AWSCloudCyber SecurityLinuxSQLTableauAnalyticsBIPower BIAmazon Web ServicesEntra IDIdentity ManagementRisk ManagementNetwork SecurityCloud Security
About this role
Role Overview
CPA is seeking an experienced, detail-oriented, and security-minded professional to join our growing team as Engineer, Cloud Security.
This position serves as CPA’s technical lead for cybersecurity architecture and operations with deep expertise in Microsoft enterprise and cloud security platforms.
This role designs, oversees, and implements security controls across identity, endpoints, cloud infrastructure, data protection, and CPA’s overall Microsoft enterprise ecosystem.
The Engineer, Cloud Security works closely with the Energy Risk Management, Finance, Power Supply, and Customer Care teams.
Develop detection content, response playbooks, and automation in Microsoft Sentinel and Defender to reduce mean time to detect and respond.
Requirements
Proficient with Microsoft Office Suite
Ability to act with integrity, professionalism, and confidentiality.
Ability to fully own tasks and processes with minimal oversight.
Ability to handle multiple priorities to meet deadlines and escalate key issues.
Proficient with data visualization tools and software (i.e., Tableau, Power BI).
Strong hands-on experience administering Microsoft Entra ID, including identity governance, conditional access, and privileged identity management.
Deep expertise with Microsoft Defender XDR (Defender for Endpoint, Identity, Office 365, and Cloud) for threat detection and response.
Proven experience designing and operating Microsoft Sentinel for SIEM, including KQL, analytics rules, workbooks, and automation.
Hands-on experience with Microsoft Intune for endpoint management, configuration profiles, compliance policies, and application protection.
Working knowledge of Microsoft Purview for data classification, data loss prevention (DLP), insider risk, and information protection.
Strong understanding of cloud security posture management, including Microsoft Defender for Cloud and secure configuration baselines.
Practical experience applying the NIST Cybersecurity Framework and supporting controls aligned to NIST 800-53 or 800-171.
Experience with vulnerability management, threat intelligence, and incident response operations.
Well-versed in cloud environments, identity and access management, endpoint security, network security, best-practice security governance, data privacy regulations, and zero-trust architecture principles.
Deep understanding of the interactions between systems and how business processes are enabled and impacted by those systems.
Experience or coursework with cloud platform security services, especially Amazon Web Services; cloud-native security tooling; Windows and Linux endpoint hardening; SQL databases.