Optomi, in partnership with a leading consulting organization, is looking for a Senior Systems Security Engineer.
WHAT YOU'LL DO Security Operations (Day-to-Day)
- Serve as the primary security operations resource across the organization's global sites and divisions
- Own and execute patch management, asset management, vulnerability scanning, and recurring security control reviews
- Manage and monitor security tooling (firewalls, IDS/IPS, endpoint protection, SIEM) and coordinate with managed security partners
- Deploy and manage security tool agents across the environment
- Conduct access control reviews and ensure consistent enforcement of least privilege principles
- Administer the security awareness and training program; ensure all end users receive regular, relevant training
- Coordinate security integration across IT and business functions, ensuring security is embedded in operations — not bolted on
- Administer and optimize Microsoft M365 services, including Exchange Online, Teams, SharePoint, OneDrive, and Intune
- Manage identity infrastructure: Active Directory, Azure AD / Entra ID, Conditional Access policies, PIM, and MFA
- Plan and lead migration projects from legacy or third-party platforms to Microsoft M365
- Develop and maintain PowerShell automation scripts for administration, provisioning, and reporting
- Troubleshoot complex M365 issues; provide root-cause analysis and lasting fixes
- Create and maintain clear documentation for system configurations, change procedures, and runbooks
- Mentor junior IT staff on M365 administration and security best practices
- Under the direction of the CIO and vCISO, establish, track, and report on security KPIs and metrics
- Participate in ongoing security governance activities, including regular leadership briefings
- Maintain documentation for security policies, procedures, and protocols
- Ensure consistent security practices across all company locations and divisions
- Support compliance requirements, including data protection and applicable regulatory frameworks
- Lead response efforts during security incidents — containment, eradication, and recovery
- Conduct post-incident analysis; identify root causes and implement preventive measures
- Maintain an up-to-date incident response plan; ensure team members understand their roles
- Conduct regular risk assessments and vulnerability analyses to proactively surface and mitigate threats
- Monitor threat intelligence feeds; stay current on emerging cybersecurity threats and vulnerabilities
- Translate threat intelligence into actionable recommendations that improve security posture
- Collaborate with external partners (cybersecurity firms, ISACs, relevant government agencies) to share intelligence and best practices
WHAT WE ARE LOOKING FOR Required
- 5+ years of experience in systems engineering and/or information security operations, with demonstrated depth in both disciplines
- Hands-on expertise with Microsoft M365 platform administration — Exchange Online, Teams, SharePoint, OneDrive, Intune
- Experience migrating and integrating with M365, including tenant-to-tenant and other platforms to M365.
- Strong command of identity and access management: Active Directory, Entra ID, Conditional Access, PIM, MFA, SSO
- Proficiency in PowerShell scripting for automation, reporting, and M365 administration
- Experience with core security operations: patch management, vulnerability management, SIEM monitoring, endpoint protection
- Solid networking fundamentals: DNS, DHCP, SSL/TLS, firewall concepts
- Ability to manage multiple concurrent priorities in a fast-paced, multi-site environment
- Strong communicator — able to translate technical risk into plain language for non-technical stakeholders
- Experience in a manufacturing, industrial, or multi-site enterprise environment
- Familiarity with Microsoft Defender suite (Defender for Endpoint, Defender for Identity, Defender for Office 365)
- Experience with Microsoft Purview, DLP policies, and Secure Score management
- Exposure to hybrid environments (on-prem AD + Azure / Entra ID)
- Knowledge of GDPR and other applicable data protection regulations
- Bachelor's degree in Information Security, Computer Science, or related field (or equivalent practical experience)
- Microsoft: MS-500 (M365 Security Administrator), SC-300 (Identity & Access Administrator), AZ-500 (Azure Security Engineer)
- Security: CISSP, CISM, CompTIA Security+, CEH
