Job description

Because of our commitment to customer satisfaction, Bridgehead IT has grown into an industry leader. We are actively looking for a personable, passionate, and highly driven individual for the Security Engineer II position. Position Summary: The Security Engineer II is a mid-level role focused on implementing, maintaining, and improving security tools and technical controls across the organization. You'll work alongside senior engineers, analysts, and infrastructure teams to secure systems, automate workflows, and respond to security risks. This is a hands-on position where you'll help tune tools, manage configurations, and contribute to projects that improve our overall security posture. This role is ideal for someone who has solid experience in endpoint, cloud, and identity security and is looking to grow into a more strategic engineering position. You should be comfortable taking direction but also be able to own and complete tasks independently. Key Responsibilities: • Configure and maintain security tools including SIEM, EDR, vulnerability management, and cloud security platforms • Assist with Microsoft 365 and Azure security configurations including Defender for Endpoint, Defender for Identity, Conditional Access, and DLP policies • Work out of a ticketing system to track tasks, respond to security requests, and document actions taken. • Tune and optimize alerts in security tools to reduce false positives and improve threat detection • Support system hardening, patching enforcement, and policy compliance across endpoints and servers • Work with infrastructure teams to secure network traffic, identity access, and cloud environments • Automate routine tasks using scripting and support tool integrations where possible • Participate in vulnerability scanning, report analysis, and remediation coordination • Help respond to security incidents by reviewing logs, investigating alerts, and documenting outcomes • Maintain documentation including SOPs, implementation guides, and change records • Assist with compliance-related technical requirements and evidence gathering during audits • Participate in after-hours response and on-call rotations as needed • Collaborate with Security Analysts to support threat response and improve detection capabilities Skills and Qualifications: • 3 to 5 years of experience in security engineering, cloud security, or systems engineering • Hands-on experience with Microsoft 365 and Azure security tools including Defender XDR, Conditional Access, and Secure Score • Experience working with SIEM platforms such as Microsoft Sentinel or Splunk and EDR platforms like Defender for Endpoint • Familiarity with cloud security best practices, identity management, and secure configuration of SaaS environments • Strong understanding of vulnerability management processes and remediation planning • Experience with scripting languages such as PowerShell or Python • Familiarity with frameworks like NIST, CIS Controls, or ISO 27001 • Comfortable working out of a ticketing system and documenting technical work clearly • Strong troubleshooting, communication, and time management skills • Certifications such as SC-200, SC-300, AZ-500, Security+, or equivalent are preferred Employment Qualifications: • Must be legally authorized to work in the U.S. without sponsorship. Bridgehead IT is proud to be an equal opportunity workplace and is an affirmative action employer.

Requirements