Senior Cloud Security Engineer – Cleared (Polygraph)

Company Description TrueTandem's mission is to be a trusted information technology solutions provider, committed to the success of our customers, communities and employees. To enable this mission, we listen to our customers’ needs, empower our dedicated and talented employees, envision success together, and deliver innovative cost-effective solutions. For our customers, we aim to deliver more power to meet their business outcomes through technology implementation, integration, optimization and customization. We enable some of the most well-known companies, nonprofits and federal agencies in the United States to intelligently plan and develop their applications, modernize their infrastructure and manage their data. TrueTandem is seeking experienced, skilled, and passionate Senior Cloud Security Engineers to support enterprise-wide cybersecurity modernization initiatives for large U.S. Federal government agencies. Ideal candidates will possess deep expertise in Microsoft Azure cloud security, with a focus on proactive monitoring, threat detection, and security analytics. This role requires a strong ability to configure, optimize, and sustain advanced cloud security capabilities such as Microsoft Sentinel and Azure Monitoring, while ensuring compliance with Zero Trust and federal cybersecurity requirements. Role and Responsibilities: ·        Architect, deploy, and sustain cloud security solutions aligned with the Microsoft Cloud Adoption Framework (CAF), Zero Trust, and TIC 3.0 security principles. ·        Configure, manage, and optimize Microsoft Sentinel for enterprise-wide security operations, including incident detection, investigation, and response. ·        Implement and maintain Azure Monitoring solutions, enabling proactive identification of performance, security, and compliance risks. ·        Detect, analyze, and investigate threats across cloud and hybrid environments; support incident triage and response activities. ·        Develop custom KQL (Kusto Query Language) queries to create reports, dashboards, and alerts that enhance visibility into security posture. ·        Collaborate with cross-functional IT, DevSecOps, and mission teams to strengthen security monitoring and governance. ·        Document cloud security architectures, standard operating procedures, detection use cases, and runbooks. Provide subject matter expertise in advanced cloud security features (e.g., Defender for Cloud, Entra ID Conditional Access, Identity Protection) to elevate enterprise resilience. Required Skills ·        An active TS/SCI with polygraph. ·        Minimum of five (5) years of Tier II or three (3) years of Tier III cloud security or cybersecurity operations experience. ·        Proven ability to design, deploy, and sustain enterprise cloud security solutions in Azure environments. ·        Expertise with Microsoft Sentinel, Azure Monitoring, and security threat detection/analysis. ·        Strong knowledge of KQL to develop security reports, dashboards, and detection rules. ·        Solid understanding of Zero Trust security concepts, cloud security baselines, and federal cybersecurity compliance requirements. ·        Strong troubleshooting, diagnostic, and investigative skills across security monitoring platforms. Preferred Skills ·        Microsoft Identity and Access Administrator Microsoft Security Operations Analyst (SC-200), Azure Security Engineer (AZ-500), or equivalent certifications. ·        Experience with Microsoft Defender for Cloud, Microsoft Entra Identity Protection, and enhanced security features. ·        Familiarity with security automation and orchestration (SOAR) workflows in Sentinel. ·        Experience supporting large-scale federal security operations centers (SOCs) or cybersecurity modernization initiatives or Azure Security Engineer certifications. ·        Experience with Microsoft Entra Permissions Management, Privileged Identity Management (PIM), and Identity Governance. ·        Knowledge of integrating IAM with Power Platform and enterprise applications. ·        Familiarity with AOAI embedded features and Copilot capabilities for identity workflows.