• Utilising knowledge of pen test and red teaming engagements and techniques to plan, write and improve offensive security labs, challenges and online learning content on the Immersive One platform. • Produce multi-format content utilising various teaching methods; practical exercises, questions & gamification • Test Red Team labs and ranges to ensure they function as expected • Research vulnerabilities, tools and offensive tactics and compile this research to deliver practical and theory labs to users • Compile technical research into understandable concise content for both technical and non-technical audience • Work with the wider Product team on new projects and product innovations and how best to deploy them

Role Description Sigma Defense is seeking a Cybersecurity Lead Engineer to support an enterprise DevSecOps platform. - Support DevSecOps and Software Engineers in developing secure platforms and effectively communicating regarding the risk posture of the platforms. - Support of full RMF lifecycle for authorization and re-authorization of existing and novel capabilities including regular communication with stakeholders and authorizing personnel. - Identification and reduction of system vulnerabilities to achieve compliance objectives. - Mentorship and proliferation of cybersecurity culture within team. Qualifications - 8-10 years of Cybersecurity experience. - Experience with DoW RMF policy. - Experience maintaining cybersecurity on an enterprise DevSecOps platform. - Registered DoW RMF Practitioner (RDRP) is preferred. - Must be a U.S. citizen. Requirements - Mandatory Certifications: CISSP - Personnel Clearance Level: Candidate must possess or have the ability to obtain an active Secret security clearance or higher. Clearance may be sponsored for the right candidate. - Education Requirements: Bachelor's degree from an accredited college or university in Cyber Security, Information Technology, Information Systems, Computer Science, Computer Engineering, Mathematics, or related field of study. Degree may be substituted for comparable additional industry experience and/or industry accepted training and certification. Benefits - Salary Range: $135,000 - $145,000 annually. - Dental and Vision Insurance - Medical Insurance to Include HSA, FSA, and DFSA Plans - Life and AD&D coverage - Employee Assistance Program (EAP) - 401(k) Plan with Company Matching Contributions - 160 Hours of Paid Time Off (PTO) - 12 (Floating) Holidays - Educational Assistance - Highly Competitive Salary

• We are seeking a highly motivated Senior Security Engineer with a strong passion for Identity and Access Management (IAM) to join our Enterprise Security & Infrastructure (ESI) organization. • The ideal candidate brings hands-on experience designing, engineering, implementing, and supporting enterprise-scale identity solutions across hybrid environments (on-premises and cloud). • This role requires a deep understanding of modern identity technologies, along with the ability to secure and optimize identity platforms that support critical business operations. • A successful engineer in this role will maintain awareness of new security and identity trends, research, evaluate, design, and recommend technical security solutions for the enterprise. • This role is critical in ensuring the secure, efficient, and compliant management of identities and access across the organization, helping to protect enterprise assets while enabling business productivity. • The Senior Security Engineer, Identity & Access Management is responsible for designing, implementing, and maintaining secure, scalable IAM solutions across hybrid environments, while driving modernization toward Zero Trust and cloud-based identity models. • This role focuses on engineering automated identity processes, strengthening access governance and privileged access controls, and integrating AI-enabled capabilities to enhance security and operational efficiency. • The engineer partners closely with cross-functional teams to assess and mitigate identity-related risks, implements monitoring and automated response for identity threats, and contributes to technology evaluation and innovation. • Additionally, the role ensures compliance with regulatory requirements, supports audit readiness, and establishes standards and best practices to continuously improve enterprise identity security.

Role Description A Security Consultant is a client-focused role responsible for leading and supporting ProArch customers in building, operating, and continuously improving a comprehensive security program. This position blends security advisory, service delivery, and operational oversight, using ProArch standard playbooks, tooling, and reporting to reduce risk and improve security outcomes. Security Consultants leverage ProArch’s security platforms to detect and prevent cyber threats, onboard clients into managed security services, maintain solution health, and communicate risk and remediation priorities to technical and executive stakeholders. Ongoing training and professional certifications are part of the job requirements. Job Responsibilities - Client Advisory & Program Leadership - Lead security strategy development and roadmap planning aligned to business priorities. - Produce and deliver executive security reporting (risk, trends, outcomes, and next steps). - Provide security assessments, vulnerability management guidance, and awareness program support as part of managed services and professional services engagements. - Service Delivery & Operational Oversight - Own solution implementation and program onboarding, including documentation, handoffs, and acceptance criteria. - Implement and manage SIEM/XDR architecture (e.g., Microsoft Sentinel and Microsoft Defender XDR) including configuration, tuning, and workflows. - Maintain solution health and integrations (connectors, data sources, agents, and alert fidelity). - Perform account/permission management and governance for security solutions. - Provide guidance and escalation support for Security Specialists; coordinate incident and service issue escalations to resolution. - Pre-sales & Practice Contribution - Support presales meetings, proof-of-value/proof-of-concept efforts, and security program cost & scope modeling. - Deliver vendor and ProArch workshops; contribute to presentations, webinars, and approved marketing initiatives. - Research and evaluate emerging technologies; contribute to solution design and service evolution. - Standardization & Continuous Improvement - Deliver services using ProArch standard playbooks, templates, quality gates, and reporting packs. - Improve programs through automation and security engineering (where appropriate) to increase repeatability and reduce manual effort. Qualifications - Minimum of 4 years of experience in cybersecurity with additional background in security consulting or managed security services. - Hands-on capability in core security platforms. - Ability to translate technical findings into business risk. - Strong client communication skills. Requirements - Required (hands-on) - SIEM/XDR delivery and operations, particularly Microsoft Sentinel and Microsoft Defender XDR. - Kusto Query Language (KQL) for detection, investigation, and reporting (SPL is a plus). - SOAR and automation concepts and process design. - Identity and endpoint security fundamentals (e.g., Entra ID, Identity Protection, Defender for Endpoint). - Strong client-facing communication: security report analysis, remediation recommendations, and executive-ready storytelling. - Working knowledge - Microsoft security platform components (Defender for Office 365, Defender for Identity, Defender for Cloud Apps, Defender for Cloud, Intune, Entra ID). - Managed Detection and Response (MDR) experience in a managed services model. - Vulnerability management tooling and process (e.g., Qualys) and remediation strategy development. - Scripting/automation using PowerShell, Python, and/or Azure CLI. - Preferred - Microsoft Purview (IRM, DLP, Insider Risk) and governance concepts. - CrowdStrike Endpoint/Identity/XDR experience. - Cloud security exposure beyond Microsoft (AWS/GCP) and related security services. - Experience with Azure DevOps and process-driven delivery. - Microsoft Foundry, Microsoft 365 Copilot, and Microsoft Security Copilot familiarity. Education and Certification - BS or MS in Computer Science / Engineering or significant demonstrable experience in Microsoft Cloud Security. - Must have the following Certifications. If not held at time of hire, must be attained within 6 months after hire: - Microsoft: AZ-900 - Microsoft: SC-300 - Microsoft: AZ-500 - ISC: CISSP - Preferred certifications: ISC2 CISSP; Microsoft SC-200; and/or certifications such as CEH, CCSP, CISM. Benefits - Empower employees to develop at their own pace through Career Pathways. - Culture of positivity, inclusivity, and respect. - Flexible work schedules to prioritize work-life harmony. - Opportunities for volunteer efforts and charitable initiatives. - Recognition programs for extraordinary efforts.