Security Systems Engineer

Position Summary

We are seeking a Systems Engineer to own architect and maintain our Microsoft security stack (O365 Sentinel Defender Purview) and overall electronic communications and file sharing technology infrastructure. This role will be critical in ensuring our environment remains secure NIST 800-171 compliant observable and scalable. The ideal candidate blends hands-on engineering strong security operations experience and the ability to design and maintain dashboards reporting and automation to support security governance risk and compliance.

Accommodation Requests

We are committed to providing access equal opportunity and reasonable accommodation for individuals with disabilities in employment. If reasonable accommodation is needed to participate in the job application or interview process contact our HR Director (April Hawkins) at or

Essential Duties and Responsibilities

• Administer and maintain security tooling across the Microsoft environment. Microsoft Sentinel Microsoft Defender and Microsoft Purview (or equivalent Microsoft 365 / Purview data governance tools).
• In conjunction with MSP manage and optimize security dashboards alerts and reporting for threat detection incident response and risk metrics. Own vendor response management and success metrics.
• Build and maintain compliance reporting to support NIST 800-171 controls working with compliance lead and vendors to align technical controls with policy.
• Implement and maintain security tooling (automation playbooks) to reduce manual work improve reaction times and ensure consistency.
• Own change management documentation for all security-related system changes across our Microsoft cloud environment including SIEM endpoint security identity and data governance controls.
• Monitor security events triage alerts investigate potential incidents and support remediation efforts in coordination with other MSP. Escalate to Compliance and Ops leads for org messaging and alerts.
• Conduct regular tuning of detection rules logs and telemetry to reduce noise and improve coverage.
• Assist MSP in threat hunting threat modeling and proactive security assessments
• Manage data governance and classification via Purview (or equivalent): define and enforce data classification labeling retention and access policies.
• Provide technical oversight for user and endpoint security posture; integrate Defender with identity endpoint and cloud infrastructure.
• Maintain and test incident response procedures and playbooks with regards to Covered Unclassified Information (CUI).
• Support security best practices for cloud infrastructure identity management access control and data protection.
• Provide training and mentorship to other IT staff on Sentinel Defender Purview and security processes.
• Collaborate with auditors compliance leads and external assessors to prepare for assessments (e.g. NIST CMMC ISO etc.).
• Stay current on Microsoft security offerings emerging threats and best practices and make recommendations for improvements.

Education Experience and Technical Skills

Required Education Experience and Technical Skills

• Bachelors degree in computer science information technology cybersecurity or related field (or equivalent experience).
• Minimum 24 years of experience in security operations systems engineering or cloud security.
• Hands-on experience deploying operating and maintaining Microsoft Sentinel Microsoft Defender (endpoint identity etc.) and Purview (or similar Microsoft security/GRC tools).
• Understanding of SIEM security alerts log aggregation and incident response.
• Experience building dashboards reports and alerts to drive visibility and compliance.
• Scripting automation or orchestration experience (PowerShell Azure Automation Logic Apps or similar).

Preferred Education Experience and Technical Skills

• Familiarity with NIST 800-171 (or other government / federal security compliance frameworks) and how technical controls map to its requirements.
• Certifications such as CISSP CCSP Microsoft SC-200 / SC-300 / SC-400 or Azure Security Engineer Associate.
• Familiarity with Azure cloud infrastructure Azure and identity management (Azure AD conditional access etc.)
• Experience in federal contracting environments or regulated industries (with NIST FedRAMP or similar).
• Prior work in a small or mid-size business environment; tribal organization experience is a plus but not required.
• Strong problem-solving skills with the ability to triage security events and lead investigations.
• Excellent communication skillsable to translate technical security metrics into meaningful reports for leadership auditors and compliance teams.
• Self-starter with a growth mindset; comfortable working in a smaller evolving organization of about 200-250 users

Work Environment

This position operates in a professional office setting. The role routinely uses standard office equipment such as computers phones printers and photocopiers. The work environment is generally quiet and free from exposure to loud noise hazardous materials or heavy machinery. Employees are typically seated for extended periods and may occasionally move about the office to attend meetings or access equipment and supplies.

Physical Demands

Sitting/Standing: This role is generally sedentary performing sitting work utilizing technological office equipment including a laptop mouse keyboard computer monitors telephones scanners and copiers.

Walking: This role requires the ability to move about inside the office to access the required technological equipment.

Stooping/Kneeling/Crouching/Crawling: This role may require stooping to reload printer trays with print paper moving equipment and managing cords.

Using Hands/Fingers: This role constantly operates technological office equipment such as laptops mice keyboards computer monitors telephones scanners and copiers.

Talking/Hearing: This role requires constant communication with others in the organization to exchange information review information and make decisions about information.

Seeing: This role requires seeing viewing and distinguishing all aspects of internal and external communications.

Carrying/Lifting: This role requires lifting up to 20lbs to transport technological office equipment to and from various workspaces.

Equal Employment Opportunity

All qualified applicants will receive consideration for employment without regard to race color religion sex sexual orientation gender identity national origin disability or status as a protected veteran.

Native American Hiring Preference

Our parent company Mno-Bmadsen prefers to hire Pokagon citizens who are qualified and suitable for available positions. For purposes of this section qualified means that the applicant meets the technical and experiential needs for employment; and suitable means that the candidate appears to be the best fit considering present circumstances and conditions. Targeted preference is in the following order:

• First to qualified Pokagon Band citizens; and
• Second to qualified spouses and qualified custodial parents; and
• Third to other qualified Native Americans; and
• Fourth to all other qualified applicants

Any determinations as to the applicability of the Pokagon hiring preference are at the discretion of each Company President.

Required Experience:

IC