All Jobs
All Jobs
Security Engineer Hybrid - US

Security Engineer

Full Time • Hybrid - US
Job Overview: 

Cortavo is hiring a senior, hands-on Security Engineer to design, implement, and scale security across internal platforms and customer environments. This role secures on-premises, data center, and cloud workloads with primary focus on networking, identity, Microsoft 365, endpoint security, and infrastructure hardening. You will own security architecture, preventative controls, detection engineering, and automation, translating frameworks such as SOC 2, CMMC, NIST, and PCI into practical, auditable technical controls. 
 
This role serves as the dedicated security escalation point for our Service Delivery team and customer-facing technical expert for assessments, audits, and risk discussions. You will partner closely with Engineering, Service Delivery, Product, and Solutions teams to embed security by design into Cortavo’s services while providing hands-on incident response and security operations support. 

This role reports to the Engineering Manager.

Responsibilities: 
  • Security Operations & Incident Response 
    • Serve as primary escalation point for all security-related tickets from Service Delivery, including compromised accounts (email, credential issues), suspicious activity, security alerts, and MFA/Conditional Access bypass requests 
    • Own critical compromising or breached incidents end-to-end, including investigation, remediation, mitigation application, and post-incident security hardening 
    • Conduct comprehensive After Action Reviews (AARs) and Root Cause Analyses (RCAs) for all security-related incidents in collaboration with Service Delivery leadership 
    • Perform security and risk assessments for customer-facing networks, infrastructures, and services 
    • Manage security tool ecosystem including Inky email protection tuning, BullPhish campaign management, and evaluation of new security technologies 
    • Serve as the subject-matter-expert for all things security and compliance for both Cortavo and our customer base 
  • Proactive Security & Client Engagement 
    • Conduct proactive client security reviews, analyzing Azure/Intune compliance reports and Microsoft Security Scores 
    • Lead Security Gap Assessments for customers (offered as add-ons to Operational Maturity Assessments, provided to VIP clients, or sold/upsold to new and existing customers) 
    • Review Security Scores in Microsoft 365 and actively apply recommendations and remediations to improve customer security posture 
    • Lead client security meetings, particularly with high-touch or frustrated customers, to address security concerns and build confidence 
    • Drive security hardening initiatives including Conditional Access refinements, Intune policy rollouts, MFA enforcement, and endpoint security via Datto and Crowdstrike EDR 
    • Prepare security reporting for Executive Business Reviews (EBRs) and Quarterly Business Reviews (QBRs) demonstrating how we’ve improved customer environments 
  •  Application and Infrastructure Security Management 
    • Collaborate with Engineering Manager on Cortavo’s core internal infrastructure (network, servers, and data) ensuring optimal performance, reliability, and security 
    • Evaluate and optimize technology stack to ensure efficient security, meeting business objectives and compliance assurance 
    • Work with Product Engineer and leadership to evaluate security tech stack, offer improvements, recommend tools, and help implement security technologies 
    • Identify security gaps in tooling and processes, and translate them into roadmap items, architectural improvements, or productized capabilities 
    • Drive platform security and compliance initiatives, ensuring infrastructure meets or exceeds SOC 2 and CMMC requirements by design 
    • Collaborate with engineers on secure implementation practices across all technical projects 
    • Build and refine security processes and operational frameworks to support scalable security operations 
    • Develop tech solutions and products ready to roll out for new Cortavo services, ensuring offerings have optimal security solutions 
    • Strong understanding of application security standards and practices, such as the OWASP Top 10 
    • If/when security vulnerability scanning tools are implemented, serve as the Accountable party in the RACI model to oversee, own, and create tickets for remediation items 
  • Compliance and Risk Assessment Ownership 
    • Perform assessments using various frameworks (NIST, SOC2, CMMC, FFIEC, PCI, etc.) to identify gaps and remediate deficiencies 
    • Ensure systems and applications are implemented with compensating controls to meet regulatory requirements (e.g. SOC2, HIPAA, FFIEC, PCI) 
    • Lead Cyber Insurance Resilience efforts for both internal Cortavo operations and external client environments 
    • Collaborate with Project Management and IT Operations on Privileged Identity Management (PIM) and least privileged access initiatives 
  • Training, Documentation & Team Support 
    • Develop and deliver security training programs for internal teams including Service Delivery, Engineering, Product, Solutions, and Project Management on security red flags, escalation criteria, threat recognition, and secure development practices 
    • Provide security awareness training and education to customer organizations, including phishing campaign debriefs, compliance training, and executive security briefings 
    • Create and maintain knowledge base articles for common security scenarios to enable first-line triage and reduce escalations across all technical teams 
    • Define clear escalation criteria and paths so all teams know exactly when and how to engage security resources 
    • Maintain accurate, current, and accessible technical documentation, conduct internal and external product demos, and ensure transparency, auditability, and compliance with internal and external standards 
    • Report to leadership on security projects, initiatives, and proactive work being performed 
    • Drive team roadmaps by staying up to date with the latest threats and independently identify areas of security risk 
    • Think beyond reactive security measures, take a proactive approach to identifying potential vulnerabilities and threats. Use advanced tools, AI, machine learning, or custom-built scripts to anticipate future risks and mitigate them before they affect the infrastructure
 

