Microsoft Success Manager helping partners grow secure, scalable Microsoft practices across ANZ. Championing Microsoft security solutions and supporting partner success strategies in the region.
About the role
- Cyber Security Engineer providing technical security expertise in cloud and on-premises infrastructure. Collaborating with cross-functional teams to ensure systems meet cybersecurity standards in a hybrid environment.
Responsibilities
- Provide technical security expertise in our cloud and on-premises infrastructure
- Collaborate closely with ISSOs, ISSSMs, software engineers, software developers, system engineers and Government counterparts
- Perform review and analysis of cybersecurity event logs
- Conduct and review technical cybersecurity assessments
- Coordinate with security personnel and recommend mitigation strategies
- Identify points of vulnerability and non-compliance with established cybersecurity standards and regulations
- Collaborate with our DevOpsSec team to help with analyzing scan results and remediation of findings
- Manage and maintain a library of security audit tools, and corresponding processes for system security testing, internal audits, incident response, and diagnosis of security-related system issues
- Perform and maintain vulnerability scans using Assured Compliance Assessment Solution (ACAS) and create reports
- Track and report Information Assurance Vulnerability Management (IAVM) compliance using Assured Compliance Assessment Solution (ACAS)
- Maintain Authorization to Operate (ATO) records in XACTA system
- Manage and report Plan of Actions and Milestones (POA&M) compliance
- Review certification and accreditation (C&A) documentation, providing feedback on completeness and compliance of its content
- Perform system installation, configuration maintenance, account maintenance, signature maintenance, patch management, and troubleshooting of operational IA and CND systems
- Apply system security engineering expertise in the system security design process, engineering life cycle, information domain, cross domain solutions, commercial off-the-shelf and government off-the-shelf cryptography; identification, authentication, and authorization; system integration; risk management; intrusion detection; contingency planning; incident handling; configuration control; change management; auditing
Requirements
- BS degree and 8+ years of experience or additional years of experience in lieu of degree
- An active TS/SCI clearance with ability to obtain a Poly
- At least one DoD 8570.01-M IAT Level II or higher certification e.g., CCNA Security, CySA+, Security+ CE, SSCP, CISSP (or Associate)
- 1 year of experience developing and reviewing security concept of operations, systems security plans, security risk assessments, contingency plans, configuration management plans
- Experience configuring, running, and analyzing vulnerability scans
- Experience with XACTA, EMass, or similar tool
- Experience with NIST Special Publications e.g. NIST SP 800-27, 30, 37, 53, 60
- Experience with CNSS publication CNSSI 1253
- Experience with incident response plans, plan of actions and milestones, risk management plans, and vulnerability management plans
- Strong analytical, communication, problem solving, and interpersonal skills
- Experience establishing a System Security Engineering (SSE) management process to integrate security and privacy controls into complex hardware and software systems
Benefits
- 3 Medical Plan Options
- Dental and Vision
- FSA, DCFSA, HSA
- Life/AD&D Insurance
- Short-Term & Long-Term Disability
- Employee Assistance Program (EAP)
- Training and Educational Assistance
- Paid Time Off (PTO)
- 11 Federal holidays
- 401k plan with up to a 6% match (100% immediate vesting)
Job title
Job type
Experience level
Salary
Degree requirement
Tech skills
Location requirements
Assistant AVP overseeing a 5 - member team for Access Management services in Pune and Mumbai, ensuring high standards of service delivery and compliance.
Own global security systems infrastructure for QVC, managing access control and networked security systems across multiple regions. Collaborate with IT to ensure security and technology initiatives meet organizational needs.
Sales Account Manager growing ADAPTIT Cybersecurity business in Greece and Cyprus. Responsible for client relations, sales pipeline, and collaboration with the cybersecurity team.
Information Security Engineer focusing on Identity & Access Management and SSO at Westfield. Design, operate, and mature enterprise authentication and federation capabilities.
Cyber Security Engineer responsible for operational support and development activities with Ping Identity. Collaborate with global teams to strengthen cybersecurity and improve customer satisfaction.
Application Security Specialist focusing on security in software development lifecycle at Insight Investment in Manchester, driving DevSecOps practices across teams.
Cyber Security Engineer supporting mission - critical DoD contract at CACI. Involves reviewing infrastructure changes and implementing security measures in a cloud - based environment.
Security Incident Management Analyst coordinating information security incidents. Overseeing cyber incident response and providing guidance to senior management within a leading industrial software company.
Customer Security Engineer managing end - to - end pentesting services at Aikido Security. Ensuring customer value and addressing vulnerabilities for a developer - first security product.