Home › Companies › Fa Exvu Saasfaprod1 Fa Ocs Oraclecloud Com CX 1 › Sr Cybersecurity Engineer
Sr Cybersecurity Engineer
Fa Exvu Saasfaprod1 Fa Ocs Oraclecloud Com CX 1 · Arlington, TX, United States; US - Arlington AOC I, TX, Arlington, TX, US · Hybrid · Active · Oracle Recruiting Cloud / Fusion HCM
Job facts
| Field | Value |
|---|---|
| Company | Fa Exvu Saasfaprod1 Fa Ocs Oraclecloud Com CX 1 |
| Title | Sr Cybersecurity Engineer |
| Normalized title | - |
| Department / team | Technology |
| Location | Arlington, TX, United States |
| Work model | Hybrid / Hybrid |
| Employment type | Full Time |
| Salary | - |
| Status | active |
| ATS provider | Oracle Recruiting Cloud / Fusion HCM |
| Posted / first seen | 2026-05-15 / 2026-05-31 |
| Changed / last seen | 2026-06-03 / 2026-06-04 |
Related slices
| Page | What it contains | Open |
|---|---|---|
| Company jobs | Active postings from Fa Exvu Saasfaprod1 Fa Ocs Oraclecloud Com CX 1. | Open |
| Company breakdowns | Role, location, ATS, and work model facets for this company. | Open |
| ATS provider jobs | Active postings observed through Oracle Recruiting Cloud / Fusion HCM. | Open |
| Provider filtered search | The same provider as a filtered job collection. | Open |
| City jobs | Active postings in Arlington. | Open |
| Department jobs | Active postings in Technology. | Open |
| Work model jobs | Active Hybrid postings. | Open |
| Lifecycle events | Open, update, close, and reopen events for this posting. | Open |
| Original posting | Canonical source or apply URL captured from the ATS. | Open |
Linked records
| Company | Fa Exvu Saasfaprod1 Fa Ocs Oraclecloud Com CX 1 |
| Source | f6d0cadf-249b-4136-83dc-06ed741e1fb3 |
| ATS provider | Oracle Recruiting Cloud / Fusion HCM |
Description
Description
Why GMF Cybersecurity?
Innovation isn’t just a talking point at GM Financial, it’s how we operate. By joining our team, you’ll work in a mission-focused environment with specialized teams, including Engineering, Threat Intelligence, Vulnerability Management, Incident Response, Firewall, Governance, Risk, Architecture and Offensive Security. These teams collaborate to identify, manage and respond to threats, all while driving innovation across the environment.
Cybersecurity is central to our strategic vision, so you’ll benefit from exceptional leadership visibility, with direct reporting lines to the CEO. This structure ensures your work is recognized and supported at the highest levels, while also enabling bold innovation and the adoption of cutting-edge technologies.
Shape the future of Cybersecurity at GM Financial, with the freedom to explore, the tools to build and the support to thrive.
This position will be posted until filled.
Responsibilities
About the role
This role serves as the senior subject matter expert for cloud incident response across Microsoft Azure and Microsoft 365. You will lead high ‑ impact investigations, mentor responders, and continuously improve the speed, quality, and repeatability of cloud incident response operations. This position is ideal for an experienced cloud security engineer, architect, or incident responder who thrives in complex investigations and wants to shape how cloud response is done at scale.
In this role you will:
Lead Azure and Microsoft 365 security investigations, including identity compromise, privilege escalation, persistence, data exfiltration, and abuse of cloud services Act as the senior escalation point for complex cloud investigations, providing investigative direction and response strategy Perform investigations using Azure Activity Logs, Entra ID logs, Microsoft 365 Unified Audit Log, Defender telemetry, and related forensic artifacts Develop and standardize cloud ‑ specific incident response playbooks to improve consistency and efficiency Stay current with evolving attack techniques and security technologies to design, build, and continuously refine cloud detections and alerts across Azure and Microsoft 365 Participate in an on ‑ call rotation as needed to support timely response to security incidents outside of standard business hours
Qualifications
What makes You an ideal candidate?
