Job Purpose
We are seeking an experienced Cybersecurity Operations Engineer/Analyst to support enterprise cybersecurity operations, monitoring, threat detection, vulnerability management, identity security, and incident response activities across global IT environments.
The ideal candidate will have hands-on experience with Microsoft Defender, SentinelOne, MFA, Conditional Access, vulnerability management, and cybersecurity operations within a medium to large enterprise environment.
Main Tasks and Responsibilities
- Manage day-to-day cybersecurity operations activities across enterprise environments.
- Monitor, investigate, and respond to cybersecurity incidents and alerts.
- Support incident handling, containment, remediation, and recovery activities.
- Administer and optimize Microsoft Defender security capabilities.
- Manage SentinelOne EDR platform including monitoring, policy tuning, and response actions.
- Support vulnerability management lifecycle including scanning, remediation tracking, and reporting.
- Implement and maintain MFA and Conditional Access policies across enterprise systems.
- Coordinate with MSSP/MDR providers and internal IT teams for security operations activities.
- Perform security assessments and support remediation activities.
- Monitor endpoint, identity, and cloud security posture.
- Support phishing simulations, user awareness, and security hardening initiatives.
- Assist with cybersecurity compliance and audit activities.
- Develop operational dashboards, metrics, and security reports.
- Support continuous improvement of cybersecurity operational processes and controls.
Required Skills & Qualifications
- 10+ years of experience in cybersecurity operations or security engineering roles.
- Strong hands-on experience with:
- Microsoft Defender
- SentinelOne EDR/XDR
- MFA & Conditional Access
- Vulnerability Management tools/processes
- Incident Response & Threat Handling
- Experience with Microsoft security ecosystem and enterprise environments.
- Good understanding of:
- Endpoint Security
- Identity & Access Management
- Threat Detection & Response
- Security Monitoring & Logging
- Cybersecurity Best Practices
- Experience working with MSSP/MDR providers preferred.
- Knowledge of cybersecurity frameworks such as NIST CSF, CIS Controls, or ISO 27001 preferred.
- Strong analytical, troubleshooting, and communication skills.
Preferred Certifications
Preferred certifications include one or more of the following:
- Microsoft Security Certifications
- CompTIA Security+
- SC-200 / SC-300
- CISSP
- CEH
- GIAC Certifications
Education
- Bachelor’s degree in Cybersecurity, Information Technology, Computer Science, or related field preferred.
Key Attributes
- Strong operational and troubleshooting mindset
- Ability to work independently and manage multiple priorities
- Good stakeholder communication and coordination skills
- Proactive and risk-focused approach to cybersecurity operations
- Ability to operate effectively in fast-paced enterprise environments
Benefits:
- 401(k)
- Dental insurance
- Health insurance
- Paid time off
- Tuition reimbursement
- Vision insurance
Work Location: Hybrid remote in Houston, TX 77079