Technology - Security Engineer

Deep expertise in network, system, identity, and datacenter security, with hands-on experience securing enterprise-grade or high-scale hybrid environments. Strong practical experience with Microsoft Entra ID (Azure AD), including SSO, Conditional Access, MFA, and identity lifecycle management, as well as Microsoft Intune for endpoint management. Proven experience designing and implementing Zero Trust Architecture (ZTA), including work with Cato Networks or comparable SASE / secure access frameworks. Strong background in AWS security, including IAM roles and policies, least-privilege access models, VPC design, network segmentation, and cloud hardening. Experience securing on-prem and colocation datacenter environments. Solid administration experience in Windows and Linux environments, including OS hardening, patch management, secure baseline configurations, intrusion detection, vulnerability scanning, and remediation. Working knowledge of core security engineering tools, including SIEM and log analysis platforms, vulnerability management tools, EDR/XDR, secrets management solutions, and certificate/key management. Ability to leverage scripting and automation (e.g., PowerShell, Bash, Python) to improve security operations. Familiarity with Infrastructure-as-Code (IaC) and integrating security controls into CI/CD pipelines. Experience leading or participating in security incident response. Ability to perform threat modeling, risk assessment, and security architecture reviews. Familiarity with security compliance frameworks (e.g., SOC 2, ISO 27001). Experience evaluating, selecting, and integrating security tools and vendors. Excellent analytical and communication skills. A proactive, ownership-driven mindset.

Architect, deploy, and maintain secure network and system infrastructure across AWS, corporate, and hybrid environments, data centers. Implement and manage Zero Trust Architecture (ZTA) frameworks. Lead configuration and hardening of Microsoft Entra ID (Azure AD), SSO, and Intune. Oversee and continuously enhance system, application, and network security controls. Automate security monitoring, compliance checks, and remediation workflows. Integrate security controls into CI/CD and infrastructure-as-code pipelines. Conduct regular risk assessments, security audits, and incident response exercises. Develop and enforce security baselines, policies, and monitoring. Collaborate with cross-functional teams to ensure compliance.