Knowledge and Skills
Extensive hands ‑ on experience responding to security incidents in Microsoft Azure and/or Microsoft 365 Strong understanding of Azure tenant and subscription architecture, Entra ID identity models, roles, conditional access, and privilege management Deep familiarity with cloud logging, telemetry sources, and forensic artifacts, including what is available, how it is acquired, and how attackers attempt to evade it Advanced experience writing and optimizing KQL queries for investigation and threat hunting across Defender data sources Ability to use Graph API, PowerShell, and automation to acquire evidence, investigate at scale, and accelerate response actions Demonstrate strong familiarity with cloud security platforms such as Microsoft Defender and Wiz Strong knowledge of the NIST Incident Response Life Cycle and the MITRE ATT&CK Framework Experience translating investigations into repeatable response processes, documentation, and improvement opportunities for detection and prevention. Background in cloud security engineering or architecture or prior senior ‑ level incident response experience with significant cloud exposure. Demonstrated ability to communicate across multiple levels of stakeholders Ability to document and summarize technical evidence and findings Good interpersonal, verbal, and written communication skills across various mediums
Ability to exercise prudent judgment and offer knowledgeable recommendations
Education & Work Experience
High School Diploma or equivalent required Bachelor’s Degree in related field or equivalent work experience strongly preferred 3-5 years of experience in large and complex business environments with a successful track record working directly with senior level management preferred 3-5 years of experience in one or more of the following domains: Cybersecurity, Information Security, Network Engineering, or Network Operations, Information Technology, Application Development preferred
Licenses and Certifications
One or more security related certifications, such as CISSP, CCNP-Security, GIAC, CEH, or CPTS highly preferred
What We Offer : Generous benefits package available on day one to include: 401K matching, bonding leave for new parents (12 weeks, 100% paid), tuition assistance, training, GM employee auto discount, community service pay and nine company holidays.
Our Culture: Our team members define and shape our culture — an environment that welcomes innovative ideas, fosters integrity, and creates a sense of community and belonging. Here we do more than work — we thrive.
Compensation: Competitive pay and bonus eligibility.
Work Life Balance: Flexible hybrid work environment, 4-days a week in office.
NOTE: We are unable to consider candidates who require visa sponsorship for this position
This position is not open to agency submissions
#GMFJobs
#LI-ST1
#LI-Hybrid
Full job record
| Job ID | 4611f0d7bd6d4c2d406ff28d7c9095246a0d3bce |
| Org ID | 75949101-40bb-42f4-afdd-cf86ec16bd86 |
| Source ID | f6d0cadf-249b-4136-83dc-06ed741e1fb3 |
| Board ID | f6d0cadf-249b-4136-83dc-06ed741e1fb3 |
| Provider | oracle_hcm |
| Provider Job Key | 260064 |
| Title | Sr Cybersecurity Engineer |
| Normalized Title | — |
| Status | active |
| Active | yes |
| Location Text | Arlington, TX, United States; US - Arlington AOC I, TX, Arlington, TX, US |
| Department | Technology |
| Team | — |
| Employment Type | full_time |
| Workplace Type | hybrid |
| Remote Policy | hybrid |
| Country | United States |
| Region | TX |
| City | Arlington |
| Salary Raw | Description Why GMF Cybersecurity? Innovation isn’t just a talking point at GM Financial, it’s how we operate. By joining our team, you’ll work in a mission-focused environment with specialized teams, including Engineering, Threat Intelligence, Vulnerability Management, Incident Response, Firewall, Governance, Risk, Architecture and Offensive Security. These teams collaborate to identify, manage and respond to threats, all while driving innovation across the environment. Cybersecurity is central to our strategic vision, so you’ll benefit from exceptional leadership visibility, with direct reporting lines to the CEO. This structure ensures