[Remote] Senior Security Engineer
Note: The job is a remote job and is open to candidates in USA. Red Clay Consulting is seeking an experienced Senior Security Engineer to join their remote team. This role is critical for managing the company's security operations, including overseeing the Microsoft 365 security stack and ensuring compliance with SOC 2 Type 2 standards.ResponsibilitiesManage and optimize Microsoft 365 Defender, Defender for Endpoint, Defender for Identity, Defender for Cloud Apps, and Defender for Office 365Administer and tune Microsoft Sentinel - build and maintain KQL detection rules, analytics rules, workbooks, and playbooksMonitor the Microsoft Secure Score, prioritize improvement actions, and drive remediation across the tenantConfigure and maintain Conditional Access policies, Microsoft Entra ID (Azure AD) security settings, and Privileged Identity Management (PIM)Manage Microsoft Purview compliance features including DLP, sensitivity labels, and information protection policiesMonitor and respond to security alerts, incidents, and investigations across Defender XDR and SentinelDevelop and maintain incident response playbooks, automation workflows (Logic Apps / SOAR), and escalation proceduresPerform threat hunting using KQL and identify gaps in detection coverageConduct vulnerability assessments and lead remediation efforts in coordination with IT and engineering teamsEvaluate and respond to identity-based threats, phishing campaigns, and anomalous behavior patternsServe as a technical resource for SOC 2 Type 2 audit preparation and executionDesign, implement, and document security controls that satisfy Trust Service Criteria (TSC) requirements across the company’s toolsetMaintain evidence collection for audit deliverables - access reviews, logging configurations, policy enforcement, and change management recordsIdentify control gaps and drive remediation efforts prior to and during audit windowsPartner with external auditors, providing technical walkthroughs and supporting evidence requestsKeep control documentation current as tooling, processes, and the environment changeImplement and enforce security controls across the company’s broader toolset - SaaS platforms, cloud infrastructure, and endpoint environmentAdvise and support IT on secure configuration for onboarding, offboarding, and access provisioning workflowsPartner with engineering teams on secure development practices, secrets management, and cloud security postureProduce clear, concise reporting on security posture, incident trends, and audit readiness for IT leadershipStay current on the Microsoft security roadmap, threat landscape, and emerging attack techniques relevant to the company’s environmentSkills5+ years of hands-on experience in a security engineering or security operations role3+ years of deep, practical experience with the Microsoft 365 security suite (Defender XDR, Sentinel, Entra ID, Purview)Demonstrated experience supporting or leading a SOC 2 Type 2 audit - from control design through evidence deliveryProficiency in KQL (Kusto Query Language) for building detection rules, hunting queries, and dashboards in SentinelExperience with Azure cloud security, including Azure Security Center / Defender for Cloud, RBAC, and policy managementHands-on experience with SOAR/automation - Logic Apps, Sentinel playbooks, or equivalentStrong English communication skills - written and verbal - for working cross-functionally with a US-based teamComfortable working independently in a remote environment with minimal supervisionDetail-oriented approach to documentation, evidence collection, and control ownershipAbility to translate technical security findings into clear, business-relevant language for leadershipCollaborative mindset - willing to mentor junior team members and share knowledge across the IT teamMicrosoft Certified: Security Operations Analyst Associate (SC-200)Microsoft Certified: Azure Security Engineer Associate (AZ-500)Company OverviewRed Clay Consulting is a computer software company that provides data management services. It was founded in 2001, and is headquartered in Atlanta, Georgia, USA, with a workforce of 51-200 employees. Its website is http://redclay.com.