Cybersecurity Engineer II

Work Arrangement
This is a remote position.

Job Overview
The Cybersecurity Engineer II is a mid-level technical engineering role responsible for implementing and managing security controls across enterprise identity, Microsoft cloud services, and data protection platforms within regulated environments.

This role is focused on Entra ID, Microsoft Defender, and Microsoft Purview, supporting secure identity, cloud workload protection, and data governance across GCC High, Azure Government, and AWS GovCloud. Working closely with cybersecurity leadership and architecture, this position plays a key role in enforcing security controls, responding to threats, and ensuring alignment with CMMC Level 2, NIST 800-171, and DFARS requirements.

Essential Functions
•    Identity Security & Access Management
Implement and manage identity security controls within Entra ID, including Conditional Access, MFA, and access governance
Support enforcement of least privilege, role-based access control (RBAC), and privileged identity management (PIM)
Monitor identity-related risks, sign-in activity, and access anomalies, and respond to potential threats
Assist in onboarding and securing users, applications, and external access scenarios

•    Cloud Security (Microsoft & Gov Environments)
Configure and maintain security controls across Microsoft 365 GCC High, Azure Government, and AWS GovCloud
Implement and support Microsoft Defender capabilities across identity, endpoint, and cloud workloads
Assist in securing cloud applications, services, and integrations in alignment with enterprise standards
Support secure configuration and continuous monitoring of cloud environments

•    Data Protection & Information Security
Implement and maintain Microsoft Purview capabilities including sensitivity labels, DLP policies, and data classification
Support data protection strategies to prevent unauthorized access, sharing, or exfiltration of sensitive information
Assist in monitoring and responding to data-related alerts and policy violations
Ensure proper handling and protection of CUI/FCI within enterprise systems

•    Security Operations & Threat Response
Monitor, investigate, and respond to security alerts across identity, cloud, and data protection platforms
Support incident response activities including triage, containment, and remediation
Collaborate with MDR/SOC providers and internal teams during security events
Contribute to improving detection, response, and security monitoring capabilities

•    Vulnerability Management & Secure Configuration
Execute vulnerability remediation and system hardening across identity and cloud platforms
Implement secure configurations aligned with enterprise baselines and security architecture guidance
Support continuous improvement of security posture through configuration and control enhancements

•    Compliance & Audit Support
Implement and validate controls aligned to CMMC Level 2, NIST 800-171, and DFARS requirements
Maintain documentation, configurations, and technical evidence for audits and assessments
Support audit readiness activities and assist in responding to compliance inquiries

•    Collaboration & Continuous Improvement
Work closely with Security Architecture, IT, and Systems Administration teams to ensure secure implementation of systems
Contribute to process improvements, automation efforts, and security initiatives
Provide guidance and support to junior engineers and administrators as needed
Continuously expand knowledge of cloud, identity, and security technologies

•    Perform other duties as required.

Standard Essential Functions
Regular and reliable attendance on a full time basis [or in accordance with posted schedule].
Responsible for exhibiting professional behavior with both internal and external business associates that reflects positively on the company and is consistent with the company's policies and practices.
Embodies AEVEX’s cultural values and aligns daily actions with department goals and company culture.

Qualifications and Competencies
•    Bachelor's degree in Cybersecurity, Computer Science, Information Technology, or other related field.

Education / Certifications
•    Familiarity with regulated environments:

CMMC Level 2 / NIST 800-171 required
DFARS requirements and government cloud environments preferred

•    Strong troubleshooting and analytical skills
•    Ability to work independently while aligning with security architecture and leadership direction

Experience
•    3+ years of experience in cybersecurity, cloud security, or systems engineering roles
•    Experience with Security monitoring, alerting, and incident response
•    Experience with vulnerability remediation and secure configuration practices
•    Experience with Cross-platform environments including AWS GovCloud (preferred)
•    Hands-on experience with:

Microsoft Entra ID (Azure AD), Conditional Access, MFA, and identity governance
Microsoft Defender suite (Endpoint, Identity, Cloud Apps, Office 365)
Microsoft Purview (DLP, sensitivity labels, information protection)
Microsoft 365 GCC High and/or Azure Government environments

Physical Requirements
The physical demands described here are representative of those that must be met by an employee to successfully perform the essential functions of this job. Reasonable accommodations may be made to enable individuals with disabilities to perform the essential functions. While performing the duties the employee is:

For the purpose of this summary, occasionally is used to represent up to 1/3 of the time given to the workday, frequently represents 1/3 to 2/3 of the time and constantly represents 2/3 or more of the time.

Security Clearance
•    Ability to obtain/maintain a [Secret, Top Secret, etc.] DoD clearance, U.S. Citizenship required

•    Not Applicable

About AEVEX 

AEVEX, headquartered in Solana Beach, California, supports the U.S. national security mission and partner nation needs around the world by providing full-spectrum aviation, remote sensing, and analysis solutions. The company's capabilities include custom design and engineering; rapid prototyping; sensor integration and sustainment; aircraft modification and certification; flight test instrumentation and support; mission operations service; advanced intelligence data processing, exploitation, and dissemination solutions; and tailored hardware and software mission-system tools. AEVEX uses agile and customized approaches to rapidly define, develop, and deliver specialized solutions for airborne special mission needs for the U.S. Government, partner nations, and commercial businesses. AEVEX has major offices in California, Florida, North Carolina, Ohio, and Virginia.

AEVEX provides a full suite of comprehensive benefits, including a 401(k)-retirement plan, comprehensive Medical, Dental, Vision, Disability and Life insurance group coverage with a portion of the premiums paid by the company, professional development funds, and an Employee Assistance Plan (EAP) with counseling, legal help, child and elder care support, among other benefits for qualified employees.

Equal Employment Opportunity:

AEVEX is an Equal Opportunity employer. We are committed to providing equal employment opportunities to all employees and applicants without regard to race, religious creed, color, sex (including pregnancy, breast feeding and related medical conditions), gender, gender identity, gender expression, sexual orientation, national origin, ancestry, citizenship status, military and veteran status, marital status, age, protected medical condition, genetic information, physical disability, mental disability, or any other protected status in accordance with all applicable federal, state and local laws.