Sr Security Engineer

Top Must Haves to Include in Submittal

• Required : 4+ years of experience with a Senior Security Engineer Title.
• Required : 4+ years of experience with active threat hunting, looking for potential attacks rather than just passively waiting for attacks
• Required : Experience with Microsoft Defender , Sentinel, Azure Security Center , and Microsoft 365 security solutions, helping to identify vulnerabilities, mitigate threats, and enhance security postures.
• Required : 4+ years of experience with Microsoft Defender for Endpoint
• Required : 4+ years of experience with Microsoft Sentinel (SIEM / SOAR)
• Required : 4+ years of experience with Azure Security Center & Microsoft Purview Compliance Manager
• Required : Certifications such as OSCP, OSWE, CISSP, CEH , GPEN, AZ-500 (Microsoft Azure Security Engineer) , SC-200 (Microsoft Security Operations Analyst), or SC-300 (Microsoft Identity and Access Administrator) are a plus.
• Required : 3+ years of experience in Microsoft security technologies and tools such as Purview Information Protection
• Required : 4+ years of experience with Managed Extended Detection and Response (MXDR)
• Required : 9 out of 10 communication skills (must be able to understand everything they say and must have 10 out of 10 English comprehension. Accents are ok.)
• Very Nice To Have : 2+ years of experience with red team / blue team exercises to test defenses and improve security operations.
• Very Nice To Have : 2+ years of experience evaluating, influencing, and recommending technology and product direction

What does the company do Insurance

Location / Address : Orange, California

On-Site / Hybrid / Remote Fully Remote in any State in the US (PST Hours)

Reports To : Director of IT Infrastructure

Does this Position have Direct Reports No

COVDI19 Vax required No vaccination requirements

Accept Visa / H1b Sponsorship No (GC or USC only)

Schedule PST hours

Dress code Business Professional

Full Time Compensation

Reports to Director of IT Infrastructure

Perform active threat hunting, looking for potential attacks rather than just passively waiting for attacks

Perform red team / blue team exercises to test defenses and improve security operations.

Assists with vulnerability assessments, using provided security tools to identify system vulnerabilities

Design and implement security controls across cloud and on-premises environments

Create and maintain security monitoring and alerting solutions

Data Loss Prevention (DLP) : Monitor DLP alerts, investigate incidents, and recommend actions to relevant teams to mitigate data breaches.

Assists in the planning and deployment of the companys cloud information security strategies

Manage Infrastructure and application security monitoring tools to detect and respond to security incidents in real-time

Participate in the development and improvement of the company's SDLC processes, ensuring security practices are integrated into all stages of product development

Responsible for evaluating, influencing, and recommending technology and product direction

Stay informed on the latest cybersecurity trends, emerging threats, attack techniques, and zero-day vulnerabilities affecting Microsoft environments and other relevant technologies.

On-site or remote regular attendance and punctuality are essential functions of the job.

Perform other business tasks or functions as assigned.

Qualifications

Knowledge, Skills & Abilities Required :

Experience with Microsoft Defender, Sentinel, Azure Security Center, and Microsoft 365 security solutions, helping to identify vulnerabilities, mitigate threats, and enhance security postures.

Deep knowledge of Microsoft security solutions

o Microsoft Defender for Endpoint

o Microsoft Sentinel (SIEM / SOAR)

o Azure Security Center & Microsoft Purview Compliance Manager

o Microsoft Intune and Conditional Access Policies

Strong understanding of security principles and best practices

Strong knowledge and hands on experience with Data Loss Prevention

Hands-on experience in threat hunting

Certifications such as OSCP, OSWE, CISSP, CEH, GPEN, AZ-500 (Microsoft Azure Security Engineer), SC-200 (Microsoft Security Operations Analyst), or SC-300 (Microsoft Identity and Access Administrator) are a plus.

Proficiency in Microsoft security technologies and tools such as Purview Information Protection, Defender for Cloud and Sentinel

Experience with Managed Extended Detection and Response (MXDR)

Proficient in Microsoft Office programs, including Word, Excel, PowerPoint, as well as Outlook.

Adhere to all PHI (Protected Health Information) and HIPAA (Health Insurance Portability and Accountability Act) guidelines.

Educational Requirements :

High School Diploma or equivalent required.

Bachelors degree in Computer Science, Cyber Security or equivalent experience required.

Minimum of six (6) years of hands-on experience in IT with a focus on security.

Physical Requirements : ??Must be able to sit for extended periods and occasionally stand and walk. Must have adequate hearing for phone work. Vision requirements include close vision and the ability to adjust focus. Must be able to communicate effectively in English. Must be able to use a keyboard and other office equipment. Ability to lift up to 10 pounds occasionally.

“Benefit offerings include medical, dental, vision, life insurance, short-term disability, additional voluntary benefits,

EAP program, commuter benefits, and 401K plan. Our program provides employees the flexibility to choose the type

of coverage that meets their individual needs. Available paid leave may include Paid Sick Leave, where required by

law; any other paid leave required by Federal, State, or local law; and Holiday pay upon meeting eligibility criteria.”

“Equal Opportunity Employer / Veterans / Disabled

To read our Candidate Privacy Information Statement, which explains how we will use your information, please navigate to us / en / candidate-privacy

The Company will consider qualified applicants with arrest and conviction records in accordance with federal, state, and local laws and / or security clearance requirements, including, as applicable :