[Hiring] Cybersecurity Engineer II @AEVEX

Role Description

The Cybersecurity Engineer II is a mid-level technical engineering role responsible for implementing and managing security controls across enterprise identity, Microsoft cloud services, and data protection platforms within regulated environments. This role is focused on Entra ID, Microsoft Defender, and Microsoft Purview, supporting secure identity, cloud workload protection, and data governance across GCC High, Azure Government, and AWS GovCloud. Working closely with cybersecurity leadership and architecture, this position plays a key role in enforcing security controls, responding to threats, and ensuring alignment with CMMC Level 2, NIST 800-171, and DFARS requirements.

Essential Functions

• Identity Security & Access Management
  • Implement and manage identity security controls within Entra ID, including Conditional Access, MFA, and access governance.
  • Support enforcement of least privilege, role-based access control (RBAC), and privileged identity management (PIM).
  • Monitor identity-related risks, sign-in activity, and access anomalies, and respond to potential threats.
  • Assist in onboarding and securing users, applications, and external access scenarios.
• Cloud Security (Microsoft & Gov Environments)
  • Configure and maintain security controls across Microsoft 365 GCC High, Azure Government, and AWS GovCloud.
  • Implement and support Microsoft Defender capabilities across identity, endpoint, and cloud workloads.
  • Assist in securing cloud applications, services, and integrations in alignment with enterprise standards.
  • Support secure configuration and continuous monitoring of cloud environments.
• Data Protection & Information Security
  • Implement and maintain Microsoft Purview capabilities including sensitivity labels, DLP policies, and data classification.
  • Support data protection strategies to prevent unauthorized access, sharing, or exfiltration of sensitive information.
  • Assist in monitoring and responding to data-related alerts and policy violations.
  • Ensure proper handling and protection of CUI/FCI within enterprise systems.
• Security Operations & Threat Response
  • Monitor, investigate, and respond to security alerts across identity, cloud, and data protection platforms.
  • Support incident response activities including triage, containment, and remediation.
  • Collaborate with MDR/SOC providers and internal teams during security events.
  • Contribute to improving detection, response, and security monitoring capabilities.
• Vulnerability Management & Secure Configuration
  • Execute vulnerability remediation and system hardening across identity and cloud platforms.
  • Implement secure configurations aligned with enterprise baselines and security architecture guidance.
  • Support continuous improvement of security posture through configuration and control enhancements.
• Compliance & Audit Support
  • Implement and validate controls aligned to CMMC Level 2, NIST 800-171, and DFARS requirements.
  • Maintain documentation, configurations, and technical evidence for audits and assessments.
  • Support audit readiness activities and assist in responding to compliance inquiries.
• Collaboration & Continuous Improvement
  • Work closely with Security Architecture, IT, and Systems Administration teams to ensure secure implementation of systems.
  • Contribute to process improvements, automation efforts, and security initiatives.
  • Provide guidance and support to junior engineers and administrators as needed.
  • Continuously expand knowledge of cloud, identity, and security technologies.
• Perform other duties as required.

Qualifications

• Bachelor's degree in Cybersecurity, Computer Science, Information Technology, or other related field.
• Familiarity with regulated environments:
  • CMMC Level 2 / NIST 800-171 required.
  • DFARS requirements and government cloud environments preferred.
• Strong troubleshooting and analytical skills.
• Ability to work independently while aligning with security architecture and leadership direction.

Requirements

• 3+ years of experience in cybersecurity, cloud security, or systems engineering roles.
• Experience with security monitoring, alerting, and incident response.
• Experience with vulnerability remediation and secure configuration practices.
• Experience with cross-platform environments including AWS GovCloud (preferred).
• Hands-on experience with:
  • Microsoft Entra ID (Azure AD), Conditional Access, MFA, and identity governance.
  • Microsoft Defender suite (Endpoint, Identity, Cloud Apps, Office 365).
  • Microsoft Purview (DLP, sensitivity labels, information protection).
  • Microsoft 365 GCC High and/or Azure Government environments.

Physical Requirements

The physical demands described here are representative of those that must be met by an employee to successfully perform the essential functions of this job. Reasonable accommodations may be made to enable individuals with disabilities to perform the essential functions. While performing the duties the employee is:

For the purpose of this summary, occasionally is used to represent up to 1/3 of the time given to the workday, frequently represents 1/3 to 2/3 of the time and constantly represents 2/3 or more of the time.

Security Clearance

• Ability to obtain/maintain a [Secret, Top Secret, etc.] DoD clearance, U.S. Citizenship required.

Benefits

• Comprehensive Medical, Dental, Vision, Disability, and Life insurance group coverage with a portion of the premiums paid by the company.
• Professional development funds.
• Employee Assistance Plan (EAP) with counseling, legal help, child and elder care support, among other benefits for qualified employees.