Cloud Security Engineer

CyberSheath Services International LLC is a rapidly growing Security and IT Managed Services Provider primarily focused on providing Cybersecurity services to the Defense Industrial Base (DIB). We are excited to be expanding our staff due to our growth and are looking to add a Cloud Security Engineer to our Security Operations team! 

CyberSheath integrates compliance and threat mitigation efforts and eliminates redundant security practices that don’t improve and, in fact, may weaken an organization’s security posture. Our professionals tell clients where to stop spending, where to invest, and how to take what they are already doing and integrate it in a way that delivers improved security.  

Successful candidates for CyberSheath are self-motivated, think out of the box, work, and solve issues independently. Additionally, our most successful people are self-starters and willing to put on many hats in order to succeed. CyberSheath is fast-growing and seeks candidates who want to be part of our upward trajectory. 

Job Overview 

The Cloud Security Engineer provides support for the implementation, troubleshooting, maintenance of information security infrastructure and any process related to these systems in a Security Operations / IT Infrastructure environment. They will have a detailed understanding of cloud platforms, such as Microsoft Office 365 and Azure, On-premises infrastructure for policy maintenance, software/hardware security implementation and best practices, as well as scripting and relevant development skills to be able to leverage automation and create custom connectors and analytics rules in a Microsoft Sentinel Environment.  

A successful candidate will also be well versed in security threats, exploits, and vulnerabilities which impact systems, networks, and assets and will utilize their abilities and experience to protect client environments. Thorough experience with Security Hardening across multiple products (Azure, O365, Active Directory), Endpoint Detection and Response technologies and understanding the implementation and support for those technologies is imperative to the success in this role. 

Essential Responsibilities (include but are not limited to): 

• Architect, establish and maintain best practices of implementation for our products/services. 

• Configure, implement, and support all production security tools and technologies 

• Maintain excellent documentation (SOPs) for all security tooling implementation, support, troubleshooting, etc. 

• Troubleshoot issues with security toolsets within client environments  

• Execute projects related to client onboarding – portal configuration, agent deployment, best practices configuration, systems auditing.  

• Actively work with other team members on security events that require urgent response, containment and remediation 

• Provide ongoing recommendations on toolset tuning and best practices. 

• Ability to discuss security posture with multiple clients and make recommendations to better their holistic security approach 

• Triage incoming support tickets and requests related to security tools managed by CyberSheath 

• Take part in daily shift change over meetings at beginning and end of shifts 

• Provide support for cloud based SIEM, EDR, and Anti-Spam/Phishing products 

• Provide support for additional security tools such as, but not limited to: SOAR, MFA, Encryption, and Vulnerability Management platforms.  

• Assist with triage of alerts as necessary 

Required Education, Experience, & Skills 

• Minimum of 5 years’ experience with successful implementation of security products, security best practices, security device policies for small and large enterprises. 

• Minimum of 3 years' experience in Security Administration, and a deep understanding of how security interfaces/impacts with other IT teams/business objectives.  

• Deep understanding of Office 365 / Azure AD security tooling, policies and implementation, Azure AD / O365 reporting. 

• Networking understanding / working experience (TCP/IP, Routing, VPN) 

• Must be a U.S. Citizen and reside within the United States or its Territories 

• Exceptional analytical and problem-solving skills  

• Excellent communication skills to communicate with support personnel, customers, and managers 

• Ability to work independently, remotely, and as part of a team 

Preferred Education, Experience, & Skills 

• Thorough working experience with the following products/technologies: KnowBe4, CrowdStrike, SAML/SSO, Okta, Intune, Cisco Umbrella, Rapid7, Defender for Endpoint, Defender for Office 365, Abnormal Security, Avanan. 

• Understanding of CIS (Center for Internet Security) benchmarks and implementation. 

• Working experience with DLP technologies/software (Office 365 native or third-party) is a plus. 

• Experience with Business Intelligence software for reporting (Power BI, BrightGauge, etc.) 

• Software development, coding and/or advanced scripting experience a plus 

• Working expertise with Microsoft Sentinel, Google Chronicle, or Splunk

• Certifications related to Microsoft Azure and Microsoft Security products  

Work Environment 

• Remote 

CyberSheath is an Equal Opportunity Employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, gender identity, national origin, age, protected veteran status, among other things, or status as a qualified individual with a disability.