your work is recognized and supported at the highest levels, while also enabling bold innovation and the adoption of cutting-edge technologies. Shape the future of Cybersecurity at GM Financial, with the freedom to explore, the tools to build and the support to thrive. This position will be posted until filled. Responsibilities About the role This role serves as the senior subject matter expert for cloud incident response across Microsoft Azure and Microsoft 365. You will lead high ‑ impact investigations, mentor responders, and continuously improve the speed, quality, and repeatability of cloud incident response operations. This position is ideal for an experienced cloud security engineer, architect, or incident responder who thrives in complex investigations and wants to shape how cloud response is done at scale. In this role you will: Lead Azure and Microsoft 365 security investigations, including identity compromise, privilege escalation, persistence, data exfiltration, and abuse of cloud services Act as the senior escalation point for complex cloud investigations, providing investigative direction and response strategy Perform investigations using Azure Activity Logs, Entra ID logs, Microsoft 365 Unified Audit Log, Defender telemetry, and related forensic artifacts Develop and standardize cloud ‑ specific incident response playbooks to improve consistency and efficiency Stay current with evolving attack techniques and security technologies to design, build, and continuously refine cloud detections and alerts across Azure and Microsoft 365 Participate in an on ‑ call rotation as needed to support timely response to security incidents outside of standard business hours Qualifications What makes You an ideal candidate? Knowledge and Skills Extensive hands ‑ on experience responding to security incidents in Microsoft Azure and/or Microsoft 365 Strong understanding of Azure tenant and subscription architecture, Entra ID identity models, roles, conditional access, and privilege management Deep familiarity with cloud logging, telemetry sources, and forensic artifacts, including what is available, how it is acquired, and how attackers attempt to evade it Advanced experience writing and optimizing KQL queries for investigation and threat hunting across Defender data sources Ability to use Graph API, PowerShell, and automation to acquire evidence, investigate at scale, and accelerate response actions Demonstrate strong familiarity with cloud security platforms such as Microsoft Defender and Wiz Strong knowledge of the NIST Incident Response Life Cycle and the MITRE ATT&CK Framework Experience translating investigations into repeatable response processes, documentation, and improvement opportunities for detection and prevention. Background in cloud security engineering or architecture or prior senior ‑ level incident response experience with significant cloud exposure. Demonstrated ability to communicate across multiple levels of stakeholders Ability to document and summarize technical evidence and findings Good interpersonal, verbal, and written communication skills across various mediums Ability to exercise prudent judgment and offer knowledgeable recommendations Education & Work Experience High School Diploma or equivalent required Bachelor’s Degree in related field or equivalent work experience strongly preferred 3-5 years of experience in large and complex business environments with a successful track record working directly with senior level management preferred 3-5 years of experience in one or more of the following domains: Cybersecurity, Information Security, Network Engineering, or Network Operations, Information Technology, Application Development preferred Licenses and Certifications One or more security related certifications, such as CISSP, CCNP-Security, GIAC, CEH, or CPTS highly preferred What We Offer : Generous benefits package available on day one to include: 401K matching, bonding leave for new parents (12 weeks, 100% paid), tuition assistance, training, GM employee auto discount, community service pay and nine company holidays. Our Culture: Our team members define and shape our culture — an environment that welcomes innovative ideas, fosters integrity, and creates a sense of community and belonging. Here we do more than work — we thrive. Compensation: Competitive pay and bonus eligibility. Work Life Balance: Flexible hybrid work environment, 4-days a week in office. NOTE: We are unable to consider candidates who require visa sponsorship for this position This position is not open to agency submissions #GMFJobs #LI-ST1 #LI-Hybrid |
