Senior Microsoft Cloud Security Engineer
CACI International
The Opportunity:
CACI has an exciting position for a Senior Microsoft Cloud Security Engineer as we deploy, manage, and hardening our Microsoft cloud environment, including Azure, Office 365 and Microsoft 365.
The Senior Microsoft Cloud Security Engineer should thrive on complexity, possess an analytical mindset, and brings deep expertise on managing and securing Microsoft's cloud platform. You'll collaborate across teams, collaborating with security engineers, cloud architects, identity teams, and incident response analyst to ensure our tenant is resilient, compliant, and always mission ready.
Responsibilities:
- Serve as the go-to, subject matter expert (SME) for securing the Microsoft cloud tenant, advising on architecture, design, and implementation of secure solutions across Azure, O365, and M365.
- Lead the develop and enforcement of Conditional Access Policies, aligned with best practices for managing access control for personas, groups, and applications.
- Act as the primary SME in optimizing the Microsoft Defender suite of components (Defender for Endpoint, Defender for Cloud, Defender for Identity, and Defender for Office 365)
- Implement Microsoft Purview, including data classification and sensitivity labels, Data Loss Prevent (DLP), and eDiscovery workflows.
- Design, run and optimize Kusto Query Language (KQL) queries for Azure Sentinel, Defender, and log analytics.
- Partner with SOC and incident response teams to integrate logging, telemetry, alerting, and automated threat response/playbooks.
- Review and remediate security controls through vulnerability assessments, penetration tests, and red/blue team engagements.
- Guide cross-functional teams on security controls, compliance requirements, policy, and governance best practices
Qualifications:
Required:
- Bachelor’s degree in Computer Science, MIS or Business
- 10+ Years of total IT experience
- Expert-level hands-on experience deploying, managing, and securing Azure, Office 365, and Microsoft 365 in large enterprises.
- Deep understanding of Conditional Access Policies (CAPs), Azure AD/Entra, and Zero Trust principles.
- Proven Track record implementing and managing the full suite of the Microsoft Defender ecosystem and Microsoft Purview (DLP, sensitivity labels, eDiscovery)
- Advanced proficiency writing KQL for detection, investigation, response, and reporting
- Prior experience in a Security Operation Center of Cybersecurity Incident Response Team
- Active, expert-level certification such as Microsoft Certified Solutions Expert (MSCE), AZ-900, AZ-500
- Cybersecurity certifications: CISSP, OSCP, GCIH
- Strong networking, firewall, VPN, and segmentation knowledge as it relates to cloud deployments
- Exceptional time management, written and communication skills.
Desired:
- ITIL, Agile, or PMP familiarity/certification
- Experience with SOAR platforms (e.g. Splunk, Microsoft Sentinel)
- Hands-on exposure to third-party cloud security tooling (CASBs, CNAAPs, SD-WANs)
- Previous consulting or client-facing delivery experience
________________________________________________________________________________________
What You Can Expect:
A culture of integrity.
At CACI, we place character and innovation at the center of everything we do. As a valued team member, you’ll be part of a high-performing group dedicated to our customer’s missions and driven by a higher purpose – to ensure the safety of our nation.
An environment of trust.
CACI values the unique contributions that every employee brings to our company and our customers - every day. You’ll have the autonomy to take the time you need through a unique flexible time off benefit and have access to robust learning resources to make your ambitions a reality.
A focus on continuous growth.
Together, we will advance our nation's most critical missions, build on our lengthy track record of business success, and find opportunities to break new ground — in your career and in our legacy.
Your potential is limitless. So is ours.
________________________________________________________________________________________
Pay Range: There are a host of factors that can influence final salary including, but not limited to, geographic location, Federal Government contract labor categories and contract wage rates, relevant prior work experience, specific skills and competencies, education, and certifications. Our employees value the flexibility at CACI that allows them to balance quality work and their personal lives. We offer competitive compensation, benefits and learning and development opportunities. Our broad and competitive mix of benefits options is designed to support and protect employees and their families. At CACI, you will receive comprehensive benefits such as; healthcare, wellness, financial, retirement, family support, continuing education, and time off benefits. Learn more here.
The proposed salary range for this position is:
$131,800 - $290,000