- W2 6-month contract-to-hire (converting FTE) - client will not provide visa sponsorship
- Hybrid - onsite 4x/ month in Smyrna/ Vinings, Georgia (DO NOT APPLY IF YOU ARE NOT LOCAL OR PLANNING TO RELO)
- $45/hr to $60/hr, converting FTE 105-130k
looking for a hands-on security engineer who specializes in identity (AD/Azure AD), understands hybrid environments, and actually fixes security issues—not just monitors alerts
JOB DESCRIPTION
- This hands-on Security Engineer role sits at the intersection of identity, infrastructure, and security engineering.
- The right candidate will understand how users, systems, and security controls all connect and will take ownership of improving and protecting that environment.
- The team is looking for someone who can own work and follow through, not just monitor or escalate issues.
- Engineers who understand how security works end-to-end, including identity, network access, and system-level controls, and who can take action to reduce risk in real environments.
- The ideal candidate will be comfortable working across: Identity and access management, Windows and cloud infrastructure security, Vulnerability management and remediation and Security tooling (EDR, SIEM, etc.).
REQUIRED SKILLS AND EXPERIENCE
• 5+ years of experience in IT Security Engineering, with a focus on identity and infrastructure security
• Hands-on experience with:
o Active Directory (on-prem)
o Microsoft Entra ID / Azure AD
o Hybrid identity environments (AAD Connect, SSO, federation)
o Privileged Access Management Solutions (CyberArk preferred)
• Experience implementing or supporting:
o MFA
o Conditional Access policies
o Role-Based Access Control (RBAC)
• Experience with Windows server environments, including patching, hardening, or vulnerability remediation
• Exposure to SIEM and/or EDR tools (Splunk, Sentinel, CrowdStrike, etc.)
• Understanding of authentication concepts:
o SAML, OAuth, OIDC, Kerberos, NTLM
NICE TO HAVE SKILLS AND EXPERIENCE
• Strong PowerShell scripting or automation experience
• Experience in regulated environments (financial services, healthcare, etc.)
• Exposure to cloud platforms (Azure, AWS) from a security perspective
• Certifications such as CISSP or any other major security certifications
Key Responsibilities:
- Support and improve identity and access controls across Active Directory and Microsoft Entra ID (Azure AD) environments
- Work within a hybrid identity setup, including on-prem AD, Entra ID, and SSO/federation models
- Implement and maintain MFA, Conditional Access, and RBAC policies
- Support or contribute to Privileged Access Management (PAM) processes (CyberArk or similar)
- Perform system hardening, patching, and vulnerability remediation across Windows and cloud environments
- Investigate and respond to security incidents, including identity-based activity and endpoint/network alerts
- Work with EDR and SIEM tools to monitor, analyze, and act on security events
- Collaborate with network, infrastructure, and application teams to enforce secure configurations
- Assist with automation (PowerShell or similar) to improve operational efficiency
- Participate in ongoing efforts to align with Zero Trust principles
Compensation: $45/hr to $60/hr. Exact compensation may vary based on several factors, including skills, experience, and education.
Benefit packages for this role will start on the 1st day of employment and include medical, dental, and vision insurance, as well as HSA, FSA, and DCFSA account options, and 401k retirement account access with employer matching. Employees in this role are also entitled to paid sick leave and/or other paid time off as provided by applicable law.