• Own strategy and roadmap across Admin & IAM, Enterprise Security, and Customer Insights. • Lead discovery and definition on complex, high-impact initiatives. • Lead, coach, and develop a team of PMs across multiple domains. • Represent the voice of admins, IT, and security in product decisions. • Actively hands-on in shaping strategy, discovery, and execution across the portfolio.

• Perform first-level alert triage and response for security monitoring tools (SIEM, EDR, email security, etc.) • Investigate and document security alerts, escalating issues when appropriate • Support the organization’s phishing awareness and response program, including reviewing reported emails and assisting with user education efforts • Assist with general security operations tasks, including log review, ticket management, and tool optimization • Create and update security documentation, playbooks, and standard operating procedures (SOPs) • Participate in light threat hunting activities, analyzing logs and telemetry for suspicious activity • Assist in writing or tuning detection rules under guidance from senior security team members • Contribute to improving operational workflows and automation where possible

Role Description We are currently interviewing for a Senior Cybersecurity Engineer. This role sits within a centralized technology function supporting a complex, multi-site environment with high standards around data protection, operational continuity, and regulatory alignment. This position blends hands-on security operations with longer-term engineering and risk mitigation initiatives. The Senior Cybersecurity Engineer will play a key role in monitoring, responding to, and reducing security risk across infrastructure, applications, and cloud platforms while contributing to broader security architecture efforts. Key Responsibilities - Security Operations - Monitor and analyze security events using enterprise tools such as SIEM, EDR, and related platforms. - Investigate alerts and support incident response activities, including documentation and remediation tracking. - Execute and maintain a structured vulnerability management process to reduce exposure across production systems. - Administer and optimize core security technologies including endpoint protection, email security, application controls, threat intelligence platforms, and security-focused automation tools. - Track, report, and help remediate security findings and risk metrics. - Support third-party risk reviews and internal compliance initiatives. - Contribute to security awareness and policy adherence efforts. - Participate in a rotating on-call schedule for security support. - Security Engineering and Risk Management - Evaluate new technologies, applications, and SaaS platforms for security impact and provide practical mitigation guidance. - Participate in formal change management processes and provide security review input. - Research emerging threats and industry trends and recommend improvements to strengthen the overall security posture. - Assist in developing and refining security policies, standards, and technical controls. - Support access management, data protection strategies, and infrastructure security controls across on-premises and cloud environments. Qualifications - Four-year degree preferred; equivalent experience will be considered. - Minimum of three years of experience in information security or a related IT role with significant security responsibilities. Requirements - Experience supporting Windows and Linux environments, including identity and directory services. - Strong understanding of networking fundamentals such as TCP/IP, DNS, DHCP, HTTP/HTTPS, and routing concepts. - Hands-on experience with authentication protocols, cryptography, application security, endpoint security, and cloud security. - Experience working with SIEM, EDR, vulnerability management platforms, and related enterprise security tooling. - Comfort using automation and artificial intelligence tools to improve security workflows. - Ability to communicate complex technical information clearly to both technical and non-technical audiences. - Strong written documentation and reporting skills. - Sound judgment, discretion, and professionalism in handling sensitive information. - Strong organizational skills with the ability to manage multiple initiatives simultaneously. - Self-directed, dependable, and comfortable working in both collaborative and remote environments. Additional Expectations - Periodic travel as required. - Flexibility to work additional hours during security events or critical initiatives. Compensation The anticipated base salary range for this position is $130,000 to $159,000. Actual compensation will depend on experience, education, certifications, geographic location, and overall alignment with the scope of the role.

• Lead the migration of all SSO, MFA, and Conditional Access policies from Okta to Microsoft Entra ID • Architect and implement BeyondTrust to establish Tier-0 privileged access controls across newly acquired AD forests and cloud environments • Serve as the internal technical authority and design reviewer for the MSP’s Entra ID tenant configuration, ensuring governance standards, naming conventions, and security defaults align with long-term strategy • Lead the technical hand-off and integration of standalone Active Directory forests into the new Entra ID tenant • Design and enforce zero-trust identity principles across authentication, authorization, and privileged access management • Develop PowerShell and Microsoft Graph API automation to streamline identity lifecycle management, governance controls, and reporting • Define and document identity architecture, authentication flows, access models, and governance frameworks • Partner with infrastructure, security, and compliance stakeholders to ensure enterprise-wide alignment with security standards • Provide strategic guidance to executive and technical leadership on identity and security decisions