Cybersecurity Engineer

Job Description

Job Description

Job Title: Cybersecurity Engineer - Network & Cloud Defense

Location: [Palm Beach, FL
Department: IT Security
Reports To: IT Director

Position Overview

The Palm Beach ACO seeks a Cybersecurity Engineer with expertise in network infrastructure security, Azure/Entra ID, and endpoint protection to safeguard our hybrid environment. You’ll configure firewalls, enforce Zero Trust policies, and optimize Microsoft Defender for Endpoint (MDE), ensuring compliance with healthcare security standards.

Key Responsibilities

1. Network Infrastructure & Security (Primary)

• Design, deploy, and manage Fortinet security solutions:
  • FortiGate firewalls (5+ years required).
  • FortiWeb web filtering and application security.
  • FortiManager (centralized management) and FortiAnalyzer (logging/reporting).
• Troubleshoot TCP/IP, BGP, OSPF, DNS, DHCP, and network access control (NAC).
• Configure IDS/IPS, VPNs, and network segmentation (Zero Trust principles).

2. Azure & Identity Management (Secondary)

• Administer Azure AD/Entra ID, Conditional Access, and MFA policies (including Microsoft Authenticator).
• Deploy/manage Microsoft Intune for endpoint security (Windows Autopilot, iOS/Android MDM/MAM).
• Migrate Group Policy Objects (GPOs) to Intune CSP/ADMX templates.

3. Endpoint & XDR Security (Tertiary)

• Optimize Microsoft Defender for Endpoint (MDE) and Microsoft Sentinel (XDR/MDR).
• Enforce BitLocker, Windows Hello, MFA, and device compliance policies.
• Audit identities via Microsoft Defender for Identity and Azure AD Access Reviews.

Required Skills

• 5+ years in network security (Fortinet NSE 4+ certification mandatory).
• 3+ years managing Azure AD/Entra, Intune, and Conditional Access.
• Strong knowledge of Microsoft Defender suite (MDE, Sentinel, Defender for Identity).
• Proficiency in firewall policies, Active Directory, and hybrid identity (Azure AD Connect).

Preferred Skills

• Experience with Microsoft Purview (compliance) or Privileged Access Management (PAM).
• SCCM/MECM co-management or Windows Autopilot deployments.
• Scripting (PowerShell/Python) for security automation.
• Healthcare compliance (HIPAA, NIST).

Qualifications

• Certifications: Fortinet NSE 4+, Microsoft SC-300 (Identity), or AZ-500 (Azure Security).
• Education: Bachelor’s in Cybersecurity, IT, or equivalent experience.
• Soft Skills: Cross-team collaboration, multitasking, and clear communication.