| Salary Min | — |
| Salary Max | — |
| Salary Currency | — |
| Salary Period | day |
| Source URL | https://fa-exvu-saasfaprod1.fa.ocs.oraclecloud.com/hcmUI/CandidateExperience/en/sites/CX_1/job/260064 |
| Apply URL | https://fa-exvu-saasfaprod1.fa.ocs.oraclecloud.com/hcmUI/CandidateExperience/en/sites/CX_1/job/260064 |
| First Seen At | 2026-05-31 18:15:50Z |
| Last Seen At | 2026-06-04 10:59:21Z |
| Last Checked At | 2026-06-04 10:59:21Z |
| Last Changed At | 2026-06-03 11:56:20Z |
| Inactive At | — |
| Source Posted At | 2026-05-15 17:19:26Z |
| Source Updated At | — |
| Raw Payload Uri | s3://bluework-jobs-prod-raw-590183727216/raw/provider=oracle_hcm/board=fa-exvu-saasfaprod1.fa.ocs.oraclecloud.com|CX_1/date=2026-06-04/2026-06-04T10-59-12-969Z-a7a2142fd23adf2e81aaa6b29a166fa28f68a89e89b143256f7dbfffa579cd7c.json |
Event Fields
{
"content_hash": "7c39b61daa0c7dc0b285a99bb3c068e7d3c17fda7a739e9e13aba09ceb2b1594",
"source_hash": "4f67b3c0d5be525266280e57b12f4a3db72ce1cf7dfab688063fb0b2dbabd8ad",
"last_changed_at": "2026-06-03T11:56:20.466Z",
"active_status": "active"
}Parsed Structured
{
"language": "en",
"location": {
"raw": "Arlington, TX, United States",
"city": "Arlington",
"region": "TX",
"country": "United States",
"is_remote": false,
"confidence": 0.8
},
"salary_max": null,
"salary_min": null,
"inferred_at": "2026-06-04T10:59:21.002Z",
"launch_scope": {
"reason": "english_us_canada",
"included": true,
"language": "en",
"location": {
"raw": "Arlington, TX, United States",
"city": "Arlington",
"region": "TX",
"country": "United States",
"is_remote": false,
"confidence": 0.8
},
"countries": [
"United States"
]
},
"remote_policy": "hybrid",
"salary_period": "day",
"workplace_type": "hybrid",
"salary_currency": null
}Extensions
{}Native Structured
{
"detail": {
"Id": "260064",
"Title": "Sr Cybersecurity Engineer",
"media": [],
"skills": [],
"JobType": null,
"Category": "Technology",
"JobGrade": null,
"JobLevel": null,
"JobShift": null,
"WorkDays": null,
"WorkHours": null,
"WorkYears": null,
"Department": null,
"HotJobFlag": false,
"StudyLevel": null,
"WorkMonths": null,
"WorkerType": null,
"GeographyId": 100000029509895,
"JobFamilyId": 300000008745193,
"JobFunction": "Individual Contributor",
"JobSchedule": "Full time",
"BusinessUnit": null,
"ContractType": null,
"Organization": null,
"TrendingFlag": false,
"workLocation": [
{
"Country": "US",
"Region1": "Tarrant",
"Region2": "TX",
"Region3": null,
"Building": null,
"Latitude": "32.69492",
"Longitude": "-97.08886",
"LocationId": 300000008728497,
"PostalCode": "76014",
"TownOrCity": "Arlington",
"AddressLine1": "4001 Embarcadero",
"AddressLine2": null,
"AddressLine3": null,
"AddressLine4": null,
"LocationName": "US - Arlington AOC I, TX"
}
],
"ContentLocale": "en",
"HiringManager": null,
"LegalEmployer": null,
"RequisitionId": 300000259301198,
"WorkplaceType": "Hybrid",
"BusinessUnitId": 300000008619124,
"OrganizationId": 300000008750581,
"GeographyNodeId": 100000221362191,
"JobFunctionCode": "IND_CONT",
"LegalEmployerId": 300000008558108,
"PrimaryLocation": "Arlington, TX, United States",
"RequisitionType": "Employee",
"NumberOfOpenings": null,
"WorkplaceTypeCode": "ORA_HYBRID",
"BeFirstToApplyFlag": false,
"otherWorkLocations": [],
"secondaryLocations": [
{
"Name": "Fort Worth, TX, United States",
"Latitude": "33.0173",
"Longitude": "-97.31038",
"CountryCode": "US",
"GeographyId": 100000029509610,
"GeographyNodeId": 100000221362182,
"RequisitionLocationId": 300000259301203
},
{
"Name": "Irving, TX, United States",
"Latitude": "32.81352",
"Longitude": "-96.95532",
"CountryCode": "US",
"GeographyId": 100000029509305,
"GeographyNodeId": 100000221362201,
"RequisitionLocationId": 300000259301204
}
],
"ExternalContactName": null,
