Senior Information Security Engineer

New York, United States | Posted on 02/09/2026

Senior level MIS Security position with a primary responsibility resolving security-based issues, alerts, and troubleshooting. Work may include incident management and documentation, monitoring alerts, hunting, advisories, bulletins, and other security-related tasks and innovation.

Must have an in-depth understanding of Microsoft operating systems and its security (server and workstation), authentication AD and AAD, authentication methods, networking, email security, Dev Sec Ops , scripting/Power Shell, and IT security concepts and tools.

Must have good documentation and communication skills and be able to operate with minimal supervision. Some years of responsible managing projects, and willingness to be a role model and team leader.

Networking, systems, Azure architecture, and security. Must have some experience in Dev Sec Ops , scripting/Power Shell, SQL, IDS/IPS. Must have knowledge of MFA architectures, O365 architecture, email security, and Azure.

Other IT security related tasks are also involved as well as special project involvement based on demonstrated ability.

Responsible leadership ability in management or supervisory positions.

4 to 10 years

Bachelor’s degree in a Technical Field or Advanced level IT Certification such as CISSP, CPTE, CCIE Security, SCYBER, CISM, CASP, CCSK, CCDP, CCNP Security, CEH, CISA, GSLC, GCED, AZ-500 or equivalent experience.

• Provide guidance and expertise in the field of risk management regarding the protection and security of digital assets in the cloud and on premise.
• Maintain and improve Information Security Architectures in line with the CIA triad.
• Maintain and improve information security policies and procedures; develop security guidelines and safe practices for computing and networking systems and maintain documentation.
• Manage, maintain, and monitor security technologies such as vulnerability scanning solutions, IDS/IPS, anti‑virus technologies, SIEM technologies, host forensics, malware analysis, web application firewalls, and proxy solutions.
• Manage real‑time threat detection technologies to identify and quarantine threats, monitor endpoint security, alerts, and take corrective action.
• Minimize security threats by examining governance, technology infrastructure, and facilities to identify security deficiencies, using risk analysis and following up with corrective action plans.
• Monitor internal control systems to ensure appropriate access levels are maintained, protecting against unauthorized system access, modification, and destruction.
• Review security‑related reports, logs, and occurrences; escalate issues and initiate security response procedures.
• Create and review vulnerability reports, track compliance with vulnerability management policies and procedures in accordance with established ISO 27001:2013 guidelines.
• Research and evaluate emerging technologies to support security technology enhancements, propose technical solutions to management, and coordinate with stakeholders to implement them.
• Review, update, and enforce data security practices within the organization; test for exposures to ensure adherence to guidelines and procedures and work with platform experts to implement remedial measures as appropriate.
• Test security controls and manage the associated remediation of any deficiencies as needed.
• Assess security information, triage and respond to security events, identify false positives, and conduct correlation analysis across numerous internal and external data sources while prioritizing information security incidents.
• Perform project management tasks for security initiatives and projects.
• Manage incident‑handling processes, including implementation of containment, protection, and remediation activities.
• Coordinate the handling and resolution of security incidents, including system intrusions and abuse, and act as a primary point of contact.
• Develop responses to internal and external audits, penetration tests, and vulnerability assessments.
• Support information security training and awareness by providing ideas and content, and assist HR with employee security awareness education and training.
• Manage multiple priorities and deadlines concurrently.
• Willingness to be a team leader and act as a role model.
• Azure and Office 365 experience is needed.