Senior Cloud Security Engineer – Remote

Creative Associates International


Creative Associates International is a dynamic, global development company that specializes in education, economic growth, democratic institutions, and stabilization. Based in Chevy Chase, MD (metro Washington, D.C. area), Creative has programs in more than 30 countries with a strong client portfolio that includes the U.S. Agency for International Development and the State Department, among others. Founded in 1977, Creative is a minority-owned, mission-driven organization that has earned a solid reputation among its clients and is well-regarded by competitors and partners alike.

We value diversity — in backgrounds and in experiences. We are deliberate and self-reflective about the kind of team and culture that we are building, seeking staff that are not only strong in their own aptitudes but care deeply about supporting each other’s growth. Our success depends on all our employees’ points of view, and the principle that inclusion is everyone’s responsibility.

Position Summary:

The Senior Cloud Security Engineer position at Creative Associates International is a critical role within the Global IT department. As the primary cybersecurity expert, you will be responsible for investigating and mitigating threats in an international environment. Your role will involve proactive threat monitoring, incident response, risk reduction initiatives, and configuring cloud infrastructure.

To succeed in this role, you should have a deep understanding of the Microsoft cloud security suite and standard cybersecurity techniques. You will collaborate with various teams to implement security solutions, conduct risk assessments, and ensure compliance with cybersecurity policies. This position offers remote work flexibility within the United States, with occasional travel required for conferences or training events. Join us in safeguarding Creative’s information and maintaining a secure digital environment.

Reporting & Supervision:

This position reports to the Senior Director, Global Information Technology.


Lead the internal security operations center (SOC) and develop security solutions/tools for threat detection and management.

Identify and prioritize critical security incidents, quickly distinguishing false positives.

Architect and recommend Microsoft 365 (M365) and Azure security solutions, balancing business requirements with user friendliness.

Conduct cybersecurity risk assessments of internal and third-party systems.

Implement changes to cloud infrastructure to reduce and mitigate future incidents.

Prioritize cybersecurity efforts based on risk analysis and resource allocation.

Implement Azure Cloud App security policies and monitor baseline controls.

Conduct penetration testing, vulnerability scanning, and proactive threat-hunting.

Ensure compliance with IT policies, procedures, and standards.

Collaborate with IT leaders to enhance endpoint health and security in a Windows environment.

Collaborate with Infrastructure and Application Development teams to improve security configuration and automation.

Participate in cybersecurity policy-making and provide recommendations aligned with company goals and standards.

Produce reports for cybersecurity incidents and communicate them to senior management.

Stay updated on the latest security threats and detection methods.

Build relationships with key stakeholders involved in IT infrastructure and operations.

Effectively leverage third-party extended SOC services.

Gather internal and external threat intelligence and implement mitigation as needed.


  • Minimum of 3 years of experience in a Cyber Security Administrator or Engineer role with a focus on cloud-based security.
  • * Bachelor’s Degree in Computer Science, Information Systems, or related field.
  • * Experience with SIEMs, including Azure Sentinel, and custom log sources.
  • * Proficiency in Microsoft Defender Endpoint Security center incident investigation and threat management.
  • * Strong understanding of Microsoft 365 (M365) Security and Compliance features and configuration.
  • * Knowledge of network infrastructure security (physical and virtual) technologies and solutions.
  • * Experience with enterprise endpoint security and administration, preferably Windows Defender Endpoint.
  • * Familiarity with identity provider/identity management, such as Azure AD/Entra ID.
  • * Strong scripting experience, particularly with PowerShell and KQL.
  • * Experience implementing NIST 800-series controls for international organizations or government contractors (preferred).
  • * Preferred certifications: Microsoft Certified: Security Operations Analyst Associate (SC-200), Microsoft Cybersecurity Architect, Certified Information Systems Security Professional (CISSP), CompTIA Security+.
  • * Demonstrated willingness and ability to learn new and emerging technologies.
  • * Demonstrated critical thinking and analytical ability.
  • Work Environment
  • * This position can be performed Remotely anywhere in the US
  • * Travel: Approximately 3-4 times per year to our headquarters, trade conferences, or training events.
  • EEOC Statement: Creative is an equal opportunity/affirmative action employer and does not discriminate in its selection and employment practices. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, national origin, political affiliation, sexual orientation, gender identity, marital status, disability, protected veteran status, genetic information, age, or other legally protected characteristics. Military veterans, Ameri-Corps, Peace Corps, and other national service alumni are encouraged to apply.
  • Accessibility Notice: If you need reasonable accommodation for any part of the employment process due to a physical or mental disability, please send an email to [email protected]. Please view Affirmative Action/Equal Employment Opportunity Posters provided by OFCCP here.
  • Pay Transparency Nondiscrimination Provision: Creative will not discharge or in any other manner discriminate against employees or applicants because they have inquired about, discussed, or disclosed their own pay or the pay of another employee or applicant. However, employees who have access to the compensation information of other employees or applicants as a part of their essential job functions cannot disclose the pay of other employees or applicants to individuals who do not otherwise have access to compensation information, unless the disclosure is (a) in response to a formal complaint or charge, (b) in furtherance of an investigation, proceeding, hearing, or action, including an investigation. #LI-IB
  • Only finalists will be contacted. No phone calls, please.
  • PI234448848

How to apply

Apply Here

Job Notifications
Subscribe to receive notifications for the latest job vacancies.