Security Operations Engineer

New York, NY


Apply Save

Type: Contract-to-Hire

Category: Security

Industry: Financial Services

Reference ID: JN -032026-106194

Date Posted: 03/30/2026

Shortcut: http://careers.eliassen.com/lbzmVY


Description:

Hybrid 4 in either New York, NY or Pittsburgh, PA

 

The organization seeks a Security Operations Engineer to strengthen and operate a FedRAMP-aligned Azure environment using native Microsoft security tooling. The role will design detections, run incident response, and drive continuous monitoring with audit-ready evidence across NIST SP 800-53 control families. The engineer will collaborate with cloud engineering, platform teams, and compliance stakeholders to sustain authorization and operational excellence. The position requires proficiency with Microsoft Sentinel, Defender for Cloud, Azure Policy, Entra ID, and KQL.

 

This is a contract to hire opportunity. Applicants must be willing and able to work on a w2 basis and convert to FTE following contract duration. For our w2 consultants, we offer a great benefits package that includes Medical, Dental, and Vision benefits, 401k with company matching, and life insurance.

 

Rate: $84.00 to $94.00/hr. w2

 


Responsibilities:
  • Design, implement, and tune detections in Microsoft Sentinel, including analytic rules, workbooks, watchlists, and automation with Logic Apps and Playbooks.
  • Build incident response runbooks and orchestration for triage, enrichment, and response using Sentinel automation.
  • Maintain log onboarding pipelines, data connectors, and normalization in Log Analytics to ensure coverage for in-scope resources.
  • Conduct daily SecOps functions including alert triage, investigation, threat hunting, containment, and post-incident reviews.
  • Leverage Defender for Cloud, Defender for Cloud Apps, Entra ID Protection, and Microsoft Defender XDR signals to correlate and respond to threats.
  • Document evidence and maintain audit-ready case records, contributing to POA&M entries and corrective actions.
  • Manage misconfigurations and control enforcement using Defender for Cloud recommendations, Secure Score, and Azure Policy.
  • Partner with platform engineering to remediate vulnerabilities and configuration drift, tracking closures against FedRAMP timelines.
  • Maintain baseline guardrails via Azure Policy and Blueprints and monitor compliance and exceptions with Continuous Monitoring reporting.
  • Implement and support least-privilege patterns with Entra ID, PIM, Conditional Access, RBAC, and managed identities.
  • Coordinate FIPS 140-2 validated cryptography usage with Key Vault and ensure encryption standards at rest and in transit are met and evidenced.
  • Operate Azure Firewall, NSGs, Private Link, and DDoS Protection and monitor and remediate anomalies.
  • Ensure logging and telemetry for network controls are complete, retained, and queryable within Sentinel.
  • Produce monthly and quarterly Continuous Monitoring artifacts and maintain supporting evidence.
  • Update detection coverage maps, control implementation narratives, and operational runbooks as environment changes occur.
  • Collaborate with compliance and assessors, support interviews, evidence collection, and remediation tracking.
  • Embed security checks into CI/CD pipelines using native integrations and support policy compliance and validation.
  • Enforce disciplined change processes and ensure changes are reflected in the SSP, control evidence, and detections.

Experience Requirements:
  • 5+ years in security operations engineering or incident response, including 2+ years operating native Microsoft security tooling in Azure.
  • Hands-on experience building and tuning Microsoft Sentinel detections and automating response with Logic Apps and Playbooks.
  • Practical knowledge of FedRAMP Moderate or High baselines and NIST SP 800-53 control families relevant to operations, including AC, AU, CM, IR, RA, SC, and SI.
  • Proficiency with Defender for Cloud, Azure Policy, Entra ID including PIM and Conditional Access, Key Vault, Azure Monitor, and Log Analytics.
  • Strong incident response skills across triage, investigation, containment, and post-incident documentation with audit-quality evidence.
  • Experience operating vulnerability and misconfiguration management workflows and meeting remediation SLAs aligned to FedRAMP timelines.
  • Scripting and automation familiarity using KQL for Sentinel and PowerShell, with ARM, Bicep, or Terraform basics.
  • Excellent documentation and communication skills for playbooks, evidence packages, and stakeholder updates.
  • Experience with Azure Government or GCC High environments (preferred).
  • Prior contributions to FedRAMP Continuous Monitoring reporting and POA&M lifecycle management (preferred).
  • Experience aligning native controls and detections to payment or mission-critical workload risk profiles (preferred).
  • Familiarity with Microsoft Purview, Defender for Cloud Apps, Entra ID Protection, and Private Link patterns (preferred).
  • Certifications such as AZ-500, SC-200, CISSP, or CCSP (preferred).

