Senior Security Operations

Job Title: Senior Security Operations (SecOps) Engineer

Location: Miami, FL (Hybrid)

Contract : (6 12 months)

Key Responsibilities:

1. Security Monitoring & Incident Response

• Monitor access and security events across infrastructure and applications.
• Lead incident response and forensic investigations for cybersecurity events.
• Manage and update role-based access matrices and privileged access controls.
• Coordinate with cybersecurity vendors and internal teams to remediate vulnerabilities.

2. Risk Assessment & Compliance

• Conduct risk profiling aligned with FFIEC and GLBA standards.
• Perform evidence gathering and validation for cybersecurity maturity assessments.
• Ensure compliance with internal policies and external regulatory frameworks.

3. Infrastructure & Endpoint Security

• Oversee perimeter and datacenter firewall configurations (e.g., Palo Alto).
• Manage endpoint protection, patch management, and vulnerability remediation.
• Implement defense-in-depth strategies including network segmentation and zero-trust architecture.

4. Change Management & Governance

• Participate in change approval processes for infrastructure and application updates.
• Collaborate with governance bodies to assess risk levels and authorize go-live decisions.
• Maintain audit trails and documentation for all security-related changes.

5. Strategic Liaison & Vendor Management

• Serve as the primary point of contact between internal teams and external vendors.
• Support contract hiring models and team expansion efforts across regions.
• Facilitate cross-functional collaboration with cybersecurity analysts, IT project managers, and infrastructure administrators.

Required Skills & Experience:

• Proficiency in SIEM tools, vulnerability scanners, and endpoint protection platforms.
• Experience with FFIEC frameworks, NIST standards, and GLBA compliance.
• Familiarity with cloud security tools (Azure Security Center, ATP, Conditional Access).
• Strong understanding of network protocols, segmentation, and firewall rule sets.
• Ability to conduct penetration testing and risk mitigation planning.

Technical Environment:

• Firewall & NAC: Palo Alto (Perimeter & Datacenter), Counteract
• Endpoint Management: SCCM, Microsoft Intune, Crowdstrike, Qualys
• IAM & MFA: Azure Conditional Access, Microsoft Defender, Active Directory
• Monitoring & Analytics: AlienVault IDS, Palo Alto IPS, Azure Security Center
• Cloud Security: Azure ATP, CASB, Privileged Identity Management
• Threat Modeling & DLP: DMARCIAN, Front Door Azure, SAST/DAST

Preferred Certifications:

• CISSP, CISM, CEH, or equivalent (preferred but not required)