Security Engineer II – Cloud Security

📋 Description

• Oversee security alerts, investigate incidents, and escalate issues as necessary across various security tools.

• Provide support for SIEM and detection (Sentinel, Defender XDR), enhancing alert tuning and improving detection capabilities.

• Contribute to the vulnerability management program by collaborating with IT/Engineering and application developers, offering security expertise, tracking remediation efforts, and ensuring compliance with SLA.

• Assist in managing identity security, which includes conditional access, PIM, MFA, RBAC, risky sign-ins, and conducting access reviews.

• Maintain security documentation and gather necessary evidence.

• Create and automate security workflows, playbooks, and tools to enhance the efficiency and effectiveness of security operations.

• Formulate, enforce, and update security policies, procedures, and guidelines pertaining to access control, threat detection, and adherence to standards such as ISO 27001, SOC 2, PCI, NIST CSF, and Sarbanes-Oxley.

• Communicate risks and vulnerabilities to stakeholders, document remediation strategies, and proactively relay information to management.

• Design and conduct regular threat hunting campaigns targeting current, emerging, and obscure tactics, techniques, and procedures.

• Actively seek, identify, and evaluate new and existing techniques for detecting advanced and targeted threats.

• Employ advanced threat hunting techniques to identify anomalies and suspicious activities.

• Collaborate with security team members, developers, operations, and stakeholders to share insights and best practices.

• Identify opportunities for process improvements and provide actionable recommendations.

• Carry out additional duties as assigned.

⛳️ Requirements

• A minimum of 4 years of hands-on experience in security architecture and engineering within a cybersecurity operations program.

• At least 2 years of experience in incident response, detection, threat intelligence, or access control security engineering roles.

• Comprehensive knowledge and experience with access control frameworks and tools (IAM, RBAC, ABAC, OAuth, SAML), as well as cloud security, network security, endpoint security, and threat intelligence.

• Extensive understanding of Azure services (particularly Azure Active Directory, Azure AD Identity Protection, Azure RBAC), along with experience in securing cloud-based infrastructures (Azure, M365, Google Workspace, Salesforce).

• Proficient in scripting languages such as Python, PowerShell, Go, or Bash.

• Strong understanding of industry-standard frameworks (MITRE ATT&CK, ISO 27001, SOC 2, NIST CSF, PCI, SOX, GDPR).

• Demonstrated ability to manage multiple risk and compliance projects effectively.

• Excellent written and verbal communication skills; a collaborative individual with exceptional interpersonal skills.

• Outstanding analytical and problem-solving abilities that align with business objectives.

• Detail-oriented and organized, capable of balancing precision with a broader perspective.

• A fast learner who actively pursues personal and professional development.

• Proven initiative and ownership in addressing problems.

• Strong design and implementation skills for Zero Trust Architecture.

• A passion for addressing response challenges through automation.

• Preferred certifications include Security+, CISSP, CISA, CISM, CRISC, GCIA, GCIH, GREM, or similar; equivalent experience is also acceptable.

🏝️ Benefits

• Medical, Term & Accidental Insurance

• All Purpose Leave (casual & sick time): 12 days

• Earned Leave: 15 days

• Public Holiday: 12 days

• Generous Maternity & Paternity Leave

• Quarterly Wellness Day

• Work From Home Allowance