Required Skills & Qualifications: 
  • Minimum 5-7 years of IT systems engineering experience in an MSP or multi-tenant environment 
  • Minimum 4 years of IT Security engineering, Cyber Security Architecture, or compliance infrastructure roles 
  • Proven experience handling security incidents and compromises in production environments 
  • Technical credibility in a security engineering role with demonstrated impact within multiple domains: Zero Trust/Conditional Access approaches, Endpoint Security, Data Protection, Mobile, Cloud Security 
  • Strong organizational, research, analytical and problem-solving skills to evaluate situations, make recommendations, and take effective action 
  • Ability to articulate complex technical concepts or scenarios to both technical and non-technical audiences, including frustrated customers 
  • Able to define, communicate, and present executive-level proposals of the risk-based business impact approach to cybersecurity 
  • Expert knowledge of security principles, solutions, tools, methodologies, and techniques 
  • Strong ability to partner with operations stakeholders (Service Delivery, Engineering, Product) to define platform needs and drive adoption 
  • Experience establishing platform governance, compliance standards, and security controls 
  • Expert knowledge of Networking and Firewalls, particularly with Cisco Meraki 
  • Expert knowledge in Microsoft 365, Azure AD, Exchange Online, Teams, and Microsoft Endpoint Manager (Intune) 
  • Strong experience with MFA implementation and Conditional Access policies 
  • Experience with security tools including email protection (e.g., Inky), EDR solutions (e.g., Crowdstrike), and RMM platforms (e.g., Datto) 
  • Proficiency with observability tools (Prometheus, Grafana, OpenTelemetry, Datadog) 
  • Knowledge in Infrastructure as Code (IaC) tools, such as Terraform, Puppet, Ansible 
  • Proficiency in Microsoft Server environments 
  • Proven experience in secure software development principles in various languages (Java, Go, JavaScript, Python, etc.) 
  • Experience conducting After Action Reviews (AARs) and Root Cause Analyses (RCAs) 
  • Customer-facing experience with ability to lead security assessments and discussions with executive stakeholders 

Preferred Qualifications: 
  • Bachelor’s degree in computer science, Information Security, or related field 
  • Security certifications such as CISSP, CISM, CEH, Security+, or GIAC certifications 
  • Microsoft Security certifications, particularly:  
  • SC-200: Microsoft Security Operations Analyst 
  • SC-300: Microsoft Identity and Access Administrator 
  • SC-400: Microsoft Information Protection Administrator 
  • MS-500: Microsoft 365 Security Administration 
  • Cloud security certifications (Azure Security Engineer Associate, AWS Security Specialty) 
  • Compliance certifications (ISO 27001 Lead Auditor, CMMC-RP, or similar) 
  • Experience with ticketing and PSA systems (Autotask, ConnectWise, Jira) 
  • Experience working in an MSP or MSSP environment 
  • Familiarity with SIEM platforms (Sentinel, Splunk, etc.) 
  • Experience with security frameworks (NIST CSF, CIS Controls, MITRE ATT&CK) 
  • Previous experience conducting security assessments or penetration testing 
 
Estimated Usage of Time 
  • 40% Security Operations & Incident Response  
  • 30% Infrastructure Security  
  • 20% Compliance  
  • 10% Training 

Work Environment
  • Competitive salary, as well as employer, contributed health benefits
  • Hybrid work schedule
  • Access to a Company cell phone plan
  • A seat on an energetic team that collaborates and pushes each other to be better
  • A fast-paced but cooperative environment with endless potential for growth
  • Celebration events for team and Company successes throughout the year

Flexible work from home options available.

We are an equal opportunity employer and all qualified applicants will receive consideration for employment without regard to race, color, religion, sex, national origin, disability status, protected veteran status, or any other characteristic protected by law.





(if you already have a resume on Indeed)

Or apply here.

* required fields

Location
Or
Or

U.S. Equal Opportunity Employment Information (Completion is voluntary)

We are an equal opportunity employer and all qualified applicants will receive consideration for employment without regard to race, color, religion, sex, national origin, disability status, protected veteran status, or any other characteristic protected by law.

You are being given the opportunity to provide the following information in order to help us comply with federal and state Equal Employment Opportunity/Affirmative Action record keeping, reporting, and other legal requirements.

Completion of the form is entirely voluntary. Whatever your decision, it will not be considered in the hiring process or thereafter. Any information that you do provide will be recorded and maintained in a confidential file.

Form CC-305
OMB Control Number 1250-0005
Expires 4/30/2026

Why are you being asked to complete this form?

We are a federal contractor or subcontractor. The law requires us to provide equal employment opportunity to qualified people with disabilities. We have a goal of having at least 7% of our workers as people with disabilities. The law says we must measure our progress towards this goal. To do this, we must ask applicants and employees if they have a disability or have ever had one. People can become disabled, so we need to ask this question at least every five years.