"ShortDescriptionStr": "Serves as a senior cloud incident responder, leading Azure alert investigations and incidents while improving speed, investigative quality, and repeatability across cloud‑native response operations.",
"ExternalContactEmail": null,
"ExternalPostedEndDate": null,
"OtherRequisitionTitle": null,
"requisitionFlexFields": [],
"ApplyWhenNotPostedFlag": null,
"DomesticTravelRequired": null,
"ExternalDescriptionStr": "<div style=\"border-color: currentcolor; border-image: initial; border-style: none; border-width: medium; padding: 0cm 0cm 1pt;\"><p style=\"border-color: currentcolor; border-image: initial; border-style: none; border-width: medium; padding: 0cm;\"><span lang=\"EN-US\"><strong>Why GMF Cybersecurity?</strong></span></p><p style=\"border-color: currentcolor; border-image: initial; border-style: none; border-width: medium; padding: 0cm;\"><span lang=\"EN-US\">Innovation isn’t just a talking point at GM Financial, it’s how we operate. By joining our team, you’ll work in a mission-focused environment with specialized teams, including Engineering, Threat Intelligence, Vulnerability Management, Incident Response, Firewall, Governance, Risk, Architecture and Offensive Security. These teams collaborate to identify, manage and respond to threats, all while driving innovation across the environment.</span></p><p style=\"border-color: currentcolor; border-image: initial; border-style: none; border-width: medium; padding: 0cm;\"><span lang=\"EN-US\">Cybersecurity is central to our strategic vision, so you’ll benefit from exceptional leadership visibility, with direct reporting lines to the CEO. This structure ensures your work is recognized and supported at the highest levels, while also enabling bold innovation and the adoption of cutting-edge technologies.</span></p><p style=\"border-color: currentcolor; border-image: initial; border-style: none; border-width: medium; padding: 0cm;\"><span lang=\"EN-US\">Shape the future of Cybersecurity at GM Financial, with the freedom to explore, the tools to build and the support to thrive. </span></p><p style=\"border-color: currentcolor; border-image: initial; border-style: none; border-width: medium; padding: 0cm;\"><span lang=\"EN-US\">This position will be posted until filled.</span></p></div>",
"ObjectVerNumberProfile": "2",
"PrimaryLocationCountry": "US",
"CorporateDescriptionStr": "",
"ExternalPostedStartDate": "2026-05-15T17:19:26+00:00",
"ExternalQualificationsStr": "<p><strong>What makes You an ideal candidate?</strong></p><p><strong>Knowledge and Skills</strong></p><ul style=\"list-style-type: disc;\"><li>Extensive hands<span style=\"font-family: "Cambria Math", serif;\">‑</span>on experience responding to security incidents in Microsoft Azure and/or Microsoft 365</li><li>Strong understanding of Azure tenant and subscription architecture, Entra ID identity models, roles, conditional access, and privilege management</li><li>Deep familiarity with cloud logging, telemetry sources, and forensic artifacts, including what is available, how it is acquired, and how attackers attempt to evade it</li><li>Advanced experience writing and optimizing KQL queries for investigation and threat hunting across Defender data sources</li><li>Ability to use Graph API, PowerShell, and automation to acquire evidence, investigate at scale, and accelerate response actions</li><li>Demonstrate strong familiarity with cloud security platforms such as Microsoft Defender and Wiz</li><li>Strong knowledge of the NIST Incident Response Life Cycle and the MITRE ATT&CK Framework</li><li>Experience translating investigations into repeatable response processes, documentation, and improvement opportunities for detection and prevention.</li><li>Background in cloud security engineering or architecture or prior senior<span style=\"font-family: "Cambria Math", serif;\">‑</span>level incident response experience with significant cloud exposure.