Director of Security and Compliance safeguarding digital assets and data with a focus on cybersecurity and compliance. Leading risk management, stakeholder engagement, and team leadership initiatives.
About the role
- Security and Compliance Engineer fortifying internal infrastructure at Shield Technology Partners. Focusing on Microsoft ecosystem and expanding SaaS portfolio with hybrid work model.
Responsibilities
- Design and implement security configurations within Azure and M365 to mitigate identity-based threats.
- Manage and audit Microsoft Entra ID, including Conditional Access policies, Privileged Identity Management (PIM), and Identity Protection.
- Conduct regular security assessments of the M365 tenant using Microsoft Secure Score and industry benchmarks.
- Lead the integration of all internal SaaS applications behind Single Sign-On (SSO) via Entra ID.
- Enforce Multi-Factor Authentication (MFA) and passwordless strategies across all corporate platforms.
- Monitor and secure API-based integrations between SaaS products to prevent data leakage and unauthorized access.
- Oversee the deployment and management of Mobile Device Management (MDM) via Microsoft Intune for a diverse fleet of devices.
- Administer and tune SentinelOne (or equivalent EDR) for proactive threat hunting, automated response, and endpoint hardening.
- Develop automated remediation scripts to address non-compliant devices in real-time.
- Act as the primary technical lead for internal security alerts, investigating potential breaches and coordinating response efforts.
- Configure and monitor logging and alerting systems to identify anomalous behavior across the cloud environment.
- Perform root cause analysis (RCA) following security incidents to improve defensive layers.
- Ensure the organization’s technical controls align with relevant compliance frameworks (e.g., SOC2, ISO 27001, or NIST).
- Maintain comprehensive documentation of security architectures, policies, and standard operating procedures (SOPs).
- Coordinate internal audits and vulnerability scans, ensuring timely remediation of discovered weaknesses.
Requirements
- Bachelor’s or Master’s degree in Computer Science, Information Systems, or a related technical field.
- 10+ years of progressive leadership experience in IT operations, systems architecture, or engineering management.
- Deep technical knowledge of Azure, Microsoft Entra ID, and the M365 Security & Compliance Centers.
- Hands-on experience with EDR/XDR platforms (SentinelOne preferred) and MDM solutions (Intune).
- Proficiency in SAML 2.0, OAuth 2.0, and OIDC for SaaS integrations.
Job title
Job type
Experience level
Salary
Degree requirement
Tech skills
Location requirements
Information Security Risk & Compliance Analyst supporting the maintenance of ISO 27001 standards. Contributing to risk assessments and compliance across AAB’s Business Protection Team.
Information Security Risk & Compliance Analyst at AAB managing compliance with ISO 27001, supporting enterprise risk assessments and enhancing information security systems.
Information Security Risk & Compliance Analyst at AAB focusing on ISO 27001 compliance and information security management. Collaborating across teams to ensure robust risk and compliance frameworks.
Security Principal at Optiv designing AI security solutions for clients, leveraging advanced security services and technologies. Driving pipeline generation and maintaining strong client relationships as a trusted advisor.
Cloud Security Architect supporting federal customer projects focused on architecture and security solutions. Conducting risk assessments and defining security requirements within a cloud environment.
Information Security Specialist responsible for enhancing cybersecurity posture through incident management and compliance. Collaborating with cross - functional teams to monitor threats and implement security measures.
Senior Lead Info Security Architect leading and collaborating on cybersecurity solutions at TIAA. Responsible for secure design and implementation of cloud security strategies and practices.
Part Time Security Officer providing protection for Collector's personnel and assets at trade shows across North America while reporting to Security Shows & Transportation Manager.
Enterprise Security Architect at PBCN GmbH designing and implementing security architectures. Collaborating with teams to ensure application security and conducting risk assessments.