Cybersecurity Engineer Principal

Responsibilities

• Manage and maintain Azure AD/Entra ID, including hybrid identity configurations and integrations with on-premises Active Directory.
• Configure and optimize Azure AD for secure access, identity governance, conditional access, and multi-factor authentication (MFA).
• Implement and maintain Single Sign-On (SSO) across cloud-based applications for seamless access.
• Monitor Azure AD health and resolve synchronization or performance issues.
• Administer and optimize Azure infrastructure services, including virtual machines, networking, storage, and identity services.
• Support Azure-based applications with proper security measures such as RBAC, identity management, and privileged identity protection.
• Collaborate with cloud architects and development teams to design scalable, secure Azure environments aligned to business needs.
• Implement and manage security and compliance features such as Data Loss Prevention (DLP), Information Rights Management (IRM), and Conditional Access policies.
• Provide guidance for M365 user provisioning, licensing, and troubleshooting.
• Oversee on-premises Active Directory environments, including domain controllers, group policies, forests, trusts, and replication.
• Implement and manage AD object lifecycle, security groups, user accounts, and service accounts; perform regular audits to ensure security best practices.
• Design high-availability AD architectures to minimize downtime and support disaster recovery readiness.
• Administer identities through Okta Identity Management and implement automation using Okta Workflows; manage Okta Federation across systems.
• Ensure compliance with corporate security policies and frameworks such as GDPR, HIPAA, and SOC2; participate in security audits and incident response.
• Proactively identify and mitigate security risks via continuous monitoring, patch management, and system hardening.
• Perform monitoring, diagnostics, and performance tuning for AD, Entra ID, Azure, and M365 environments; troubleshoot performance issues to minimize business impact.
• Develop automation and scripting (PowerShell, Azure CLI) to improve operational efficiency; create and maintain documentation for configurations and procedures.
• Train and mentor junior engineers, sharing expertise across the IT organization.

Requirements

• Education: Bachelor’s degree; in lieu of degree, 12+ years of related experience.
• Required Experience: 8+ years of related experience.
• Required Skills and Abilities: Cybersecurity engineering with a focus on Active Directory, Azure AD (Entra ID), Azure, Okta Cloud Administration, and Microsoft 365 administration.
• Preferred Skills: Identity management, hybrid cloud environments, and enterprise-scale IT infrastructure; proficiency in PowerShell scripting and automation tools; strong networking knowledge (firewalls, VPNs, DNS).
• Location: Tampa, FL.
• Clearance & Citizenship: Must have an active TS/SCI security clearance; U.S. citizenship required.

Technologies

• Azure AD / Entra ID
• Azure
• Okta Cloud Administration
• Okta Workflows
• Microsoft 365 administration
• PowerShell
• Azure CLI
• Active Directory

Work Requirements

• Experience: 8+ years in related roles; may vary based on training, certifications, or degree.
• Travel: Less than 10%.
• Citizenship: U.S. Citizenship Required.
• Certification: May vary based on training and certifications.

Salary and Benefits

The likely salary range for this position is USD 129,813 - 172,500 per year. This range is not a guarantee of compensation; final pay depends on experience, geographic location, and contractual requirements.