Cybersecurity Cloud Engineer
Arlington, Virginia
100% Remote
Full Time
$200k - $220k
Cybersecurity Cloud Engineer
The Cyber Security Cloud Engineer will conduct comprehensive investigations and incident response activities across various cloud and on-premises security platforms. This role emphasizes working with Microsoft 365, Palo Alto Networks, Zscaler, Active Directory, and Intune. The ideal candidate should possess a strong technical background and hands-on experience with these tools, demonstrating the ability to identify, analyze, and mitigate security threats.
The company is located in Philadelphia, PA and will remain 100% remote.
What You Will Be Doing:
This position doesn’t provide sponsorship.
The Cyber Security Cloud Engineer will conduct comprehensive investigations and incident response activities across various cloud and on-premises security platforms. This role emphasizes working with Microsoft 365, Palo Alto Networks, Zscaler, Active Directory, and Intune. The ideal candidate should possess a strong technical background and hands-on experience with these tools, demonstrating the ability to identify, analyze, and mitigate security threats.
The company is located in Philadelphia, PA and will remain 100% remote.
What You Will Be Doing:
- Investigate Security Incidents
- Conduct In-Depth Investigations: Investigate security incidents across Microsoft 365, Palo Alto Networks, Zscaler, Active Directory, and Intune.
- Analyze Logs and Alerts: Identify potential threats by analyzing logs and alerts from various security tools.
- Perform Root Cause Analysis: Determine the origin and scope of incidents through thorough root cause analysis.
- Incident Response
- Develop and Execute Plans: Create and implement incident response plans for cloud and on-premises environments.
- Coordinate Responses: Collaborate with internal teams and external partners to respond to and remediate security incidents.
- Document Activities: Document and report on incident response activities and outcomes.
- Monitoring and Analysis
- Monitor Dashboards and Alerts: Oversee security dashboards and alerts from M365 Security Center, Palo Alto Networks Panorama, Zscaler Central, and Intune.
- Utilize SIEM Tools: Aggregate and analyze security events and logs using SIEM tools.
- Conduct Regular Audits: Perform regular security compliance audits of Active Directory.
- Threat Hunting
- Search for Threats and Vulnerabilities: Proactively hunt for threats and vulnerabilities within cloud and on-premise environments.
- Evaluate Vulnerability Exposure: Work with threat hunters to assess the exposure of Core to reported vulnerabilities.
- Develop Threat Hunting Strategies: Implement threat hunting strategies using available tools and intelligence.
- Security Best Practices
- Adhere to Best Practices: Ensure cloud and on-premise security configurations follow best practices and organizational policies.
- Implement Recommendations: Work with company leadership on regular health checks and integrate recommendations into practice.
- The candidate needs to have extensive experience working with Azure, Palo Alto and Zscaler.
This position doesn’t provide sponsorship.