Sysgain Information Technology - Security Engineer

Description :

Position Summary :

The Security Engineer will be responsible for strengthening and maintaining the organizations security posture across Azure, Office 365, and network environments. This role requires hands-on technical expertise in Microsoft cloud security, network security architecture, and incident response. The engineer will work closely with Infrastructure, Data, Application and compliance teams to ensure secure, resilient operations across hybrid systems.

Key Responsibilities :

- Deploy, configure, and manage Azure and M365 security tools, Defender for Cloud, Sentinel, Entra ID (Azure AD), Intune, Purview, and Conditional Access.

- Implement and maintain network security controls, including firewalls, VPNs, NSGs, WAFs, and Azure network segmentation.

- Monitor and respond to security alerts from MDR vendor and EDR platforms; perform investigation and root cause analysis.

- Manage identity and access governance across Azure AD, Office 365, and hybrid domains using RBAC, MFA, and least-privilege principles.

- Conduct vulnerability assessments, patch validation, and remediation tracking.

- Perform security and compliance reviews for Azure, M365, Networking, and on-prem systems.

- Maintain security documentation (data flow diagrams, network diagrams, runbooks) and support tabletop exercises.

- Participate in incident response and disaster recovery testing; ensure RTO/RPO objectives are met.

- Collaborate with IT and compliance teams to align with HIPAA, NIST, and SOC 2 standards.

- Stay current with emerging Azure, M365, and network security threats and recommend proactive improvements.

Required Skills & Experience :

- 3 - 4 + years of experience in security engineering, cloud security, or infrastructure security roles.

- Hands-on experience securing Microsoft Azure and Microsoft 365 environments.

- Strong working knowledge of Defender for Cloud, Defender, Entra ID (Azure AD), Intune, Purview, and Conditional Access.

- Experience implementing network security controls including firewalls, VPNs, NSGs, WAFs, and network segmentation.

- Practical experience with identity and access management, including RBAC, MFA, and least-privilege principles in hybrid environments.

- Experience with security monitoring, incident response, and collaboration with MDR/EDR providers.

- Knowledge of vulnerability management, patch validation, and remediation tracking.

- Familiarity with HIPAA, NIST, and SOC 2 in regulated environments.

- Ability to work cross-functionally and communicate security risks effectively to technical and non-technical stakeholders.