Security Engineer III

Remote Full-time
As a Security Engineer III, you will lead the design, deployment, and ongoing management of secure Microsoft 365 GCC High environments for Marco’s CMMC-regulated customers. You will drive automation initiatives to streamline security operations, reduce ticket volume from our MDR provider, and deliver efficient, scalable incident response and vulnerability remediation. This position serves as a senior technical resource for customer environment hardening, compliance alignment, and security service delivery across Marco’s managed security portfolio.
ESSENTIAL FUNCTIONS:

Lead the provisioning, configuration, and ongoing management of Microsoft 365 GCC High environments for CMMC-regulated customers, ensuring alignment with CMMC Level 2 and Level 3 requirements and DoD security standards.
Design and implement secure baseline configurations for Microsoft 365 GCC High, including conditional access policies, data governance, identity and access management, and compliance controls aligned to CMMC and NIST SP 800-171.
Serve as a primary technical resource for CMMC customer onboarding, environment hardening, compliance gap remediation, and ongoing support within managed Microsoft 365 GCC High tenants.
Develop and implement automation workflows to streamline security ticket triage, response, and resolution—reducing manual effort and ticket volume originating from Marco’s MDR provider.
Analyze MDR alert trends and recurring incident patterns to identify root causes and engineer automated or procedural responses that drive service efficiency and reduce mean time to respond (MTTR).
Lead customer security incident response activities, including investigation, containment, eradication, and recovery within managed customer environments, ensuring timely communication and post-incident reporting.
Perform proactive vulnerability management and remediation across customer environments, prioritizing based on risk, exploitability, and customer compliance obligations.
Manage competing priorities and set expectations with stakeholders through proactive communication, planning, and documentation of technical requirements and outcomes.
Be a point of escalation within the team to handle and resolve complex security issues, involving direct management as needed.
Respond in a timely manner to tickets and incidents within established procedures, and contribute to best practices, knowledge base articles, and process documentation.
Stay up to date with relevant technology, emerging threat intelligence, and regulatory changes affecting CMMC, FedRAMP, and government cloud environments.
Accurately maintain and comply with documentation, communication, time entry, and administrative procedures in a timely manner.
Participate in on-call rotation and after-hours work as required.

QUALIFICATIONS:

Bachelor’s degree in computer science, cybersecurity, information security, or a related field or equivalent experience in lieu of education
Minimum of 8 years of experience in information technology and information security, with experience working in managed security services or security operations
Proven experience with Microsoft 365 administration and security configuration, with hands-on experience in GCC High or other government cloud environments strongly preferred.
One or more of the following certifications is strongly preferred: Microsoft Certified: Security Operations Analyst (SC-200), Information Protection Administrator (SC-400), or Identity and Access Administrator (SC-300); CompTIA Security+, CySA+, or CASP+; or CISSP/equivalent; Certified CMMC Professional (CCP) or Certified CMMC Assessor (CCA) a plus.

REQUIRED SKILLS:

Advanced experience with five or more of the following:

Microsoft 365 GCC High administration and secure configuration
CMMC compliance frameworks (Level 2 and/or Level 3) and NIST SP 800-171
Endpoint detection and response (EDR) solutions and SIEM platforms
Vulnerability management and remediation workflows
Email security solutions and Microsoft Defender suite
Network and host firewalls and network architecture
Microsoft Azure and Entra ID (Azure AD) in government cloud or FedRAMP-authorized environments


Demonstrated experience developing automation using PowerShell, Python, or similar scripting languages for security operations use cases, including alert triage, ticket routing, and automated response playbooks.
Experience working with MDR providers, interpreting alert feeds, and building automation or process improvements to reduce tier-1 ticket volume and improve analyst efficiency.
Experience conducting or supporting customer security incident response, including investigation, containment, eradication, and post-incident reporting.
Expertise with implementing, securing, and configuring solutions according to industry and vendor best practices, particularly within regulated or FedRAMP-authorized environments.
Knowledge of CMMC, NIST CSF, NIST SP 800-171, CIS Controls, and related compliance frameworks applicable to government contractors and regulated customers.
Knowledge of service management concepts for IT and/or security operations and related standards.
Proficiency with Microsoft 365 applications and business collaboration tools.
Demonstrates attention to detail.
Exceptional organizational and time/task management skills.
Self-starter with the ability to perform with little or no direct supervision and takes initiative to improves processes.
Excellent communication skills in working with technical and non-technical people, and the ability to develop and maintain collaborative relations among all levels of an organization.
Treats people with respect; Works with integrity and ethically; Upholds organizational values.
Follows policies and procedures; Completes administrative tasks correctly and on time; Supports organization's goals and values.
Demonstrates accuracy and thoroughness; Looks for ways to improve and promote quality; Applies feedback to improve performance; Monitors own work to ensure quality.

Pay Range: $101,249 - $161,998 annually
The pay range listed for this position is based on candidate's skill level, experience, relevant licenses, and educational background. For detailed information about our benefits, please visit our careers page at www.marconet.com/careers.



Apply Now →

Similar Jobs

Experienced Registered Behavior Technician for In-Home ABA Therapy - Atlanta, GA

Remote

Immediate Hiring: Experienced Registered Behavioral Technician (RBT) for Clinic-Based ABA Therapy Services

Remote

Experienced Registered Behavioral Technician (RBT) - ABA Therapy for Children with Autism Spectrum Disorder

Remote

Experienced Registered Nurse - Telehealth: Providing Remote Care Coordination and Patient Support

Remote

Experienced Substitute Teacher for Riverside County Schools - Join Scoot Education's Innovative Team

Remote

Experienced Substitute Teacher for San Bernardino County - Flexible Schedules & Competitive Pay

Remote

Experienced School Year Instructional Coach for High-Dosage Tutoring Programs in Edgewater Park, NJ

Remote

Experienced School Year Tutor for K-8 Students in Math and Literacy - Mickleton, NJ

Remote

Experienced Secondary Social Studies Teacher for Kansas - Flexible Hybrid Remote Arrangement

Remote

USPS Office Helper

Remote

Fractional CHRO (or Chief People Officer) For Startups, Atlanta

Remote

Delta Airlines Flight Attendant Flexible Hours No Experience Required $19/Hour

Remote

SAP SD Analyst (Full time role - No Sponsorship)

Remote

Employment Attorney

Remote

Experienced Bilingual Customer Service Associate – Delivering Exceptional Support Experiences in a Dynamic Remote Environment

Remote

Sr. Principal Customer Success Manager, PubSector - DC

Remote

Intern eCommerce Processing (Remote)

Remote

Account Executive, New Business

Remote

Experienced Data Entry Clerk - Flexible Work from Home Opportunity for Students with blithequark

Remote

Insurance Application Coordinator (Remote - US)

Remote
← Back