Cyber Security Engineer
- 1pointsystem
Required Skills: Cyber, Security, Azure, ActiveDirectory, PIM, RBAC
Job Description
Location: Richmond, VA (Remote)
Interview Mode: Web Cam Interview Only
The Virginia Department of Elections (ELECT) is seeking an Azure Senior Security Engineer (Cybersecurity Engineer 3) with minimum 5 years’ experience to work with an existing software development team.
You will be working with our more established contractors and staff to focus on several web and Windows applications used both by internal ELECT staff and constituents of the Commonwealth of Virginia. The candidate will need expertise in all aspects of IT security and cloud security and experience working in an Agile/Scrum development environment interacting with technical and non-technical stakeholders.
Candidate will need to have extensive knowledge of cybersecurity practices, industry security standards, and regulatory standards. A bachelor’s degree and/or applicable recognized industry certifications are strongly desired and will help you stand out in this position.
ELECT uses mobile and responsive design practices, so a familiarity with these methodologies would be a plus.
| Skills | Required |
| 5+ years in IT security or cloud security roles required. | Required 5 Years |
| 3+ years of hands-on experience securing Azure environments | Required 3 Years |
| Bachelor’s degree in Computer Science, Cybersecurity, or related field or equivalent work experience required. | Required 5 Years |
| Relevant certifications (MS Certified Cybersecurity Architect Expert, Azure Security Engineer Associate (SC-300), CompTIA Security+, CISSP, CISM |
|
| Experience with Azure Security Services (Azure Defender, MS Sentinel, Azure Key Vault, Azure Policy and Blueprints, Azure Security Center) required. | Required 5 Years |
| Experience with Azure Active Directory (AAD), including conditional access, MFA, and identity protection required. | Required 5 Years |
| Extensive knowledge of PIM and RBAC required | Required 5 Years |
| Experience with NSGs, ASGs, VPN, ExpressRoute, and hybrid connectivity security required | Required 5 Years |
| Ability to implement and moitor compliance with regulatory standards such as NIST, ISO 27001, GDPR, etc. is required | Required 5 Years |
| Extensive knowledge of threat modeling and vulnerability management, SIEM/SOAR tuning and response workflows, and security alert triage and forensics | Required 5 Years |
| Ability to perform scripting and automation using PowerShell, Bicep, ARM templates, or Terraform | Required 5 Years |
| Ability to perform perform integration with CI/CD pipelines for secure deployments (GitHub Actions, Azure DevOps) | Required 5 Years |
| Ability to create and deliver security architecture reports and documentation | Required 5 Years |
| Experience in risk assessment and mitigation strategies | Required 5 Years |