</li><li>Demonstrated ability to communicate across multiple levels of stakeholders</li><li>Ability to document and summarize technical evidence and findings</li><li><p>Good interpersonal, verbal, and written communication skills across various mediums</p><p> </p></li><li><p>Ability to exercise prudent judgment and offer knowledgeable recommendations</p><p> </p></li></ul><p> </p><p><strong>Education & Work Experience</strong></p><ul><li>High School Diploma or equivalent required</li><li>Bachelor’s Degree in related field or equivalent work experience strongly preferred</li><li>3-5 years of experience in large and complex business environments with a successful track record working directly with senior level management preferred</li><li>3-5 years of experience in one or more of the following domains: Cybersecurity, Information Security, Network Engineering, or Network Operations, Information Technology, Application Development preferred</li></ul><p> </p><p><strong>Licenses and Certifications</strong></p><ul><li>One or more security related certifications, such as CISSP, CCNP-Security, GIAC, CEH, or CPTS highly preferred</li></ul><p> </p><p><span lang=\"EN-US\"><strong>What We Offer</strong>: Generous benefits package available on day one to include: 401K matching, bonding leave for new parents (12 weeks, 100% paid), tuition assistance, training, GM employee auto discount, community service pay and nine company holidays.</span></p><p><span lang=\"EN-US\"><strong>Our Culture:</strong> Our team members define and shape our culture — an environment that welcomes innovative ideas, fosters integrity, and creates a sense of community and belonging. Here we do more than work — we thrive.</span></p><p><span lang=\"EN-US\"><strong>Compensation:</strong> Competitive pay and bonus eligibility.</span></p><p><span lang=\"EN-US\"><strong>Work Life Balance:</strong> Flexible hybrid work environment, 4-days a week in office.</span></p><p><span lang=\"EN-US\"><strong>NOTE:</strong></span><i><span lang=\"EN-US\"> <strong>We are unable to consider candidates who require visa sponsorship for this position</strong></span></i></p><p><span lang=\"EN-US\"><strong>This position is not open to agency submissions</strong></span></p><p style=\"margin-left: 18pt;\"><span style=\"color: white;\"><span lang=\"EN-US\">#GMFJobs</span></span></p><p style=\"margin-left: 18pt;\"><span style=\"color: white;\"><span lang=\"EN-US\">#LI-ST1</span></span></p><p style=\"margin-left: 18pt;\"><span style=\"color: white;\"><span lang=\"EN-US\">#LI-Hybrid</span></span></p>",
"InternalQualificationsStr": "<p><strong>What makes You an ideal candidate?</strong></p><p><strong>Knowledge and Skills</strong></p><ul style=\"list-style-type: disc;\"><li>Extensive hands<span style=\"font-family: "Cambria Math", serif;\">‑</span>on experience responding to security incidents in Microsoft Azure and/or Microsoft 365</li><li>Strong understanding of Azure tenant and subscription architecture, Entra ID identity models, roles, conditional access, and privilege management</li><li>Deep familiarity with cloud logging, telemetry sources, and forensic artifacts, including what is available, how it is acquired, and how attackers attempt to evade it</li><li>Advanced experience writing and optimizing KQL queries for investigation and threat hunting across Defender data sources</li><li>Ability to use Graph API, PowerShell, and automation to acquire evidence, investigate at scale, and accelerate response actions</li><li>Demonstrate strong familiarity with cloud security platforms such as Microsoft Defender and Wiz</li><li>Strong knowledge of the NIST Incident Response Life Cycle and the MITRE ATT&CK Framework</li><li>Experience translating investigations into repeatable response processes, documentation, and improvement opportunities for detection and prevention.</li><li>Background in cloud security engineering or architecture or prior senior<span style=\"font-family: "Cambria Math", serif;\">‑</span>level incident response experience with significant cloud exposure.