and governance forums.

Project Ownership & Escalation

• Own delivery of complex, multi-phase security projects across business units.
• Act as a senior escalation point for advanced threat detections, incidents, and forensic investigations.
• Coordinate with senior leadership during security events, including real-time mitigation and post-mortem analysis.

Engineering Execution

• Architect and manage large-scale SIEM/XDR solutions with advanced detection logic and automated response capabilities.
• Design scalable IAM and PAM architectures, including conditional access, JIT access, and federated SSO.
• Build, integrate, and tune CSPM, CWPP, and vulnerability management platforms with risk-based remediation workflows.
• Oversee enterprise DLP and eDiscovery systems with fine-grained data classification and monitoring.
• Lead infrastructure-as-code (IaC) security automation and embed security into DevOps and CI/CD pipelines.

Mentorship & Collaboration

• Mentor and coach junior and mid-level engineers, fostering a culture of continuous learning and excellence.
• Develop training materials, lab environments, and internal documentation to uplift security maturity across teams.
• Collaborate with IT, development, risk, and compliance teams to align security solutions with business objectives.

SKILLS AND COMPETENCIES:

Expertise with:

• SIEM/XDR: Microsoft Sentinel, Splunk, Defender XDR, Securworks, Sophos, CrowdStrike
• Vulnerability & Cloud Security: Tenable, Azure Security Center, AWS Security Hub
• IAM/PAM: Entra ID, Okta, Duo, CyberArk, BeyondTrust
• DLP & Data Governance: Microsoft Purview,
• Automation: PowerShell, Python, Terraform, GitHub Actions

Deep understanding of:

• Zero Trust architecture, secure networking, and endpoint hardening
• Enterprise hybrid infrastructure (Windows, Linux, Azure, AWS, M365)
• Security frameworks (MITRE ATT&CK, NIST 800-53, CIS Benchmarks)
• Strong interpersonal and leadership skills:
• Able to communicate complex technical topics to both technical and non-technical audiences.
• Skilled in influencing decision-making and managing stakeholders at all levels.