Sr. Cybersecurity Engineer

A law firm is looking for a Senior Cybersecurity Engineer to join their team. This role is remote. 

The hours for the position are Monday – Friday, 9:00 a.m. – 5:30 p.m. ET. 

The Senior Cybersecurity Engineer is responsible for ensuring that the Firm designs and implements appropriate security controls for critical cloud and on-premises infrastructure. The Senior Cybersecurity Engineer operates a focused, thematic risk and control program that sets expectations for securing core platform services including Active Directory Domain Services (ADDS), Active Directory Certificate Services (ADCS), Azure AD (AAD), and Active Directory Federation Services (ADFS). This is a highly technical role that requires hands-on, collaborative work with stakeholders and IT implementers.

Responsibilities:

• Lead, coordinate, and conduct both on-premises Active Directory security assessments and cloud-based security assessments focused on Microsoft Azure.
• Advise and assist process and asset owners with designing and implementing architecture enhancements and security configuration modifications to defend against identified threats and attacker techniques.
• Provide subject-matter expertise with Active Directory identity protection, Active Directory Certificate Services (ADCS), synchronization, and hybrid infrastructures.
• Create and document detailed guides and tracking documents for Business and IT SMEs to leverage as part of Active Directory hardening and overall infrastructure enhancements.
• Work across the IT teams to analyze and define security best practice requirements for Active Directory and Azure Active Directory integrations.
• Regularly reports on program progress to the Cybersecurity leadership and other senior stakeholders as appropriate, using defined Key Performance Indicators (KPIs) and Key Risk Indicators (KRIs) to highlight control adoption gaps, identify areas of strong or weak performance, or quantify risks, respectively.

• A Bachelor's degree in computer science or engineering strongly preferred; advanced degree and CISSP certification preferred.
• 12+ years' experience in cybersecurity, with 5+ years' experience executing security advisory or oversight programs.
• 7+ years on premise enterprise Active Directory and 5+ years working in Azure Active Directory experience.
• 5+ years enterprise experience in Hybrid Identity Platforms with deep understanding of Cloud Identity and Security with at least 5 years hands on experience working with production workloads in a public or government cloud environment.
• Expert working knowledge of Microsoft Active Directory Domain Services (ADDS), Active Directory Certificate Services (ADCS), Azure Active Directory, Microsoft 365, and/or Office 365.