</li><li>Demonstrated ability to communicate across multiple levels of stakeholders</li><li>Ability to document and summarize technical evidence and findings</li><li><p>Good interpersonal, verbal, and written communication skills across various mediums</p><p> </p></li><li><p>Ability to exercise prudent judgment and offer knowledgeable recommendations</p><p> </p></li></ul><p> </p><p><strong>Education & Work Experience</strong></p><ul><li>High School Diploma or equivalent required</li><li>Bachelor’s Degree in related field or equivalent work experience strongly preferred</li><li>3-5 years of experience in large and complex business environments with a successful track record working directly with senior level management preferred</li><li>3-5 years of experience in one or more of the following domains: Cybersecurity, Information Security, Network Engineering, or Network Operations, Information Technology, Application Development preferred</li></ul><p> </p><p><strong>Licenses and Certifications</strong></p><ul><li>One or more security related certifications, such as CISSP, CCNP-Security, GIAC, CEH, or CPTS highly preferred</li></ul><p> </p><p><span lang=\"EN-US\"><strong>What We Offer</strong>: Generous benefits package available on day one to include: 401K matching, bonding leave for new parents (12 weeks, 100% paid), tuition assistance, training, GM employee auto discount, community service pay and nine company holidays.</span></p><p><span lang=\"EN-US\"><strong>Our Culture:</strong> Our team members define and shape our culture — an environment that welcomes innovative ideas, fosters integrity, and creates a sense of community and belonging. Here we do more than work — we thrive.</span></p><p><span lang=\"EN-US\"><strong>Compensation:</strong> Competitive pay and bonus eligibility.</span></p><p><span lang=\"EN-US\"><strong>Work Life Balance:</strong> Flexible hybrid work environment, 4-days a week in office.</span></p><p><span lang=\"EN-US\"><strong>NOTE:</strong></span><i><span lang=\"EN-US\"> <strong>We are unable to consider candidates who require visa sponsorship for this position</strong></span></i></p><p><span lang=\"EN-US\"><strong>This position is not open to agency submissions</strong></span></p><p style=\"margin-left: 18pt;\"><span style=\"color: white;\"><span lang=\"EN-US\">#GMFJobs</span></span></p><p style=\"margin-left: 18pt;\"><span style=\"color: white;\"><span lang=\"EN-US\">#LI-ST1</span></span></p><p style=\"margin-left: 18pt;\"><span style=\"color: white;\"><span lang=\"EN-US\">#LI-Hybrid</span></span></p>",
"OrganizationDescriptionStr": "",
"primaryLocationCoordinates": [
{
"Latitude": "32.7356",
"Longitude": "-97.10772",
"CountryCode": "US",
"GeographyId": 100000029509895,
"GeographyNodeId": 100000221362191
}
],
"ExternalResponsibilitiesStr": "<p><strong>About the role</strong></p><p>This role serves as the senior subject matter expert for cloud incident response across Microsoft Azure and Microsoft 365. You will lead high<span style=\"font-family: "Cambria Math", serif;\">‑</span>impact investigations, mentor responders, and continuously improve the speed, quality, and repeatability of cloud incident response operations. This position is ideal for an experienced cloud security engineer, architect, or incident responder who thrives in complex investigations and wants to shape how cloud response is done at scale.</p><p><strong>In this role you will:</strong></p><ul style=\"list-style-type: disc;\"><li>Lead Azure and Microsoft 365 security investigations, including identity compromise, privilege escalation, persistence, data exfiltration, and abuse of cloud services</li><li>Act as the senior escalation point for complex cloud investigations, providing investigative direction and response strategy</li><li>Perform investigations using Azure Activity Logs, Entra ID logs, Microsoft 365 Unified Audit Log, Defender telemetry, and related forensic artifacts</li><li>Develop and standardize cloud<span style=\"font-family: "Cambria Math", serif;\">‑</span>specific incident response playbooks to improve consistency and efficiency</li><li>Stay current with evolving attack techniques and security technologies to design, build, and continuously refine cloud detections and alerts across Azure and Microsoft 365</li><li>Participate in an on<span style=\"font-family: "Cambria Math", serif;\">‑</span>call rotation as needed to support timely response to security incidents outside of standard business hours</li></ul>",
