Senior Security Operations Engineer

About

We are seeking a highly skilled and mission-driven Senior Security Operations Engineer with deep expertise in Azure Security and enterprise cybersecurity operations. This role strengthens and executes a comprehensive security operations capability in a federal environment, protecting sensitive systems, data, and infrastructure. The ideal candidate operates with minimal supervision, brings strong technical depth, and applies federal cybersecurity frameworks to proactively defend, detect, and respond to threats.

Responsibilities

Security Assessment & Compliance

• Apply expertise in federal cybersecurity frameworks and standards, including National Institute of Standards and Technology (NIST), Federal Information Security Modernization Act (FISMA), and guidance from Cybersecurity and Infrastructure Security Agency (CISA).
• Conduct continuous security assessments of systems and networks; identify vulnerabilities and recommend corrective actions.

Systems Engineering & Security Operations

• Perform systems engineering, integration, and maintenance in accordance with established security and operational standards.
• Ensure effective configuration, optimization, and daily operation of cybersecurity tools supporting enterprise defense.

Cloud & Network Security (Azure Focus)

• Implement and troubleshoot security solutions across Microsoft Azure, LAN, and wireless environments.
• Secure cloud environments leveraging tools such as Microsoft Defender for Cloud and Microsoft 365 security controls.

Security Tooling & Platform Management

• Administer and optimize enterprise security technologies, including:
  • SIEM and Syslog integrations
  • Network Detection & Response (NDR)
  • Endpoint Detection & Response (EDR)
  • Firewalls and perimeter defenses
  • Continuous Diagnostics & Mitigation (CDM) tools

Threat Detection & Hunting

• Maintain real-time threat awareness across enterprise systems.
• Analyze aggregated security logs and conduct proactive threat hunting to identify anomalous or malicious behavior.

Incident Response & Automation

• Execute incident response activities in alignment with established response plans.
• Develop and refine incident handling procedures and playbooks.
• Design and implement Security Orchestration, Automation, and Response (SOAR) capabilities to enhance response speed and consistency.

Continuous Monitoring & Risk Management

• Apply continuous monitoring practices to evaluate control effectiveness and ensure system confidentiality, integrity, and availability.
• Develop detection and response policies that increase automation and operational efficiency.

Security Strategy & Collaboration

• Partner with executive leadership, including the CISO and Privacy Officer, to define measurable cybersecurity and privacy objectives.
• Collaborate with IT and application teams to ensure security is embedded across all systems and services.

Metrics, Reporting & Documentation

• Collect and analyze security operations metrics to assess organizational risk posture.
• Produce threat intelligence reports to support informed decision-making.
• Develop and maintain comprehensive documentation, including SOPs and operational procedures.

Qualifications

• Strong experience in Azure security architecture and operations
• Deep knowledge of federal cybersecurity standards (NIST, FISMA, CISA directives)
• Hands-on expertise with SIEM, EDR, NDR, and cloud security platforms
• Proven experience in incident response, threat hunting, and security automation
• Ability to operate independently in a high-responsibility environment
• Strong analytical, documentation, and cross-functional collaboration skills.
• Excellent verbal and written communication skills.