[Remote] Security Engineer II
Note: The job is a remote job and is open to candidates in USA. SCS Global Services is a pioneer in sustainability standards and certification, and they are seeking a Security Engineer II. This role is responsible for designing, implementing, and owning security controls across various layers, with a focus on operational soundness and business alignment.ResponsibilitiesDesign and implement security control architectures and reference implementation patterns aligned with ISO 27001:2022 and related security frameworks (CIS, NIST CSF, MITRE ATT&CK), within established organizational standardsEngineer and maintain assigned security controls across the following domains: Identity: Entra ID/Conditional Access/MFA/PAM, Endpoint: Intune/EDR/XDR (CrowdStrike), Workloads: Azure/AWS security/container security/CI/CD controls, Data: DLP/encryption/key managementDevelop, maintain, and operationalize security standards, baselines, and reference architectures in partnership with IT and application stakeholdersPerform threat modeling (STRIDE) and risk assessments for new systems and material changes, translating findings into actionable security controls and remediation recommendationsLead security discovery and integration activities for new and existing environments, including current state assessment, gap analysis, and development of prioritized remediation plansProactively identify security improvement opportunities, propose viable solutions, and execute approved work items to completionIntegrate and optimize security tooling, including log source onboarding, alert tuning, and workflow automationPartner with Development and Application teams to embed security by designSupport audit and compliance activities related to ISO 27001:2022, including evidence collection and control implementation validationSkillsBachelor's Degree in computer science, information systems, or a related field, or equivalent work experience6+ years of IT Experience3+ years in an IT Security or Security Engineering roleStrong practical knowledge of systems and infrastructure engineering (Windows/Linux fundamentals, networking, cloud architecture, identity, and common enterprise services) to make sound security recommendations and assess operational impactProven ability to scope security improvements into actionable work items, estimate level of effort, and partner with infrastructure/application owners to drive implementationCloud security experience (Azure preferred)Experience with scripting and infrastructure as code for security automation and control deployment (PowerShell, Terraform, ARM/Bicep) to implement at scaleExperience with a MDR/vSOC provider and integrating EDR telemetry and incident workflows (CrowdStrike preferred)Strong understanding of Identity and Access Management (IAM) concepts and implementationsWorking knowledge of industry security frameworks and standards, including ISO 27001:2022 (preferred), NIST CSF, CIS Controls, and MITRE ATT&CK, and their application to security control designDemonstrated ownership mindset: able to work from broad direction, handle ambiguity, prioritize, and drive work to completionPractical experience implementing security controls within Azure/M365 environmentsExperience with SIEM platforms, including log onboarding, detection tuning, and workflow integration (Microsoft Sentinel preferred)Strong analytical skills with the ability to translate security and infrastructure risk into practical technical controlsMicrosoft Azure Security EngineerMicrosoft Azure AdministratorMicrosoft Azure ArchitectCertified Cloud Security Professional (CCSP)BenefitsAt this time, SCS Global Services is recruiting all open roles to be remote; allowing our employees the ability to work flexibly and allowing SCS as a company to diversify the experience and perspectives of our growing workforce. This role will be based out of your home office.Company OverviewTo achieve this vision, we have established programs and services designed to Recognize the outstanding achievements of companies. It was founded in 1984, and is headquartered in Emeryville, California, USA, with a workforce of 201-500 employees. Its website is https://www.scsglobalservices.com/.Company H1B SponsorshipSCS Global Services has a track record of offering H1B sponsorships, with 4 in 2025, 1 in 2024, 2 in 2023, 2 in 2022. Please note that this does not guarantee sponsorship for this specific role.