Senior Cybersecurity Operations Engineer - Onsite in Washington, DC (20024)

This job is onsite in Washington, DC (20024)Selected candidate must be able to get a Public Trust clearance. We are seeking a Senior Cybersecurity Operations Engineer to support a federal client in maintaining and strengthening enterprise cybersecurity operations across a hybrid on-premises and cloud environment. This role is responsible for security engineering, continuous monitoring, threat detection, incident response, and the ongoing enhancement of cybersecurity operations within a highly regulated federal environment.The ideal candidate will have strong experience supporting Microsoft-based infrastructure, cloud security, network security, and enterprise security operations tools. This position requires the ability to operate independently with minimal supervision while collaborating closely with cybersecurity leadership and cross-functional IT teams.Key ResponsibilitiesPerform ongoing security assessments of systems, networks, and cloud environments in alignment with NIST, FISMA, CISA, and other federal cybersecurity standards and directivesIdentify security risks and recommend corrective actions to improve overall security posture and compliancePerform systems engineering, maintenance, and security hardening activities following established operational standardsImplement, support, and troubleshoot security solutions across LAN, wireless, firewall, and Microsoft Azure environmentsAdminister and optimize cybersecurity tools including SIEM, Syslog, EDR, NDR, firewalls, Microsoft 365 security, Defender for Cloud, and Continuous Diagnostics and Mitigation (CDM) platformsMonitor security events, system alerts, vulnerabilities, and suspicious activity through log analysis and proactive threat huntingSupport the development and enhancement of Security Orchestration, Automation, and Response (SOAR) capabilitiesExecute incident response activities including investigation, containment, remediation support, documentation, and reporting in accordance with established response plansDevelop and maintain incident handling procedures, standard operating procedures, and security operations documentationEnsure logging, monitoring, and data retention practices support effective investigations and operational visibilityGenerate security posture reports, operational metrics, and threat reporting to support leadership decision-making and risk managementCollaborate with cybersecurity leadership, including CISO and Privacy Officer, to strengthen cybersecurity and privacy controlsPartner with infrastructure and application teams to ensure security requirements are integrated into enterprise systems and servicesRequired QualificationsBachelor’s degree in Cybersecurity, Information Technology, Computer Science, or related field preferred; equivalent experience accepted5+ years of experience in cybersecurity operations, security engineering, SOC operations, or incident responseGovernment experience requiredStrong knowledge of NIST, FISMA, CISA directives, and federal cybersecurity standardsHands-on experience with:Microsoft Azure, Entra ID, and Microsoft 365 security environmentsCisco networking and firewall technologiesSIEM, Syslog, EDR, NDR, and security monitoring platformsMicrosoft Defender for Cloud and CDM toolsPowerShell scripting and automationLinux operating system administrationStrong experience with incident response, threat detection, threat hunting, and security investigationsExperience supporting continuous monitoring and security operations reportingExperience developing SOPs, incident handling procedures, and security documentationStrong analytical, troubleshooting, and technical documentation skillsAbility to work independently in a structured federal environmentDesired QualificationsExperience supporting SOAR platforms and security automation initiativesExperience with cloud security architecture in hybrid environmentsFamiliarity with disaster recovery and business continuity planningExperience supporting executive-level security reporting and metricsFamiliarity with advanced identity management and MFA governance modelsRelevant cybersecurity certifications (Security+, CISSP, Azure Security, or equivalent)Powered by JazzHR