Cybersecurity Engineer

Phoenix Investors is seeking a Cybersecurity Engineer to defend its digital assets and information systems from evolving threats. This on-site role in Milwaukee, Wisconsin works under the technical direction of the Senior Network and Security Administrator to operate and refine security controls across the environment.

Responsibilities

• Monitor security logs and alerts from SIEM platforms and Microsoft Defender XDR, conducting investigations, triage, and incident responses as needed.
• Operate and fine-tune endpoint detection and response coverage (Microsoft Defender, CrowdStrike) and assist with firewall, IDS/IPS, and Fortinet edge controls under senior direction.
• Conduct vulnerability scans, track patches and remediation efforts, and tune alerts to reduce false positives while maintaining detection coverage.
• Assist with Microsoft Entra identity and access management, including conditional access, MFA, identity protection, and least-privilege roles aligned with Zero Trust principles.
• Maintain secure, compliant Microsoft 365 configurations across Exchange Online, SharePoint/OneDrive, and Teams, ensuring hardened and consistent settings.
• Develop, deploy, and tune DLP, sensitivity labeling, encryption, and insider-risk controls in Microsoft Purview across email, endpoints, and cloud environments.
• Prevent data loss through unsanctioned Shadow AI while enabling approved AI services such as Microsoft 365 Copilot for safe and productive use.
• Support compliance with relevant frameworks and regulations (ISO 27001, NIST, SOC 2, GDPR where applicable).
• Perform risk and control-maturity assessments, track remediation, and support third‑party/partner risk reviews; provide audit-ready evidence.
• Assist with investigation, containment, and recovery during security incidents under the direction of the senior owner.
• Contribute to incident response runbooks and tabletop exercises; support business continuity and disaster recovery readiness.

Requirements

• Bachelor’s degree in information security, IT, or computer science, or equivalent experience.
• Three to five years or more of cybersecurity experience.
• Hands-on experience with security tooling such as SIEM, endpoint/EDR, IDS/IPS, firewalls, DLP, antivirus, and vulnerability scanners.
• Working knowledge of the Microsoft security stack (Defender XDR, Purview) and administration and security of Microsoft Entra and Microsoft 365.
• Experience supporting incident response and compliance with frameworks like ISO 27001, NIST, or SOC 2.
• Strong problem-solving and communication skills; able to follow technical direction while delivering quality results.
• A practical, business-minded approach balancing risk reduction with cost and operational impact.

Technologies

• SIEM platforms for security monitoring
• Microsoft Defender XDR
• CrowdStrike endpoint protection
• Fortinet firewall and edge security
• Microsoft Entra identity and access management
• Microsoft Purview data protection and governance
• Microsoft 365 security and administration across Exchange Online, SharePoint/OneDrive, and Teams
• Microsoft 365 Copilot and related AI services

Benefits

• 401(k) with employer match
• Medical, dental, and vision insurance
• Paid time off
• Holidays
• Company-paid parking
• Company-provided breakfast and lunch

Perks

• 401(k) plan with employer matching
• Comprehensive medical, dental, and vision coverage
• Paid time off and observed holidays
• On-site parking provided at no cost
• Company-provided breakfast and lunch

Location

Milwaukee, Wisconsin — on-site