Cloud Security Engineer

Cloud Security Engineer

Job Type:

Direct-Hire

Location:

New York

Industry:

Category:

Compensation Range:

$ - $ Per Year

Additional Compensation Info:

180000.00

Contact Name:

Keegan Sofka

Job ID:

23983

Job Summary:

We are seeking a Senior Cloud Engineer to lead and support the secure implementation of Microsoft 365 services and manage identity and access controls across a global enterprise environment. This role plays a key part in advancing a modern, zero-trust, cloud-first strategy while ensuring compliance with financial industry regulations. The ideal candidate will possess deep technical expertise in designing, engineering, and supporting complex cloud systems, particularly M365 and SaaS integrations. This position also plays a critical role in operational support, standards enforcement, and collaboration across teams to align infrastructure with business needs.


Essential Duties & Responsibilities:

Microsoft 365 Implementation & Adoption
  • Lead cloud architecture development to improve availability, performance, and continuity of production systems.

  • Design, implement, and support M365 services (Exchange Online, Teams, SharePoint, OneDrive, Defender for Office 365, etc.).

  • Harden M365 tenant configuration for security and compliance.

  • Manage lifecycle policies for mail retention, DLP, encryption, eDiscovery, and compliance tools.

Identity & Access Management (IAM)
  • Architect and maintain Azure AD / Entra ID with strong Conditional Access and MFA.

  • Implement and manage Privileged Identity Management (PIM) and Just-in-Time (JIT) access.

  • Integrate SaaS and internal apps with Azure AD for SSO and provisioning.

  • Maintain entitlement management, access reviews, and lifecycle automation.

Security & Compliance
  • Collaborate with security teams to enforce Zero Trust policies and mitigate IAM threats.

  • Align M365 and identity configurations with SOX, GLBA, FFIEC, and audit requirements.

  • Support audit processes and compliance documentation.

Automation & Monitoring
  • Automate tasks with PowerShell, Graph API, and Logic Apps.

  • Build dashboards for access, authentication, and license utilization metrics.


Knowledge, Skills, and Abilities:

  • Proven ability to troubleshoot complex infrastructure issues and manage third-party vendor relationships.

  • Experience leading projects involving Office 365, SAML, MDM, and cloud-hosted systems.

  • Skilled in evaluating and recommending enterprise cloud and security technologies.

  • Proficient in: Office 365, Azure AD, Azure Files, Azure DNS, Application Gateways, TCP/IP, SAML, Okta, AWS, enterprise SaaS.

  • Strong communication and collaboration skills, especially in cross-functional enterprise environments.

  • Experience designing and administering enterprise-wide cloud and IAM solutions.

  • Demonstrated ability to manage vendor relationships, support strategic planning, and implement best practices.


Education & Experience:

  • 5+ years of experience in Office 365 architecture and implementation.

  • 5+ years in identity and access management systems design and deployment.

  • 5+ years of experience with SaaS and cloud-hosted systems in enterprise environments.

  • Experience working within a FINRA or similarly regulated environment.

  • Bachelor's Degree in Computer Science, Engineering, or related field.

  • Relevant certifications preferred:

    • SC-300: Microsoft Identity and Access Administrator Associate

    • MS-500: Microsoft 365 Security Administrator

    • AZ-104 or SC-400

    • CISSP or equivalent security certification

 

#LI-KH2

 

Apply Now
Apply Now

Share this job

SCHEMA MARKUP ( This text will only show on the editor. )
Back to Job Search