Sr. Security Architect/Azure Cloud Security Engineer

Edgewater is currently seeking a hands-on Senior Security Architect/Azure Cloud Security Engineer to support secure Azure development, application modernization, and cloud migration of our federal customer in the Washington DC area. This is a hybrid position with a requirement to work onsite four to six days a month, subject to change.The Azure Security Engineer should be hands-on in all aspects of Azure security including implementing security controls and threat protection, managing identity and access management, defining organizational structure and policies, using Azure technologies to provide data protection, configuring network security defenses, collecting and analyzing Azure logs, managing incident responses, and an understanding of regulatory concerns.

Due to the contract and nature of the work, US Citizenship is required to obtain a Department of Energy security clearance.

• Maintain and improve the security posture of the FERC Azure platform by identifying, and remediating vulnerabilities by using a variety of security tools.
• Provide cyber security expertise in the analysis, assessment, development, and evaluation of security solutions and architectures to secure applications, operating systems, databases, and networks.
• Implement and configure security controls and policies across the FERC IT infrastructure to manage access to data and monitor threats to ensure that data, apps, containers, and networks are protected.
• Maintain native tools like Microsoft Defender for Identity, Microsoft Defender for Cloud, Microsoft Defender for IoT, Defender for O365 and Microsoft Sentinel.
• Facilitate the secure migrations of on-prem applications to the Azure cloud.
• Implementing threat protection and responding to security incident escalations.
• Automate security controls, data, and processes to provide better metrics and operational support.
• Manage operations within a cloud solution environment such as operations tasks, using cloud native tools, like Log Analytics, Azure Monitor and Microsoft Sentinel.
• Support cloud engineers to implement security best-practices and enable secure development and release processes.
• Ensure compliance
• Deliver/update task documentation, briefings, SOPs and post on CsIA wiki.
• Facilitate collaboration between security administrators and development engineers to enhance communication and build effective division-wide processes.
• Identify areas of weakness and work with stakeholders to mitigate risks.

• • Bachelor's degree in cyber security, information technology or related field or equivalent experience working in field.
  • 12 years of experience supporting IT with 3 years in Azure administration and security.
  • 3 years of experience working with Microsoft native tools like Microsoft Defender for Identity, Microsoft Defender for Cloud, Microsoft Defender for IoT, Defender for O365 and Microsoft Sentinel.
  • Good understanding of security concepts (Zero Trust Network, CASB, Cloud computing.
  • Technical skills with Linux and Windows operating systems and scripting languages like PowerShell, Python, .Net.
  • Soft skills set to successfully understand, challenge, and translate the business needs and communicate to the relevant parties with a structured and methodical approach to problem solving.
  • Good communicator with passion for the domains of Cyber Security.
  • Agile, Scrum, DevSecOps knowledge.
  • Must have CISSP or equivalent (Security+, CAP, CEH) or more advanced certifications to be considered and approved by the government.
  • Microsoft Azure security certifications (AZ-500, MS-500, or SC-200) strongly preferred.

• Preferred:

  • Strong understanding of Security tools such as Splunk, Tenable, Firepower, WebInspect,
  • Strong understanding of networking, e.g., IP subnetting, Network Security Groups, routing, Azure Firewall, ExpressRoute, load balancer, DNS.
  • Strong understanding of configuring security policies and securing applications and data.
  • Strong familiarity with cloud capabilities and products and services for Azure, e.g., Azure Active Directory, Privileged Identity Management, VMs, Container Registry, Azure Kubernetes Services (AKS), Data Services, and KeyVault.
  • Strong understanding of Security processes in the Government sector.
  • Good interpersonal skills also required to work closely together with products owners and cloud architects to help build a secure and robust enterprise-grade cloud platform.
  • Certifications in Azure Security Engineer Associate (AZ-500) and other industry certifications are preferred including Security+, CEH, OSCP, CCSK, GIAC.

Salary: $140,000 - $160,000

About Us:

Edgewater Federal Solutions is a privately held government contracting firm located in Frederick, MD. The company was founded in 2002 with the vision of being highly recognized and admired for supporting customer missions through employee empowerment, exceptional services and timely delivery. Edgewater Federal Solutions is ISO 9001, 20000-1, 270001 certified, appraised at CMMI Level 3 Maturity for Development and Services, and has been named in the Top Workplaces in the Greater Washington Area Small Companies for 2018 through 2025.

It has been and continues to be the policy of Edgewater Federal Solutions to provide equal employment opportunities to all employees and applicants for employment without regard to race, color, religion, gender, sexual orientation, national origin, age, disability, marital status, veteran status, and/or other statuses protected by applicable law.status protected by applicable law.