Cloud Security Engineer

Cloud Security Engineer

Position Location

Remote – work virtually from anywhere in the United States

Job Summary

The Cloud Security Engineer is responsible for the hands-on implementation, configuration, and ongoing management of security controls across ai2io’s Microsoft 365 and Azure environments. Working under the direction of the Information Security Manager, this role translates security strategy and architecture decisions into operational reality across a multi-tenant managed services environment.

Key Responsibilities

• Implements and maintains security controls across Microsoft Defender, Purview, Entra ID, Intune, and Azure services.
• Remediates security gaps identified through risk assessments, vulnerability scans, compliance audits, and stakeholder security reviews.
• Supports security operations by tuning alerts, building automation, developing runbooks, and providing Tier 2–3 incident response support.
• Collaborates with the Rapid7 MDR team to ensure effective detection coverage, incident escalation, and agent health across all managed environments.
• Assists in maintaining compliance with organizational security standards and applicable frameworks (NIST CSF, CIS Benchmarks, SOC 2).

Essential Functions

Security Control Implementation & Hardening

• Deploy, configure, and tune Microsoft Defender for Endpoint, Identity, Office 365, and Cloud Apps across all managed tenants.
• Implement and maintain endpoint hardening baselines through Intune configuration profiles, compliance policies, and security baselines.
• Configure and manage Microsoft Purview controls including DLP policies, sensitivity labels, retention policies, and insider risk indicators.
• Implement privileged access controls and hardened administrative workstation configurations as directed by the Information Security Manager.
• Deploy and manage Azure security controls including Azure Policy, network security groups, Key Vault configurations, and Private Link implementations.

Security Operations & Incident Support

• Monitor and triage security incidents