The Cloud Security Engineer II assists in the design and implementation of key layers of security infrastructure as related to industry best practices to protect the cloud presence using a multi-layered security philosophy.
Provide technical management of cloud security technologies across the enterprise and cloud presence. This requires business partnering and communications, planning, metrics, reporting and hands-on execution. The position is a technical role responsible for the design and implementation of the cloud security systems.
Work closely with the Information Security Team to promote a strong sense of teamwork and an enterprise-wide proactive risk mitigation approach.
Strong understanding of security design related to Microsoft Azure and Office 365.
Solid understanding of network protocols, ports, and services.
Strong analytical and problem-solving skills.
High level of ethical integrity, with the ability to maintain confidential and sensitive information appropriately.
Experience with Office 365 Advanced Threat Protection and E5 security tool set.
Specific hands on experience working with Microsoft Azure and O365 cloud services such as Intune, MCAS, Teams, Exchange Online Protection, Defender ATP, Identity Management, Conditional Access, Federation, and Azure MFA.
Good working knowledge of core Azure IAM technologies including ADFS, Azure AD, Conditional Access, MFA, RBAC models and Azure Policy & Blueprints for major Azure Services.
Experience in a mid-size to large infrastructure consisting of a significant number of servers and users.
Ability to utilize best practices for Cloud Services hardening standards.
Ability to clearly and effectively communicate concerns, issues and research to other teams.
Strong written and verbal communication skills.
Experience in developing, documenting and maintaining security procedures.
Drive Office 365 and Azure to ensure security standards and best practices are applied and followed.
Review current environment, including migrations and identify recommendations and remediations as needed.
Responsible for security operations and compliance for all email and content management systems within Office 365.
Drive solutions, upgrades and dashboards related to O365 and Azure security vulnerabilities.
Drive adoption and management of O365 Security and Compliance center to better manage records according to established schedules and data loss protection policies.
Acts as an information security subject matter resource on projects and coordinates with other departments throughout to ensure security is considered throughout the enterprise.
Work with project managers and members of various project teams to ensure security requirements are designed into projects.
Lead small and midsize projects from design through the implementation phase.
Engage business partners to understand requirements and ensure compliance with Information Security Standards.
Collaborate with Information Security Management and Security Engineers on the architecture, design and implementation of new security infrastructure, standards and solutions to protect Cloud assets.
Assist the Security Engineers in the design and implementation of key layers of information security as well as supporting, updating and monitoring the security infrastructure.
Review and approve configuration changes, software patches and signature updates related to information security systems throughout the enterprise.
Provide back-up and support to the Information Security Team.
Follow strict change control processes.
Assist Security Engineers in monitoring and reporting on key metrics for enterprise security reliability, change issues, and enterprise security posture.
Maintains accurate documentation of Information Security systems and devices, continually accounting for rule changes, policy updates, patches, etc.
Assist Information Security Team on implementing the SANS 20 Critical Controls.
Assist the Security Analysts and IT teams with vulnerability remediation and validation.
Ability to function effectively within a team as well as a willingness to guide and mentor others is essential.
Act as an effective back-up for Security Engineer responsibilities.
Participate in on-call rotation.
Bachelor's Degree in Information Technology, Cybersecurity, Computer Science, or related degree preferred. Education requirements may be substituted as follows: Two (2) years of work-related experience for each one (1) year of post high school education.
A professional certification in Microsoft Azure or Office 365, such as, Azure Security Engineer Associate, Security Administrator Associate is required. Obtain necessary continuing professional education hours to retain professional certification(s) and continuously build individual knowledge.
We're partners in transformation. We help clients activate ideas and solutions to take advantage of a new world of opportunity. We are a team of 80,000 strong, working with over 6,000 clients, including 80% of the Fortune 500, across North America, Europe and Asia. As an industry leader in Full-Stack Technology Services, Talent Services, and real-world application, we work with progressive leaders to drive change. That's the power of true partnership. TEKsystems is an Allegis Group company.
The company is an equal opportunity employer and will consider all applications without regards to race, sex, age, color, religion, national origin, veteran status, disability, sexual orientation, gender identity, genetic information or any characteristic protected by law.
If you would like to request a reasonable accommodation, such as the modification or adjustment of the job application process or interviewing process due to a disability, please call 888 472-3411 or email accommodation@teksystems .com for other accommodation options.