Education Requirements:
  • Relevant professional certifications such as AZ-500 Azure Security Engineer Associate (preferred).
  • SC-200 Microsoft Security Operations Analyst (preferred).
  • CISSP or CCSP certification (preferred).

Recruitment Transparency Notice
 
Eliassen Group values transparency in our recruitment practices. Please be advised that Eliassen Group utilizes artificial intelligence (AI) tools as part of its initial application screening process. You may receive email and SMS notifications from the Eliassen Virtual Recruiting Team (noreply@eliassen.com, 781-808-2924) inviting you to complete a brief voice screening as part of your application process. These tools assist our hiring teams in different ways, including but not limited to, assistance in reviewing application materials to help identify candidates whose qualifications most closely match the requirements of the position. All AI-assisted evaluations and responses are reviewed by human recruiters before any hiring decisions are made. The use of AI in our process is intended to support fairness, efficiency, and consistency, and Eliassen Group takes measures to prevent bias or discrimination in connection with its hiring practices. By proceeding, you acknowledge, agree, and consent to Eliassen Group’s use of these tools, including AI tools, as part of the application and hiring process.
 
Skills, experience, and other compensable factors will be considered when determining pay rate. The pay range provided in this posting reflects a W2 hourly rate; other employment options may be available that may result in pay outside of the provided range.

W2 employees of Eliassen Group who are regularly scheduled to work 30 or more hours per week are eligible for the following benefits: medical (choice of 3 plans), dental, vision, pre-tax accounts, other voluntary benefits including life and disability insurance, 401(k) with match, and sick time if required by law in the worked-in state/locality.
Please be advised- If anyone reaches out to you about an open position connected with Eliassen Group, please confirm that they have an Eliassen.com email address and never provide personal or financial information to anyone who is not clearly associated with Eliassen Group. If you have any indication of fraudulent activity, please contact InfoSec@eliassen.com.
 
About Eliassen Group:
 
Eliassen Group is a leading strategic consulting company for human-powered solutions. For over 30 years, Eliassen has helped thousands of companies reach further and achieve more with their technology solutions, financial, risk & compliance, and advisory solutions, and clinical solutions. With offices from coast to coast and throughout Europe, Eliassen provides a local community presence, balanced with international reach. Eliassen Group strives to positively impact the lives of their employees, clients, consultants, and the communities in which they operate.
 
Eliassen Group is an Equal Opportunity/Affirmative Action Employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, pregnancy, sexual orientation, gender identity, national origin, age, protected veteran status, or disability status.
 
Don’t miss out on our referral program! If we hire a candidate that you refer us to then you can be eligible for a $1,000 referral check!
 

  • IAM/RBAC Engineer

     Pittsburgh, PA

    Description: Hybrid 4 in either Pittsburgh, PA, New York, NY or Lake Mary, FL The organization seeks an IAM/RBAC Engineer to design, implement, and administer access controls in Microsoft Entra ID and Azure RBAC. The contractor will enforce least-privi...

    Date Posted: 03/03/2026 Recommended

  • Cybersecurity Analyst

     Cranberry Township, PA

    Description: Hybrid 3 in Cranberry Township, PA The Cybersecurity Analyst will safeguard the organization’s information systems and data by monitoring security events, analyzing vulnerabilities, and responding to incidents. The role requires hands-on e...

    Date Posted: 03/02/2026 Recommended

  • IT Infrastructure Engineer/Administrator

     Boston, MA

    Description: Onsite in Boston, MA Seaport Area of Boston, 5 days a week onsite for the first few months, flexible for 3-4 days onsite after that. Interview: virtual, then onsite. Contract to hire role. Our client seeks a senior IT Infrastructure Engine...

    Date Posted: 03/12/2026 Recommended

  • Cloud Platform Engineer (AWS)

     Anywhere

    Description: Remote Our client is seeking a mid-level AWS Platform Engineer to design, build, and operate secure, scalable cloud infrastructure on AWS. The role focuses on developing reusable infrastructure patterns, automation, and governance that ena...

    Date Posted: 03/11/2026 Recommended

  • Senior Cloud Platform Engineer

     Anywhere

    Description: Remote Our client seeks a senior platform engineer to design, build, and operate secure, scalable AWS infrastructure. The role focuses on reusable platform capabilities, automation, and governance that enable engineering teams to deliver a...

    Date Posted: 03/11/2026 Recommended

  • Senior Software Engineer

     Pittsburgh, PA

    Description: Hybrid 4 in Pittsburgh, PA The organization is launching a secure, fault‑tolerant Azure platform for high‑volume data ingestion, ledger‑based recordkeeping, and analytics for a controlled user base. This backend‑focused full‑stack role emp...

