Cloud Security Engineer

We are a values driven organization putting Relationships FIRST. EagleBank (NASDAQ - EGBN) is focused on being Flexible, Involved, Responsive, Strong, and Trusted. By prioritizing meaningful connections with our customers, employees, and shareholders, we relentlessly deliver the most compelling, valuable service to our customers.

EagleBank is committed to inclusion, equity, and respect. We celebrate diversity and intentionally seek out opportunities to learn from one another's experience. We believe employees are essential to the building of relationships and we prioritize investing in employee growth and wellbeing. Employee involvement is fostered through resource groups, mentorship programs, community service, and scholarship opportunities for continued education. With features including maternity and parental leaves, wellness discounts, healthcare premium sharing, employer funding in your HSA account, and 100% 401(k) matching up to 4%, we pride ourselves in the ways we support our internal relationships. The minimum and maximum projected annualized salary for this position is: $110,214.00 to $186,277.20. Additional compensation may be possible based on experience and skills.

Cloud Security Engineer is responsible for establishing, monitoring, analyzing and maintaining EagleBank's cloud security controls. This role will be focused on maintaining the security of the EagleBank Azure cloud environment and supporting network infrastructure / devices. Assignments may include creation and timely execution of project plans, tool installations, and upgrades. Deployment and oversight of Conditional Access Policies and Microsoft Cloud Security tooling are primary responsibilities. All tasks will be executed integrating risk-based threat intelligence into the operational environment. The role will also perform triage and analysis of cloud security events escalated from the Tier-1 and Tier-2 support teams, and other duties as assigned.

Requirements:

Bachelor's Degree in Arts/Sciences (BA/BS) Computer Science, Information Technology or related focused technical training
• 5 years Experience in a combination of information security operations/engineering/administration with emphasis on deploying security products
• 5 years Experience designing and implementing information security technologies in the cloud
• 3 years Experience deploying and managing Azure conditional access policies to implement cloud security controls
• 3 years Hands-on experience managing information security in Microsoft Azure and Microsoft O365 virtualized environments
• Microsoft Certified: Azure Security Engineer Associate Level (AZ-500)
• Expert knowledge of Azure cloud security tools (MS Sentinel, MS Defender)
• Expert knowledge of Azure Security Center and Azure Portal
• Expert knowledge of Microsoft OS and Intune MMD deployment / management
• Ability to independently configure and work on MS Azure Security Center and O365 Security Center
• Intermediate knowledge of non-cloud security tools and integrations (vulnerability management, endpoint, email, web proxy)
• Intermediate knowledge of Microsoft Azure and Microsoft O365 virtualized environment and tools
• Intermediate knowledge of Azure AD (Entra), on-prem AD integration
• Experience supporting Tier-1 and Tier-2 escalations with troubleshooting and working through ServiceNow tickets
• Familiarity with at least one security best practice standards such as the Center for Internet Security (CIS) Top 20 Critical Security Controls or NIST Cybersecurity Framework, or equivalent

Preferences:

• 2 years Hands-on experience with information security on other public clouds (e.g., AWS) environment
• One or more of the following certifications (or equivalent):
  • SANS GIAC Certifications, such as GSE, GIAC, or Security Expert
  • Microsoft Cloud Certifications: Microsoft 365 Certified Security Administrator Associate (MS-500), Microsoft Certified Security Operations Analyst Associate (SC-200), Microsoft Certified Identity and Access Administrator Associate (SC-300), or Microsoft Certified Information Protection Administrator Associate (SC-400)
• Intermediate knowledge of TCP/IP networking: networking topology, protocols, technology (routers, switches, firewalls) and services

Don't meet all the requirements? We encourage you to still apply if you think you are the right person to join our community. We are always interested connecting with people inspired by our mission and values. If you aren't hired for this position, your resume will remain available for the next year and might be considered for future openings. Note: You can update your resume as often as needed.