Microsoft Success Manager helping partners grow secure, scalable Microsoft practices across ANZ. Championing Microsoft security solutions and supporting partner success strategies in the region.
About the role
- Security Engineer at Cortavo responsible for designing and implementing security across internal platforms and customer environments. Collaborating with teams to manage incidents and security operations.
Responsibilities
- Serve as primary escalation point for all security-related tickets from Service Delivery
- Own critical compromising or breached incidents end-to-end
- Conduct comprehensive After Action Reviews (AARs) and Root Cause Analyses (RCAs) for all security-related incidents
- Perform security and risk assessments for customer-facing networks
- Manage security tool ecosystem including Inky email protection tuning
- Conduct proactive client security reviews
- Lead Security Gap Assessments for customers
- Review Security Scores in Microsoft 365 and actively apply recommendations
- Drive security hardening initiatives including Conditional Access refinements
- Collaborate with Engineering Manager on Cortavo’s core internal infrastructure
- Work with Product Engineer and leadership to evaluate security tech stack
- Identify security gaps in tooling and processes
- Develop tech solutions and products ready to roll out for new Cortavo services
- Serve as the Accountable party in the RACI model to oversee security vulnerability scanning tools
Requirements
- Minimum 5-7 years of IT systems engineering experience in an MSP or multi-tenant environment
- Minimum 4 years of IT Security engineering, Cyber Security Architecture, or compliance infrastructure roles
- Proven experience handling security incidents and compromises in production environments
- Technical credibility in a security engineering role with demonstrated impact within multiple domains: Zero Trust/Conditional Access approaches, Endpoint Security, Data Protection, Mobile, Cloud Security
- Strong organizational, research, analytical and problem-solving skills to evaluate situations, make recommendations, and take effective action
- Ability to articulate complex technical concepts or scenarios to both technical and non-technical audiences
- Able to define, communicate, and present executive-level proposals of the risk-based business impact approach to cybersecurity
- Expert knowledge of security principles, solutions, tools, methodologies, and techniques
- Strong ability to partner with operations stakeholders
- Experience establishing platform governance, compliance standards, and security controls
- Expert knowledge of Networking and Firewalls, particularly with Cisco Meraki
- Expert knowledge in Microsoft 365, Azure AD, Exchange Online, Teams, and Microsoft Endpoint Manager (Intune)
- Strong experience with MFA implementation and Conditional Access policies
- Experience with security tools including email protection (e.g., Inky), EDR solutions (e.g., Crowdstrike)
- Proficiency with observability tools (Prometheus, Grafana, OpenTelemetry, Datadog)
- Knowledge in Infrastructure as Code (IaC) tools, such as Terraform, Puppet, Ansible
- Proficiency in Microsoft Server environments
- Proven experience in secure software development principles in various languages (Java, Go, JavaScript, Python, etc.)
- Experience conducting After Action Reviews (AARs) and Root Cause Analyses (RCAs)
- Customer-facing experience with ability to lead security assessments and discussions with executive stakeholders.
Benefits
- Health insurance
- 401(k) retirement plan
- Unlimited Paid Time Off (PTO)
- Fitness & Wellness Program
- Cell Phone Plan
- Student Debt Relief
- Child Care Expense Relief
Job title
Job type
Experience level
Salary
Not specified
Degree requirement
Tech skills
Location requirements
Assistant AVP overseeing a 5 - member team for Access Management services in Pune and Mumbai, ensuring high standards of service delivery and compliance.
Own global security systems infrastructure for QVC, managing access control and networked security systems across multiple regions. Collaborate with IT to ensure security and technology initiatives meet organizational needs.
Sales Account Manager growing ADAPTIT Cybersecurity business in Greece and Cyprus. Responsible for client relations, sales pipeline, and collaboration with the cybersecurity team.
Information Security Engineer focusing on Identity & Access Management and SSO at Westfield. Design, operate, and mature enterprise authentication and federation capabilities.
Cyber Security Engineer responsible for operational support and development activities with Ping Identity. Collaborate with global teams to strengthen cybersecurity and improve customer satisfaction.
Application Security Specialist focusing on security in software development lifecycle at Insight Investment in Manchester, driving DevSecOps practices across teams.
Cyber Security Engineer supporting mission - critical DoD contract at CACI. Involves reviewing infrastructure changes and implementing security measures in a cloud - based environment.
Security Incident Management Analyst coordinating information security incidents. Overseeing cyber incident response and providing guidance to senior management within a leading industrial software company.
Customer Security Engineer managing end - to - end pentesting services at Aikido Security. Ensuring customer value and addressing vulnerabilities for a developer - first security product.