We are seeking a skilled and motivated Cloud Security Engineer-Azure sentinel/Defender to join our growing cybersecurity team supporting federal clients. The ideal candidate will have strong cloud security architecture knowledge, hands-on experience with major cloud platforms, and the ability to implement best practices across hybrid and multi-cloud environments.
Hybrid 2 days Onsite 3 days from Home
Location: 21st Street, NW, Washington, D.C.
Education: Minimum of a 4-year college degree in a related field US University
Experience: 7- 9 Years of experience
Key Responsibilities
Azure Security: Engineer solutions and lead to secure and optimize the Azure environment, with a focus on configuring and managing Microsoft Defender for Cloud, Azure Sentinel, and other key security tools. Identify, analyze, and respond to Indicators of Compromise (IoCs), file hashes, and other threat intelligence within Azure.
Azure Sentinel Operations: Oversee the setup, configuration, and ongoing management of Azure Sentinel, ensuring that it effectively collects, analyzes, and acts on security-related telemetry data. Develop and manage Scheduled Query Rules, Just-In-Time (JIT) access controls, Key Vault management, and REST API integrations within the Azure environment.
Incident Response and Threat Analysis: Spearhead incident response initiatives using Azure Sentinel, including real-time monitoring, investigation, and remediation of security incidents. Utilize KQL, Scheduled Query Rules, and Azure's security capabilities to detect and mitigate threats.
Security Monitoring and Compliance: Schedule and conduct periodic security reviews of the Azure environment to ensure sustained compliance and the swift mitigation of evolving threats. Work with Configuration Management to ensure all hardware and software components are documented and compliant with security standards.
Continuous Improvement: Drive the continuous enhancement of security controls within Azure by reviewing and updating policies, procedures, and configurations. Regularly update the Plan of Action and Milestones (POA&M) to address vulnerabilities or compliance gaps within the Azure environment.
Collaboration and Communication: Foster a culture of collaboration within the cybersecurity team, ensuring that Azure security expertise is effectively utilized and shared. Engage with cross-functional teams to align on security strategies and best practices within the Azure ecosystem.
Configuration and Change Management: Coordinate with Configuration Management teams to ensure that all updates and changes in the Azure environment adhere to stringent security protocols. Manage version control and release management to maintain the integrity of the cyber terrain.
Certifications:
Industry Certification: DISA ACAS 5.3 or greater [PREFERRED]
CSSP Incident Responder Certification: CEH, CFR, CCNA Cyber Ops, CCNA-Security, CHFI, CySA+, GCFA, GCIH, SCYBER, PenTest+ - [PREFERRED]
Never miss an opportunity! Create an alert based on the job you applied for.