    Date Posted: 03/04/2026 Recommended

  • Senior Oracle DBA (Azure)

     Pittsburgh, PA

    Description: Our client, a leader in their industry, has an excellent opportunity for a Senior Oracle DBA with Azure cloud experience to work on a 12-month+ contract position in Lake Mary, FL, or Pittsburgh, PA. This is a hybrid role working onsite two...

    Date Posted: 03/03/2026 Recommended

  • Senior Data Engineer

     Cincinnati, OH

    Description: Onsite in Cincinnati, OH The Senior Data Engineer will design and deliver scalable data solutions that enable secure data management, analytics, and business intelligence for the organization. The role requires proficiency with SQL, a mode...

    Date Posted: 03/24/2026 Recommended

  • Senior Data Engineer

     Westlake, TX

    Description: Hybrid Onsite Every Other Week in Westlake, TX Our client is seeking a Senior Data Engineer to design and deliver modern data solutions supporting compliance and risk applications. The role will develop and manage cloud data pipelines, int...

    Date Posted: 03/31/2026 Recommended

  • ETL Migration Engineer

     Westlake, TX

    Description: Hybrid 2 weeks onsite in TX or NH in either Westlake, TX or Merrimack, NH Due to client requirements, applicants must be willing and able to work on a w2 basis. For our w2 consultants, we offer a great benefits package that includes Medica...

    Date Posted: 03/18/2026 Recommended

  • Vice President, Application Support Engineer

     Pittsburgh, PA

    Description: Hybrid 4 in either Pittsburgh, PA or Lake Mary, FL Our client seeks a Vice President, Application Support Engineer to strengthen production support for a Depositary Receipts platform. The role will diagnose and resolve complex incidents, d...

    Date Posted: 03/09/2026 Recommended

  • Sr. Network Security Engineer III

     Washington dc, DC

    Description: Onsite in Washington, DC The Sr. Network Security Engineer III will secure and harden mission-critical enterprise networks for our client within a federal environment. The role will design and manage firewalls, VPNs, IDS/IPS, and NAC, enfo...

    Date Posted: 03/09/2026 Recommended

  • Senior API Developer

     Anywhere

    Description: Remote The organization seeks a Senior API Developer to design, develop, and maintain APIs and system integrations across a digital ecosystem. The role will utilize Microsoft Azure services including API Management, Application Gateway, Lo...

    Date Posted: 03/23/2026 Recommended

  • Information Security Engineer (Ping Identity)

     Anywhere

    Description: Remote Our client is a large U.S. financial institution headquartered in Cincinnati, Ohio, with a broad regional branch and ATM network across multiple states. The organization is a principal subsidiary of a public bank holding company and...

    Date Posted: 03/10/2026 Recommended

  • Linux Systems Administrator

     Westlake, TX

    Description: Hybrid Onsite Every Other Week in either Westlake, TX or MMK, NH The organization seeks a Linux Systems Administrator to support distributed compute operations and server stability across Linux, Unix, Windows, hypervisors, and storage. The...

    Date Posted: 03/03/2026 Recommended

  • DevOps Engineer

     Westlake, TX

    Description: Hybrid (50% onsite, 50% remote) in the DFW metro We seek a DevOps Engineer to implement and manage CI/CD pipelines, infrastructure automation, and cloud environments that support externally facing applications. The role will coordinate and...

    Date Posted: 03/25/2026 Recommended

  • Senior Software Engineer (Java, AWS, Angular, Reporting tools)

     Merrimack, NH

    Description: Hybrid two weeks onsite a month in either Merrimack, NH or Westlake, TX The organization seeks a Software Engineer for modernization, The role focuses on designing, upgrading, and testing multi-platform applications with emphasis on Java, ...

    Date Posted: 03/09/2026 Recommended

  • Full Stack Engineer

     Westlake, TX

    Description: Hybrid two weeks onsite a month in Westlake, TX The role will design and build robust front and middle tier web applications that deliver a stable and resilient digital experience for healthcare customers. The engineer will use modern fram...

    Date Posted: 03/09/2026 Recommended

  • Sr. Network Engineer III

     Washington dc, DC

    Description: Onsite in Washington, DC The Sr. Network Engineer III will serve as a subject matter expert for unified communications across voice, video, and collaboration platforms. The role demands deep technical proficiency with enterprise UC, proact...

    Date Posted: 03/08/2026 Recommended

  • Sr. Network Engineer III

     Washington dc, DC

    Description: Onsite in Washington, DC The Sr. Network Engineer III will serve as a subject matter expert for unified communications across voice, video, and collaboration platforms in a fast-paced, mission-critical environment. The role will design, im...

    Date Posted: 03/09/2026 Recommended

  • Security Administrator

     Cincinnati, OH

    Description: Hybrid 4 days week onsite, then 3 days onsite/2 remote in Cincinnati, OH We are hiring a Security Administrator for our client, a leading plumbing, sewer, and water damage company headquartered in Cincinnati, Ohio. The role will secure ent...

