Sr. Cybersecurity Engineer

The Cybersecurity Engineering & Architecture team designs and operationalizes the technical security controls that protect Insight Global's people, data, and platforms. Our scope spans both cybersecurity engineering and identity & access management – two disciplines that are deeply intertwined in how we build and enforce security  partner closely with Cloud Infrastructure, Cloud Application, and Endpoint teams to ensure that security capabilities are effective, scalable, and operationally sound.

We are seeking a Cybersecurity Solution Architect focused on advancing our internal cybersecurity architecture – shaping how security capabilities are designed, implemented and matured across Insight Global’s environments. This role supports the Cybersecurity Architect in translating security designs into reliable controls, conducting threat assessments, and maintaining the technical artifacts that keep complex programs on track. We are looking for a candidate who bridges the architecture and engineering disciplines and brings hands‑on experience in both, equally comfortable contributing to identity frameworks, and zero trust patterns as they are rolling up their sleeves to operationalize them.

Success is measured not just by execution quality, but by demonstrated growth in architectural thinking, risk‑based decision‑making, and cross‑functional influence.

• Bridge architecture and engineering disciplines in support of Identity & Access Management by leading and supporting design, implementation, and ongoing operations of IAM capabilities, including Microsoft Entra , Privileged Access Management (PAM), Privileged Identity Management (PIM), and Azure Key Vault (AKV). Apply hands‑on experience across both architectural design and operational delivery.
• Ensure that security architectural designs are effectively implemented, serving as the execution‑layer partner to the Cybersecurity Architect.
• Conduct threat assessments and threat modeling exercises across cloud workloads, applications, and infrastructure, translating abstract risks into concrete control requirements.
• Produce and maintain project artifacts, including data flow diagrams (DFDs), architecture decision records, and security design documentation.
• Collaborate with the Cybersecurity Architect and Security Engineers on technical analysis, security posture management, and control enablement across the enterprise.
• Support cloud security controls for Azure infrastructure and cloud‑native applications, including networking, identity, encryption, and monitoring configurations.
• Provide security guidance during design and implementation phases of engineering projects, reviewing architectures, and flagging risks before they reach production.
• Support Data Loss Prevention (DLP) program initiatives using Governance, Risk, and Compliance and Secure Access Secure Edge solutions.
• Participate in architecture design review forums to vet proposed designs for compliance with standards and reasonableness.

• Bachelor's degree in computer science, Information Security, Engineering, or a related technical field, or equivalent practical experience.
• 3–5 years of experience in cybersecurity, security engineering, or cloud security.
• Hands‑on knowledge of IAM implementations and identity tooling — specifically Microsoft Entra  (Azure AD), PAM/PIM solutions, and Azure Key Vault.
• Working familiarity with enterprise Microsoft security platforms (Microsoft 365, Entra , Microsoft Intune, Microsoft Defender, Microsoft Purview) sufficient to guide technical direction and support informed decision‑making.
• Demonstrated experience producing security documentation: data flow diagrams, threat models, architecture diagrams, and design decision records.

• Entra  (Azure AD) administration, conditional access policies, and identity governance workflows.
• Privileged access patterns: PAM/PIM workflows, just‑in‑time (JIT) access, and least‑privilege enforcement.
• Azure Key Vault management, secrets lifecycle, and key rotation automation.
• Identity‑based threat detection and response (e.g., Microsoft Entra , Identity Secure Score).
• Azure…