Senior Security Engineer (MSP or MSSP) - Remote (USA)

Role: Senior Security Engineer (MSP or MSSP) - Remote (USA)

You will join Echelon Risk + Cyber to deliver security consulting and implementations across multiple client environments, helping identify security opportunities both for clients and internally.

What you will do

• Implement and enforce security policies, procedures, and configurations aligned with industry standards
• Conduct security assessments: audits, reviews, hardening activities, vulnerability scans, and automated penetration tests
• Design and implement secure cloud solutions using Azure and AWS
• Use CSPM (Cloud Security Posture Management) capabilities to improve cloud security posture
• Secure SaaS platforms (e.g., email, file sharing, and third-party applications)
• Configure and manage security controls for servers and endpoints, including endpoint protection solutions
• Implement Mobile Device Management (MDM) security policies
• Build and manage IAM, including SSO and PAM; ensure proper provisioning and access controls
• Lead technical implementations for data protection, including Data Loss Prevention (DLP)
• Support disaster recovery planning and perform recovery tests to validate backups and replication
• Apply and enforce security benchmarks such as CIS and NIST
• Ensure regulatory compliance and adherence to industry standards
• Implement and manage SIEM; deploy and operate MDR, IDS, and IPS
• Configure network security policies for perimeter and internal network equipment (firewalls, wireless access points)
• Support incident response planning and tabletop exercises; develop playbooks
• Help implement security awareness training solutions
• Work with clients to tailor security solutions to their needs

Your knowledge, skills, and abilities

• Bachelor’s degree in Computer Science, Information Security, or related field
• Relevant certifications: CCSP, CISSP, CEH, CISM (or similar)
• Experience working in managed IT or security services (MSP/MSSP) managing many clients/environments
• Strong understanding of security technologies and frameworks
• Excellent problem-solving, analytical, communication, and interpersonal skills
• Must be authorized to work in the United States without current or future visa sponsorship

Preferred qualifications

• Familiarity with regulatory requirements such as FFIEC, SOC 2, ISO 27001, GDPR, CMMC, HI