    Date Posted: 03/05/2026 Recommended

  • Technical Execution Lead

     Greenwich, CT

    Description: Hybrid 4 in New York, NY The Technical Execution Lead will define and oversee the organization’s resiliency strategy for Azure-based platforms. The role will establish governance, policies, KPIs, and recovery objectives to ensure readiness...

    Date Posted: 03/17/2026 Recommended

  • Software Architect III

     Cincinnati, OH

    Description: Onsite in Cincinnati, OH The Software Architect will design and implement technology solutions that align with product and domain roadmaps for the organization. The role requires expertise in Java, Spring, RESTful APIs, and platform engine...

    Date Posted: 03/17/2026 Recommended

  • Principal Data Engineer with architecture and MS Fabric/Azure experience.

     Anywhere

    Description: Remote Our client is a global investment management organization with a long history of independent research and diversified strategies across fixed income and equities. The firm serves institutional and mutual fund clients and emphasizes ...

    Date Posted: 03/04/2026 Recommended

  • Snowflake Database Administrator/Engineer

     Cincinnati, OH

    Description: Onsite in Cincinnati, OH The organization seeks a Database Administrator with strong Snowflake, SQL, ETL, and Python expertise to optimize data platforms and enable secure, performant analytics. The role will manage performance tuning, gov...

    Date Posted: 03/08/2026 Recommended

  • Data Engineer

     Westlake, TX

    Description: Hybrid Every Other Week onsite in Westlake, TX Our client is a leading U.S. financial services organization serving individuals and institutions with a broad portfolio of investment products and technology-driven solutions. Headquartered i...

    Date Posted: 03/27/2026 Recommended

  • Cloud Database Deployment Engineer

     Merrimack, NH

    Description: Hybrid Onsite 5 days/week, alternating weeks in Merrimack, NH We are seeking a highly experienced Senior Oracle Cloud Engineer with over 10 years of expertise in Oracle technologies, specifically focused on cloud engineering rather than da...

    Date Posted: 03/08/2026 Recommended

  • Senior Full Stack Engineer, AI

     Anywhere

    Description: Remote Our client seeks a senior full stack engineer to accelerate AI adoption across the organization. The role blends full stack development, AI engineering, and internal consulting to design secure, scalable solutions and guide teams on...

    Date Posted: 03/03/2026 Recommended

  • Senior Cloud Engineer

     Westlake, TX

    Description: Hybrid Onsite Every Other Week in Westlake, TX Our client seeks a Senior Cloud Engineer to design and deliver secure, scalable cloud solutions for wealth-focused development squads. The role requires strong AWS expertise, Go development fo...

    Date Posted: 03/11/2026 Recommended

  • Data Architect

     St. Louis, MO

    Description: Hybrid Local candidates strongly preferred - onsite 2-3 days per week. If non-local, they will be required to come usually ~2 months for 3 days. in St. Louis, MO The organization seeks a Data Architect to design and build capabilities for ...

    Date Posted: 03/09/2026 Recommended

Eliassen Group is an Equal Opportunity/Affirmative Action Employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, pregnancy, sexual orientation, gender identity, national origin, age, protected veteran status, or disability status. Eliassen Group’s Affirmative Action Plan (AAP) is available for inspection by any employee or applicant for employment upon request, during normal business hours of Monday through Friday, 8:30am to 5:30pm EST. Interested persons should contact Phaedra Wells at pwells@eliassen.com for assistance. It is unlawful in Massachusetts and Maryland to require or administer a lie detector test as a condition of employment or continued employment. An employer who violates this law shall be subject to criminal penalties and civil liability.

Applicants with disabilities that believe they require an accommodation or assistance with a position, please email our HR team at hradmin@eliassen.com. This email inbox is designed exclusively to assist job seekers whose disability prevents them from being able to apply online. Emails sent for other purposes will not receive a response.


Please be advised that a number of fraudulent job postings have been released under the Eliassen Group brand.

Unfortunately, fraudulent job postings can happen. If anyone reaches out to you about an open position connected with Eliassen Group, never provide personal or financial information to anyone who is not clearly associated with Eliassen Group

If anyone seemingly from Eliassen Group has ever requested this personal information in the past or does so in the future, please contactInfoSec@eliassen.com.

Please ensure that you are working directly with us by confirming the following:

  • When you work with Eliassen Group, all email communication will come from an Eliassen.com address, never Gmail, Yahoo, etc.
  • Eliassen Group will never ask you for personal information (home address, bank account, or check routing number) until you have worked with someone clearly associated with Eliassen Group, as indicated above