Sr. Cybersecurity Operations Engineer

Overview

Connexus Hub is seeking a Senior Cybersecurity Operations Engineer to support a federal client’s hybrid IT environment. This role leads security operations, continuous monitoring, and incident response across Azure cloud and on-prem infrastructure.

Key Responsibilities

• Lead security operations and continuous monitoring activities aligned with NIST, FISMA, and CISA directives
• Configure and operate SIEM, SOAR, EDR, NDR, and Syslog solutions
• Conduct threat hunting, log analysis, and incident response
• Manage and secure Microsoft 365 / Azure environments, including Defender for Cloud
• Develop security automation and orchestration capabilities
• Produce security metrics, reports, and threat intelligence summaries
• Maintain security documentation, SOPs, and incident handling procedures

Required Qualifications

• 6+ years in cybersecurity operations (federal or comparable environment preferred)
• Hands-on experience with:
  • SIEM (e.g., Splunk, Sentinel)
  • EDR/NDR tools
  • Azure security / M365 security stack
• Strong knowledge of NIST 800-53, FISMA, and federal cybersecurity frameworks
• Experience with incident response and threat detection
• Ability to work onsite in Washington, DC

Preferred

• CISSP, GCIA, GCIH, or equivalent
• Experience with CDM tools
• Scripting (PowerShell, Python)