Cybersecurity Engineer II

<p><strong>Work Arrangement</strong><br>This is a remote position.</p> <p><strong>Job Overview</strong><br>The Cybersecurity Engineer II is a mid-level technical engineering role responsible for implementing and managing security controls across enterprise identity, Microsoft cloud services, and data protection platforms within regulated environments.</p> <p>This role is focused on Entra ID, Microsoft Defender, and Microsoft Purview, supporting secure identity, cloud workload protection, and data governance across GCC High, Azure Government, and AWS GovCloud. Working closely with cybersecurity leadership and architecture, this position plays a key role in enforcing security controls, responding to threats, and ensuring alignment with CMMC Level 2, NIST 800-171, and DFARS requirements.</p> <p><strong>Essential Functions</strong><br>• &nbsp; &nbsp;Identity Security &amp; Access Management<br>Implement and manage identity security controls within Entra ID, including Conditional Access, MFA, and access governance<br>Support enforcement of least privilege, role-based access control (RBAC), and privileged identity management (PIM)<br>Monitor identity-related risks, sign-in activity, and access anomalies, and respond to potential threats<br>Assist in onboarding and securing users, applications, and external access scenarios</p> <p>• &nbsp; &nbsp;Cloud Security (Microsoft &amp; Gov Environments)<br>Configure and maintain security controls across Microsoft 365 GCC High, Azure Government, and AWS GovCloud<br>Implement and support Microsoft Defender capabilities across identity, endpoint, and cloud workloads<br>Assist in securing cloud applications, services, and integrations in alignment with enterprise standards<br>Support secure configuration and continuous monitoring of cloud environments</p> <p>• &nbsp; &nbsp;Data Protection &amp; Information Security<br>Implement and maintain Microsoft Purview capabilities including sensitivity labels, DLP policies, and data classification<br>Support data protection strategies to prevent unauthorized access, sharing, or exfiltration of sensitive information<br>Assist in monitoring and responding to data-related alerts and policy violations<br>Ensure proper handling and protection of CUI/FCI within enterprise systems</p> <p>• &nbsp; &nbsp;Security Operations &amp; Threat Response<br>Monitor, investigate, and respond to security alerts across identity, cloud, and data protection platforms<br>Support incident response activities including triage, containment, and remediation<br>Collaborate with MDR/SOC providers and internal teams during security events<br>Contribute to improving detection, response, and security monitoring capabilities</p> <p>• &nbsp; &nbsp;Vulnerability Management &amp; Secure Configuration<br>Execute vulnerability remediation and system hardening across identity and cloud platforms<br>Implement secure configurations aligned with enterprise baselines and security architecture guidance<br>Support continuous improvement of security posture through configuration and control enhancements</p> <p>• &nbsp; &nbsp;Compliance &amp; Audit Support<br>Implement and validate controls aligned to CMMC Level 2, NIST 800-171, and DFARS requirements<br>Maintain documentation, configurations, and technical evidence for audits and assessments<br>Support audit readiness activities and assist in responding to compliance inquiries</p> <p>• &nbsp; &nbsp;Collaboration &amp; Continuous Improvement<br>Work closely with Security Architecture, IT, and Systems Administration teams to ensure secure implementation of systems<br>Contribute to process improvements, automation efforts, and security initiatives<br>Provide guidance and support to junior engineers and administrators as needed<br>Continuously expand knowledge of cloud, identity, and security technologies</p> <p>• &nbsp; &nbsp;Perform other duties as required.</p> <p><strong>Standard Essential Functions</strong><br>Regular and reliable attendance on a full time basis [or in accordance with posted schedule].<br>Responsible for exhibiting professional behavior with both internal and external business associates that reflects positively on the company and is consistent with the company's policies and practices.