Security Engineer

Title: Cloud Security Engineer (Azure-Focused)

Location: Fulton, MD (Hybrid – onsite Tuesdays & Thursdays)
Duration: Initial 12-month contract with potential extensions
Compensation: $55.00 – $70.00/hour (W2)
Work Requirements: US Citizen or Green Card Holder
Local Requirement: Must be local to Fulton, MD

Role Overview

We are seeking a Cloud Security Engineer with a strong Azure security background, where approximately 80% of the role focuses on Microsoft Azure security and 20% supports AWS security initiatives. This role is responsible for ensuring secure cloud configurations, validating compliance against government and industry frameworks, and partnering with cross-functional teams to identify and remediate security risks across multi-cloud environments.

The ideal candidate brings deep hands-on expertise in Azure security services and governance, with working knowledge of AWS security controls, and excels at translating security findings into actionable remediation.

Key Responsibilities

• Serve as the primary security engineer for Microsoft Azure environments (≈80%), ensuring secure configurations and governance

• Support AWS security operations (≈20%), including configuration validation and compliance monitoring

• Validate compliance with STIGs, CIS benchmarks, and NIST 800-53 across cloud environments

• Monitor cloud resources for misconfigurations, vulnerabilities, and security drift

• Identify security gaps, create remediation tickets, and track findings to closure

• Lead discussions with stakeholders to review security findings, risks, and recommended actions

• Collaborate with DevOps, IT, and Compliance teams to embed security into cloud delivery pipelines

• Automate security checks and reporting using cloud-native tools and scripting

• Maintain security documentation, standards, and technical configuration artifacts

Technical Qualifications

Azure (Primary – 80%)

• Hands-on experience securing enterprise Microsoft Azure environments

• Azure Active Directory (Entra ID), RBAC, PIM, Conditional Access

• Microsoft Defender for Cloud

• Azure Policy, Blueprints, and governance controls

• Azure Key Vault, private endpoints, and secrets management

• Azure Monitor, Log Analytics, and security alerting

• Network security: VNETs, NSGs, Azure Firewall, Application Gateway / WAF

AWS (Secondary – 20%)

• Working knowledge of AWS security services such as IAM, KMS, CloudTrail, GuardDuty, Security Hub, and WAF

• Understanding of secure AWS architecture, VPC design, and network security fundamentals

Compliance & Automation

• Strong experience with STIGs, CIS benchmarks, and NIST 800-53

• Proficiency with automation and IaC tools (PowerShell, Python, ARM, Bicep, Terraform, CloudFormation)

• Experience integrating security findings into ticketing and remediation workflows

Security Tooling

• Experience with Wiz, Tenable, or similar CSPM tools

• Hands-on experience with SIEM platforms (e.g., Microsoft Sentinel) including running queries and building alerts preferred

Certifications (Strongly Preferred)

• Microsoft Certified: Azure Security Engineer Associate (AZ-500)

• Microsoft Certified: Azure Solutions Architect Expert

• AWS Certified Security – Specialty (nice to have)

• CISSP or equivalent security certification

Leadership & Communication

• Ability to take initiative in an agile, hybrid cloud environment

• Strong customer service mindset and stakeholder engagement skills

• Excellent written and verbal communication

• Collaborative, team-first approach

About INSPYR Solutions

Technology is our focus and quality is our commitment. INSPYR Solutions delivers flexible technology and talent solutions aligned to our clients’ business objectives and culture. We provide professional services, project delivery, and staffing solutions with a people-first philosophy.

INSPYR Solutions is an Equal Opportunity Employer and complies with all applicable federal, state, and local nondiscrimination laws.