SMX
Overview
Security Engineer SMX is seeking a Security Engineer to support a State & Local customer. You will support both Security Operations Center (SOC) and Identity & Access Management (IAM) teams providing mid-level technical support for critical security systems and processes within the customer's managed network supporting executive branch agencies and services. This hybrid role is responsible for helping investigate SIEM alerts, maintaining endpoint and identity controls, perform Workday provisioning reviews, and helping integration of Defender for Identity and Sentinel to reduce workload on SOC and IAM teams for continuity of daily execution of security functions. This is a hybrid role supporting a Warwick, RI customer. Responsibilities
Investigate and triage alerts from the customer’s MDR, SIEM, and security telemetry platforms (e.g., CrowdStrike Falcon, Microsoft Defender, QRadar / Sentinel) Participate in incident response activities including evidence collection, ticket management, and coordination with SOC analysts and agency IT staff Monitor dashboards and system health of security tools to ensure continuous visibility and effectiveness Support Entra ID (Azure AD) and Active Directory (on-prem) conditional access configurations, risky user alerts, and daily account troubleshooting Assist with provisioning and deprovisioning tasks tied to Workday Coordinate with the IAM team to implement and enforce MFA, SSO, and least privilege access models Support implementation tasks of Defender for Identity Support management of Domain Controllers (DCs) and associated trust relating to AD Assist in validating remediation of misconfigured identities, stale accounts, or privilege violations Maintain accurate documentation, including technical runbooks and access control procedures Participate in tabletop exercises and assist in knowledge transfer across teams May participate in after-hours on-call rotations for critical incident response support Supports Centers of Excellence initiatives like Zero Trust Architecture Travel to agency locations or on-site support at the EOC may be required Required Technologies and Skills
2+ years of experience in information security, technical support, or IT operations Hands-on experience with : Microsoft Entra ID / Azure AD CrowdStrike Falcon or similar MDR platform Microsoft Sentinel or equivalent SIEM Microsoft Defender for Identity (and other lines like ente?; for cloud apps, endpoint, etc.) Workday ERP (Finance and HR module security functions) Working knowledge of IAM practices, identity lifecycle, MFA, and SSO Familiarity with basic scripting for automation (e.g., PowerShell, Python) Understanding of common control frameworks such as NIST 800-53, CIS Benchmarks Strong attention to detail, ticketing discipline, and ability to follow through on assigned tasks Preferred Skills and Qualifications
Certifications such as CompTIA Security+, Microsoft Certified: Identity and Access Administrator, or Azure Fundamentals are a plus Administrative Details
Application deadline 9-5-2025 The proposed salary for this position is : $96,400 - $160,600 USD
#J-18808-Ljbffr
Security Engineer SMX is seeking a Security Engineer to support a State & Local customer. You will support both Security Operations Center (SOC) and Identity & Access Management (IAM) teams providing mid-level technical support for critical security systems and processes within the customer's managed network supporting executive branch agencies and services. This hybrid role is responsible for helping investigate SIEM alerts, maintaining endpoint and identity controls, perform Workday provisioning reviews, and helping integration of Defender for Identity and Sentinel to reduce workload on SOC and IAM teams for continuity of daily execution of security functions. This is a hybrid role supporting a Warwick, RI customer. Responsibilities
Investigate and triage alerts from the customer’s MDR, SIEM, and security telemetry platforms (e.g., CrowdStrike Falcon, Microsoft Defender, QRadar / Sentinel) Participate in incident response activities including evidence collection, ticket management, and coordination with SOC analysts and agency IT staff Monitor dashboards and system health of security tools to ensure continuous visibility and effectiveness Support Entra ID (Azure AD) and Active Directory (on-prem) conditional access configurations, risky user alerts, and daily account troubleshooting Assist with provisioning and deprovisioning tasks tied to Workday Coordinate with the IAM team to implement and enforce MFA, SSO, and least privilege access models Support implementation tasks of Defender for Identity Support management of Domain Controllers (DCs) and associated trust relating to AD Assist in validating remediation of misconfigured identities, stale accounts, or privilege violations Maintain accurate documentation, including technical runbooks and access control procedures Participate in tabletop exercises and assist in knowledge transfer across teams May participate in after-hours on-call rotations for critical incident response support Supports Centers of Excellence initiatives like Zero Trust Architecture Travel to agency locations or on-site support at the EOC may be required Required Technologies and Skills
2+ years of experience in information security, technical support, or IT operations Hands-on experience with : Microsoft Entra ID / Azure AD CrowdStrike Falcon or similar MDR platform Microsoft Sentinel or equivalent SIEM Microsoft Defender for Identity (and other lines like ente?; for cloud apps, endpoint, etc.) Workday ERP (Finance and HR module security functions) Working knowledge of IAM practices, identity lifecycle, MFA, and SSO Familiarity with basic scripting for automation (e.g., PowerShell, Python) Understanding of common control frameworks such as NIST 800-53, CIS Benchmarks Strong attention to detail, ticketing discipline, and ability to follow through on assigned tasks Preferred Skills and Qualifications
Certifications such as CompTIA Security+, Microsoft Certified: Identity and Access Administrator, or Azure Fundamentals are a plus Administrative Details
Application deadline 9-5-2025 The proposed salary for this position is : $96,400 - $160,600 USD
#J-18808-Ljbffr