Position Description

Abel Solutions is a rapidly growing IT Consulting and Managed Services provider for more than 100 companies and counting. Our growing Cybersecurity team (“SecOps”) is looking for a Security Engineer who will report to the Director of Information Assurance & Cybersecurity.

The SecOps team is a central pillar of our growth strategy, and the Security Engineer will focus on delivering top-tier engineering expertise in Microsoft 365, Terraform, and infrastructure hardening, while contributing to incident response and forensics efforts.

The Security Engineer must have a record of self-study and be motivated to articulate findings based on industry best practices. Our team’s mission is to provide state-of-the-art operational security services to a variety of business industries in order to thwart Threat Actor (“TA”) compromise. This is your opportunity to join this growing team and leave your mark on the development of Abel Solutions Cybersecurity-as-a-Service department.

Position Location

Atlanta, GA or Remote

NOTE: The successful candidate for this position will have access to information subject to U.S. export controls under the U.S. International Traffic in Arms Regulations (“ITAR”) and/or U.S. Export Administration Regulations (“EAR”). Based on the sensitivity of this information, the successful candidate must be a U.S. Person, as defined by ITAR, or, in the event the applicant is not a U.S. Person, be eligible for export licenses to be obtained from the Department of State, Directorate of Defense Trade Controls (“DDTC”) on a per-project basis to access ITAR and EAR controlled data and information.  A “U.S. Person” includes (a) U.S. citizens or nationals; (b) U.S. lawful permanent residents (i.e., “green card” holders); (c) persons granted refugee status; or (d) persons granted asylum in the United States. Company may choose not to apply for such license at its discretion due to federal approval timing considerations.

Job Responsibilities

Microsoft 365 Engineering:

    • Configure, manage, and secure both on-premises and cloud-based Microsoft 365 environments, ensuring alignment with best practices for infrastructure architecture.

Infrastructure Security Hardening:

    • Implement and maintain remote infrastructure using Hyper-V, providing expertise in securing environments and building automation pipelines for scalability.

Terraform Policy as Code:

    • Design and enforce infrastructure policies using Terraform to automate and manage secure environments at scale.

Compromised Infrastructure Analysis:

    • Perform Root Cause Analysis (RCA) on compromised infrastructure, ensuring rapid identification of attack vectors and mitigation strategies.

Warhead Development for Pen testing:

    • Design and build infrastructure “warheads” to simulate attack conditions and support penetration testing activities.

Compliance Engineering:

    • Conduct engineering control checks around compliance requirements, working closely with Governance, Risk, and Compliance (GRC) teams to ensure all standards are met.

Scripting and Automation:

    • Develop and maintain robust scripts for both Linux and Windows environments to automate security tasks, streamline processes, and ensure operational efficiency.

GitLab Maintenance:

    • Manage and maintain GitLab repositories, ensuring secure version control and continuous integration pipelines.

Incident and Forensic Response:

    • Serve on the Incident Response and Forensics team, contributing to breach impact analysis, tooling development, and real-time mitigation efforts.

Detection Engineering in SumoLogic SIEM:

    • Design, implement, and optimize detection rules and alerts using the SumoLogic query language (LogReduce, LogCompare, etc.) to detect potential security threats in real time.

Data Source Management:

    • Integrate, manage, and monitor various data sources within the SumoLogic platform, ensuring data ingestion from critical infrastructure, cloud services, and applications.

Other Responsibilities/Expectations

    • Attend company functions, including company meetings, to cultivate team building.
    • Seek out opportunities for professional skills advancement through classes, seminars, webinars, events, self-study, etc.
    • Assist the Abel Solutions leadership with other activities and tasks as assigned.
    • Obtain certifications from Microsoft or others as the role designates and is prescribed by leadership.

Experience Requirements

    • Proven expertise in Microsoft 365 architecture, configuration, and security for both cloud and on-premises environments.
    • Strong experience with Terraform and the ability to implement policies as code for automated infrastructure.
    • Knowledge of Hyper-V for managing remote infrastructure deployments.
    • Demonstrated experience in Root Cause Analysis for compromised infrastructures, with the ability to provide detailed insights and remediation strategies.
    • Experience building and deploying Pentesting “warheads” for engineering teams.
    • Familiarity with compliance frameworks and the ability to conduct engineering control checks to ensure compliance.
    • Proficiency in Linux and Windows scripting to automate tasks and enhance system performance.
    • Experience in maintaining and securing GitLab
    • Ability to serve as part of an Incident Response Team, with hands-on experience in forensic analysis and breach investigations.
    • Experience threat hunting utilizing a SIEM (Security Incident & Event Monitoring) platform, building queries, alerts, etc.
    • Ability to analyze large datasets and logs to identify suspicious activities, threat patterns, and anomalies.
    • Strong understanding of data ingestion processes, including data normalization and enrichment.

Education Requirements

    • Bachelor’s degree in information systems is preferred with 4+ years of engineering experience
      • Associates with 6+ years of engineering experience in lieu of a bachelor’s degree
      • 8+ years of engineering experience in lieu of a formal degree
    • Certifications in relevant security functions, such as:
      • Microsoft Certified: Azure Solutions Architect Expert, Certified Information Systems Security Professional (CISSP), Certified Cloud Security Professional (CCSP), Terraform Associate by HashiCorp, Microsoft Certified: Security Operations Analyst Associate, GIAC Certified Enterprise Defender (GCED), and CompTIA Security+.
  •  
SUBMIT RESUME