Senior Security Engineer

Edgewater Federal Solutions
Washington, United States of America
3 days ago

Role details

Contract type
Permanent contract
Employment type
Full-time (> 32 hours)
Working hours
Regular working hours
Languages
English
Experience level
Senior
Compensation
$ 160K

Job location

Remote
Washington, United States of America

Tech stack

.NET
Microsoft Windows
Agile Methodologies
Azure
Cloud Computing
Computer Security
Databases
System Configuration
Data as a Services
Linux
DNS
Identity and Access Management
Subnetting
Python
Network Security
Log Analysis
Routing
Powershell
Scrum
Azure
Cloud Services
Zero Trust Network Access
Secure Coding
Webinspect
Scripting (Bash/Python/Go/Ruby)
Load Balancing
Cloud Platform System
Cloud Monitoring
Office365
Software Security
Firewalls (Computer Science)
Information Technology
Microsoft Sentinel
Azure
Firepower
Splunk
Devsecops

Job description

Edgewater is currently seeking a hands-on Senior Security Architect/Azure Cloud Security Engineer to support secure Azure development, application modernization, and cloud migration of our federal customer in the Washington DC area. This is a hybrid position with a requirement to work onsite four to six days a month, subject to change.The Azure Security Engineer should be hands-on in all aspects of Azure security including implementing security controls and threat protection, managing identity and access management, defining organizational structure and policies, using Azure technologies to provide data protection, configuring network security defenses, collecting and analyzing Azure logs, managing incident responses, and an understanding of regulatory concerns., * Maintain and improve the security posture of the Azure platform by identifying, and remediating vulnerabilities by using a variety of security tools.

  • Provide cyber security expertise in the analysis, assessment, development, and evaluation of security solutions and architectures to secure applications, operating systems, databases, and networks.
  • Implement and configure security controls and policies across the IT infrastructure to manage access to data and monitor threats to ensure that data, apps, containers, and networks are protected.
  • Maintain native tools like Microsoft Defender for Identity, Microsoft Defender for Cloud, Microsoft Defender for IoT, Defender for O365 and Microsoft Sentinel.
  • Facilitate the secure migrations of on-prem applications to the Azure cloud.
  • Implementing threat protection and responding to security incident escalations.
  • Automate security controls, data, and processes to provide better metrics and operational support.
  • Manage operations within a cloud solution environment such as operations tasks, using cloud native tools, like Log Analytics, Azure Monitor and Microsoft Sentinel.
  • Support cloud engineers to implement security best-practices and enable secure development and release processes.
  • Ensure compliance
  • Deliver/update task documentation, briefings, SOPs and post on CsIA wiki.
  • Facilitate collaboration between security administrators and development engineers to enhance communication and build effective division-wide processes.
  • Identify areas of weakness and work with stakeholders to mitigate risks.

Requirements

  • Bachelor's degree in cyber security, information technology or related field or equivalent experience working in field.
  • 8 years of experience supporting IT with 3 years in Azure administration and security.
  • 3 years of experience working with Microsoft native tools like Microsoft Defender for Identity, Microsoft Defender for Cloud, Microsoft Defender for IoT, Defender for O365 and Microsoft Sentinel.
  • Good understanding of security concepts (Zero Trust Network, CASB, Cloud computing.
  • Technical skills with Linux and Windows operating systems and scripting languages like PowerShell, Python, .Net.
  • Soft skills set to successfully understand, challenge, and translate the business needs and communicate to the relevant parties with a structured and methodical approach to problem solving.
  • Good communicator with passion for the domains of Cyber Security.
  • Agile, Scrum, DevSecOps knowledge.
  • Must have CISSP or equivalent (Security+, CAP, CEH) or more advanced certifications to be considered and approved by the government.
  • Microsoft Azure security certifications (AZ-500, MS-500, or SC-200) strongly preferred.
  • Preferred:
  • Strong understanding of Security tools such as Splunk, Tenable, Firepower, WebInspect,
  • Strong understanding of networking, e.g., IP subnetting, Network Security Groups, routing, Azure Firewall, ExpressRoute, load balancer, DNS.
  • Strong understanding of configuring security policies and securing applications and data.
  • Strong familiarity with cloud capabilities and products and services for Azure, e.g., Azure Active Directory, Privileged Identity Management, VMs, Container Registry, Azure Kubernetes Services (AKS), Data Services, and KeyVault.
  • Strong understanding of Security processes in the Government sector.
  • Good interpersonal skills also required to work closely together with products owners and cloud architects to help build a secure and robust enterprise-grade cloud platform.
  • Certifications in Azure Security Engineer Associate (AZ-500) and other industry certifications are preferred including Security+, CEH, OSCP, CCSK, GIAC.

Benefits & conditions

Salary: $140,000 - $160,000

About the company

Edgewater Federal Solutions is a privately held government contracting firm located in Frederick, MD. The company was founded in 2002 with the vision of being highly recognized and admired for supporting customer missions through employee empowerment, exceptional services and timely delivery. Edgewater Federal Solutions is ISO 9001, 20000-1, 270001 certified, appraised at CMMI Level 3 Maturity for Development and Services, and has been named in the Top Workplaces in the Greater Washington Area Small Companies for 2018 through 2025.

Apply for this position