Completing this form is voluntary, and we hope that you will choose to do so. Your answer is confidential. No one who makes hiring decisions will see it. Your decision to complete the form and your answer will not harm you in any way. If you want to learn more about the law or this form, visit the U.S. Department of Labor’s Office of Federal Contract Compliance Programs (OFCCP) website at www.dol.gov/ofccp.

How do you know if you have a disability?

A disability is a condition that substantially limits one or more of your “major life activities.” If you have or have ever had such a condition, you are a person with a disability. Disabilities include, but are not limited to:

  • Alcohol or other substance use disorder (not currently using drugs illegally)
  • Autoimmune disorder, for example, lupus, fibromyalgia, rheumatoid arthritis, HIV/AIDS
  • Blind or low vision
  • Cancer (past or present)
  • Cardiovascular or heart disease
  • Celiac disease
  • Cerebral palsy
  • Deaf or serious difficulty hearing
  • Diabetes
  • Disfigurement, for example, disfigurement caused by burns, wounds, accidents, or congenital disorders
  • Epilepsy or other seizure disorder
  • Gastrointestinal disorders, for example, Crohn's Disease, irritable bowel syndrome
  • Intellectual or developmental disability
  • Mental health conditions, for example, depression, bipolar disorder, anxiety disorder, schizophrenia, PTSD
  • Missing limbs or partially missing limbs
  • Mobility impairment, benefiting from the use of a wheelchair, scooter, walker, leg brace(s) and/or other supports
  • Nervous system condition, for example, migraine headaches, Parkinson’s disease, multiple sclerosis (MS)
  • Neurodivergence, for example, attention-deficit/hyperactivity disorder (ADHD), autism spectrum disorder, dyslexia, dyspraxia, other learning disabilities
  • Partial or complete paralysis (any cause)
  • Pulmonary or respiratory conditions, for example, tuberculosis, asthma, emphysema
  • Short stature (dwarfism)
  • Traumatic brain injury

PUBLIC BURDEN STATEMENT: According to the Paperwork Reduction Act of 1995 no persons are required to respond to a collection of information unless such collection displays a valid OMB control number. This survey should take about 5 minutes to complete.

If you believe you belong to any of the categories of protected veterans listed below, please indicate by making the appropriate selection. As a government contractor subject to Vietnam Era Veterans Readjustment Assistance Act (VEVRAA), we request this information in order to measure the effectiveness of the outreach and positive recruitment efforts we undertake pursuant to VEVRAA. Classification of protected categories is as follows:

A "disabled veteran" is one of the following: a veteran of the U.S. military, ground, naval or air service who is entitled to compensation (or who but for the receipt of military retired pay would be entitled to compensation) under laws administered by the Secretary of Veterans Affairs; or a person who was discharged or released from active duty because of a service-connected disability.

A "recently separated veteran" means any veteran during the three-year period beginning on the date of such veteran's discharge or release from active duty in the U.S. military, ground, naval, or air service.

An "active duty wartime or campaign badge veteran" means a veteran who served on active duty in the U.S. military, ground, naval or air service during a war, or in a campaign or expedition for which a campaign badge has been authorized under the laws administered by the Department of Defense.

An "Armed forces service medal veteran" means a veteran who, while serving on active duty in the U.S. military, ground, naval or air service, participated in a United States military operation for which an Armed Forces service medal was awarded pursuant to Executive Order 12985.

BENEFITS & PERKS AT A GLANCE

Offered to full time employees only

Employee Benefits
Cortavo recognizes that employees have diverse needs and that is why the Company is able to offer multiple and very comprehensive benefit plans to include, medical, dental, vision, FSA, Health Care & Dependent FSA, and Basic Life AD&D.
401(k)
Save for your retirement with pre-tax contributions with retirement plans offered through Transamerica. 
Short & Long Term Disability
The Company is pleased to offer both Short Term (Voluntary election) and Long Term Disability which is 50% company paid.
Unlimited Paid Time Off (PTO)
Cortavo understands the importance of work-life balance and recognizes employees have diverse needs for time off. The Company offers Unlimited Paid Time Off (PTO)  in lieu of personal days, floating holidays, and vacation days.
Fitness & Wellness Program
The Company offers a wellness plan that includes unlimited access to a personal trainer. The personal trainer will work to create customized exercise programs and provide dietary counsel to encourage a healthy lifestyle for all interested employees.
Cell Phone Plan
The Company offers service on the Company’s Verizon cell phone plan.  This benefit is limited to one per employee and participating employees must transfer their current number over to the Company plan. 
Student Debt Relief
The Company is excited to offer an annual $3,000 student loan payment for employees. The Company will mail a $3,000 check directly to each participating employee’s student loan company.
Child Care Expense Relief
The Company offers a $2,000 child care payment for employees.  The Company will submit a $2,000 payment directly to each participating employee’s child care provider.