Security Engineer

THIS IS AN IN-PERSON ROLE, 5 DAYS A WEEK, WITH A DAILY COMMUTE TO WALLINGFORD, CT. DO NOT APPLY IF YOU CANNOT GET TO WALLINGFORD, CT 5 DAYS A WEEK! NO HYBRID OR REMOTE WORK!

Job Title: Security Engineer (Future Security Practice Lead)

Reports To: Operations Manager

About the Role

We are seeking a Security Engineer who is ready to roll up their sleeves and help build a world-class security practice from the ground up.

This role is both hands-on and strategic. You’ll serve as the technical lead on security initiatives while developing into a future Security Manager or Practice Lead — helping define strategy, build a team, and guide clients through security transformation.

If you want to build something meaningful and own it, this is that opportunity.

Key Responsibilities

Phase 1: Hands-On Security Implementation (The Doer)

• Own daily security operations: endpoint protection, patch management, identity & access controls, vulnerability scanning, logging, and monitoring
• Deploy and manage tools such as SentinelOne, Huntress, Microsoft Defender, Azure AD, Intune, Conditional Access, and MFA
• Perform internal security assessments and support compliance initiatives (CMMC, ITAR, NIST, HIPAA)
• Evaluate and implement SIEM, EDR, email filtering, and threat intelligence tools
• Respond to security events and manage incident resolution and reporting
• Partner with service desk and engineering teams to remediate risks and enforce security baselines
• Assist in vendor and tool selection as we scale and standardize

Phase 2: Strategic Growth & Leadership (The Builder)

• Define and document security standards, baselines, and SOPs
• Contribute to service packaging, pricing, and go-to-market strategy
• Establish governance processes and client risk scoring models
• Hire, mentor, and manage junior security team members over time
• Represent security initiatives in client QBRs and leadership discussions

Qualifications

• Must-Have Experience
• 3–5 years of hands-on cybersecurity experience (MSP, SOC, or IT services preferred)
• Experience with endpoint protection (SentinelOne, Defender, Huntress), SIEM tools, firewalls, email security, and patching platforms
• Strong experience in Microsoft 365 and Azure AD environments
• Knowledge of compliance frameworks (NIST 800-171, CMMC, ITAR, HIPAA, SOC 2)
• Proven ability to own and execute security projects end-to-end

Preferred Qualifications

• Certifications such as Security+, CISSP, SSCP, CISA, or Microsoft SC-200
• Experience with MDR/EDR/XDR, vulnerability management, or security automation (PowerShell, scripting)
• Experience documenting policies and working with GRC tools
• Previous experience mentoring or leading technical team members

Soft Skills

• Entrepreneurial mindset — thrives in a “build mode” environment
• Strong communicator who can translate technical risk into business impact
• Detail-oriented with strong documentation and follow-through
• Growth-driven with a long-term focus on leadership

Job Type: Full-time

Benefits:

• 401(k)
• 401(k) matching
• Dental insurance
• Health insurance
• Health savings account
• Paid time off
• Vision insurance