Job description

This position requires an active Public Trust clearance or the ability to obtain a Public Trust clearance to be considered. As required by our governmental client, this position requires being a U.S. citizen. The Senior Security Engineer is a vital role within an organization's cybersecurity team, responsible for safeguarding sensitive information and ensuring the integrity, confidentiality, and availability of digital assets. With an extensive understanding of evolving cyber threats and risk mitigation strategies, the Senior Security Engineer collaborates across departments to develop, implement, and maintain robust security measures, protocols, and policies. They lead security assessments, conduct vulnerability assessments, and respond to security incidents, demonstrating their expertise in intrusion detection, network monitoring, and security incident management. Compensation & Benefits: Estimated Starting Salary Range for Security Engineer: $120,000- $127,000 Pay commensurate with experience. Full-time benefits include Medical, Dental, Vision, 401K, and other possible benefits as provided. Benefits are subject to change with or without notice. Security Engineer Responsibilities Include: • Implement and manage Microsoft Azure Cloud Security measures to ensure the confidentiality, integrity, and availability of resources and data. • Review, develop, and enforce Microsoft Azure Security Policies in alignment with industry best practices and compliance standards. • Conduct regular reviews and audits of Microsoft Azure Sentinel, identifying potential threats and vulnerabilities, and recommending appropriate actions. • Implement, review, and audit Microsoft Defender for Cloud configurations to enhance protection against cyber threats. • Utilize Microsoft Azure Monitor and Resource Manager to monitor the health, performance, and availability of Azure resources. • Administer Microsoft Defender Endpoint (MDE), including onboarding systems, reviewing alerts, and taking necessary actions based on identified threats. • Configure and review Microsoft Defender Firewall settings to ensure network security and compliance. • Define Splunk connectors and configure Splunk data dashboards. • Troubleshoot and resolve issues related to Microsoft Defender Endpoint (MDE) onboarding, ensuring smooth integration across systems. • Monitor the Microsoft Defender Endpoint (MDE) console for alerts, promptly responding to and mitigating potential security incidents. • Isolate non-compliant systems and initiate remediation processes to address security gaps and ensure compliance. • Manage Tenable (Nessus) reporting and administration, performing regular vulnerability assessments, and generating actionable reports. • Collaborate with cross-functional teams to implement security improvements and provide subject matter expertise on Azure cloud security. • Stay up-to-date with the latest security trends, vulnerabilities, and best practices in the Microsoft Azure ecosystem. • Participate in incident response and contribute to the development of incident handling procedures. • Provide training and guidance to internal teams regarding Azure security policies, practices, and tools. • Performs other job-related duties as assigned. Security Engineer Experience, Education, Skills, Abilities requested: • A bachelor's degree in the field of computer science or management information systems or a related field (or 5 years equivalent work experience), is required. • 5-7 Years working in an IT Security role responsible for information security, network administration, and systems administration. • Experience with vulnerability, patch management and configuration management. • Experience with Microsoft Azure administration/security. • Experience with Tenable administration • Experience with mobile device management • Familiarity with BigFix, BitLocker is preferred but not required. • Understanding of penetration testing and vulnerability assessments. • Understanding of enterprise networking concepts. • Experience working in a regulated industry. • Strong analytical and problem-solving skills. • Past applicable job experience may include, but is not limited to: Sr Cybersecurity Specialist, Sr Network Engineer, or Security Operations Analyst. • Must pass the pre-employment qualifications of Cherokee Federal. Company Information: Cherokee Nation Integrated Health (CNIH) is a part of Cherokee Federal – the division of tribally owned federal contracting companies owned by Cherokee Nation Businesses. As a trusted partner for more than 60 federal clients, Cherokee Federal LLCs are focused on building a brighter future, solving complex challenges, and serving the government’s mission with compassion and heart. To learn more about CNIH, visit cherokee-federal.com. Cherokee Federal is a military-friendly employer. Veterans and active military transitioning to civilian status are encouraged to apply. Similar searchable job titles: • Senior Cybersecurity Specialist • Senior IT Security Analyst • Senior Information Assurance Specialist • Senior Network Security Engineer • Senior Security Operations Analyst Keywords: • Information • Vulnerability assessment • Incident response • Risk assessment • Security Legal Disclaimer: All qualified applicants will receive consideration for employment without regard to protected veteran status, disability or any other status protected under applicable federal, state or local law. Many of our job openings require access to government buildings or military installations. Candidates must pass pre-employment qualifications of Cherokee Federal.

Requirements