<br>Embodies AEVEX’s cultural values and aligns daily actions with department goals and company culture.</p> <p><strong>Qualifications and Competencies</strong><br>• &nbsp; &nbsp;Bachelor's degree in Cybersecurity, Computer Science, Information Technology, or other related field.</p> <p><strong>Education / Certifications</strong><br>• &nbsp; &nbsp;Familiarity with regulated environments:</p> <p>CMMC Level 2 / NIST 800-171 required<br>DFARS requirements and government cloud environments preferred</p> <p><br>• &nbsp; &nbsp;Strong troubleshooting and analytical skills<br>• &nbsp; &nbsp;Ability to work independently while aligning with security architecture and leadership direction</p> <p><strong>Experience</strong><br>• &nbsp; &nbsp;3+ years of experience in cybersecurity, cloud security, or systems engineering roles<br>•&nbsp; &nbsp; Experience with Security monitoring, alerting, and incident response<br>• &nbsp; &nbsp;Experience with vulnerability remediation and secure configuration practices<br>• &nbsp; &nbsp;Experience with Cross-platform environments including AWS GovCloud (preferred)<br>• &nbsp; &nbsp;Hands-on experience with:</p> <p>Microsoft Entra ID (Azure AD), Conditional Access, MFA, and identity governance<br>Microsoft Defender suite (Endpoint, Identity, Cloud Apps, Office 365)<br>Microsoft Purview (DLP, sensitivity labels, information protection)<br>Microsoft 365 GCC High and/or Azure Government environments</p> <p><strong>Physical Requirements</strong><br>The physical demands described here are representative of those that must be met by an employee to successfully perform the essential functions of this job. Reasonable accommodations may be made to enable individuals with disabilities to perform the essential functions. While performing the duties the employee is:</p> <p>For the purpose of this summary, occasionally is used to represent up to 1/3 of the time given to the workday, frequently represents 1/3 to 2/3 of the time and constantly represents 2/3 or more of the time.</p> <p><strong>Security Clearance</strong><br>• &nbsp; &nbsp;Ability to obtain/maintain a [Secret, Top Secret, etc.] DoD clearance, U.S. Citizenship required</p> <p>• &nbsp; &nbsp;Not Applicable</p> <p>&nbsp;</p><div class="content-conclusion"><p>&nbsp;</p> <p><strong>About AEVEX&nbsp;</strong></p> <p>AEVEX, headquartered in Solana Beach, California, supports the U.S. national security mission and partner nation needs around the world by providing full-spectrum aviation, remote sensing, and analysis solutions. The company's capabilities include custom design and engineering; rapid prototyping; sensor integration and sustainment; aircraft modification and certification; flight test instrumentation and support; mission operations service; advanced intelligence data processing, exploitation, and dissemination solutions; and tailored hardware and software mission-system tools. AEVEX uses agile and customized approaches to rapidly define, develop, and deliver specialized solutions for airborne special mission needs for the U.S. Government, partner nations, and commercial businesses. AEVEX has major offices in California, Florida, North Carolina, Ohio, and Virginia.</p> <p>&nbsp;</p> <p>&nbsp;</p> <p><em>AEVEX provides a full suite of comprehensive benefits, including a 401(k)-retirement plan, comprehensive Medical, Dental, Vision, Disability and Life insurance group coverage with a portion of the premiums paid by the company, professional development funds, and an Employee Assistance Plan (EAP) with counseling, legal help, child and elder care support, among other benefits for qualified employees.</em></p> <p>&nbsp;</p> <p><strong>Equal Employment Opportunity:</strong></p> <p>AEVEX is an Equal Opportunity employer. We are committed to providing equal employment opportunities to all employees and applicants without regard to race, religious creed, color, sex (including pregnancy, breast feeding and related medical conditions), gender, gender identity, gender expression, sexual orientation, national origin, ancestry, citizenship status, military and veteran status, marital status, age, protected medical condition, genetic information, physical disability, mental disability, or any other protected status in accordance with all applicable federal, state and local laws.</p></div>