"InternalResponsibilitiesStr": "<p><strong>About the role</strong></p><p>This role serves as the senior subject matter expert for cloud incident response across Microsoft Azure and Microsoft 365. You will lead high<span style=\"font-family: "Cambria Math", serif;\">‑</span>impact investigations, mentor responders, and continuously improve the speed, quality, and repeatability of cloud incident response operations. This position is ideal for an experienced cloud security engineer, architect, or incident responder who thrives in complex investigations and wants to shape how cloud response is done at scale.</p><p><strong>In this role you will:</strong></p><ul style=\"list-style-type: disc;\"><li>Lead Azure and Microsoft 365 security investigations, including identity compromise, privilege escalation, persistence, data exfiltration, and abuse of cloud services</li><li>Act as the senior escalation point for complex cloud investigations, providing investigative direction and response strategy</li><li>Perform investigations using Azure Activity Logs, Entra ID logs, Microsoft 365 Unified Audit Log, Defender telemetry, and related forensic artifacts</li><li>Develop and standardize cloud<span style=\"font-family: "Cambria Math", serif;\">‑</span>specific incident response playbooks to improve consistency and efficiency</li><li>Stay current with evolving attack techniques and security technologies to design, build, and continuously refine cloud detections and alerts across Azure and Microsoft 365</li><li>Participate in an on<span style=\"font-family: "Cambria Math", serif;\">‑</span>call rotation as needed to support timely response to security incidents outside of standard business hours</li></ul>",
"InternationalTravelRequired": null
},
"list_job": {
"Id": "260064",
"Title": "Sr Cybersecurity Engineer",
"JobType": null,
"Distance": 1778803200000,
"JobShift": null,
"Language": "US",
"WorkDays": null,
"JobFamily": null,
"Relevancy": 3,
"WorkHours": null,
"Department": null,
"HotJobFlag": false,
"PostedDate": "2026-05-15",
"StudyLevel": null,
"WorkerType": null,
"GeographyId": 100000029509895,
"JobFunction": null,
"JobSchedule": null,
"BusinessUnit": null,
"ContractType": null,
"ManagerLevel": null,
"Organization": null,
"TrendingFlag": false,
"workLocation": [
{
"Country": "US",
"Region1": "Tarrant",
"Region2": "TX",
"Region3": null,
"Building": null,
"Latitude": 32.69492,
"Longitude": -97.08886,
"LocationId": 300000008728497,
"PostalCode": "76014",
"TownOrCity": "Arlington",
"AddressLine1": "4001 Embarcadero",
"AddressLine2": null,
"AddressLine3": null,
"AddressLine4": null,
"LocationName": "US - Arlington AOC I, TX"
}
],
"LegalEmployer": null,
"MediaThumbURL": null,
"WorkplaceType": "Hybrid",
"BusinessUnitId": 300000008619124,
"OrganizationId": 300000008750581,
"PostingEndDate": null,
"LegalEmployerId": 300000008558108,
"PrimaryLocation": "Arlington, TX, United States",
"WorkDurationYears": null,
"WorkplaceTypeCode": "ORA_HYBRID",
"BeFirstToApplyFlag": false,
"WorkDurationMonths": null,
"otherWorkLocations": [],
"secondaryLocations": [
{
"Name": "Fort Worth, TX, United States",
"Latitude": 33.0173,
"Longitude": -97.31038,
"CountryCode": "US",
"GeographyId": 100000029509610,
"GeographyNodeId": 100000221362182,
"RequisitionLocationId": 300000259301203
},
{
"Name": "Irving, TX, United States",
"Latitude": 32.81352,
"Longitude": -96.95532,
"CountryCode": "US",
"GeographyId": 100000029509305,
"GeographyNodeId": 100000221362201,
"RequisitionLocationId": 300000259301204
}
],
"ShortDescriptionStr": "Serves as a senior cloud incident responder, leading Azure alert investigations and incidents while improving speed, investigative quality, and repeatability across cloud‑native response operations.",
"requisitionFlexFields": [],
"DomesticTravelRequired": null,
"PrimaryLocationCountry": "US",
"ExternalQualificationsStr": null,
"ExternalResponsibilitiesStr": null,
"InternationalTravelRequired": null
},
"detail_meta": {
"url": "https://fa-exvu-saasfaprod1.fa.ocs.oraclecloud.com/hcmRestApi/resources/latest/recruitingCEJobRequisitionDetails?expand=all&onlyData=true&finder=ById;Id=%22260064%22,siteNumber=CX_1",
"http_status": 200,
"content_type": "application/json",
"response_bytes": 17392
},
"detail_errors": []
}Get this page with API
Rendered from the bluedoor Job Postings API. Reproduce it:
GET https://api.bluedoor.sh/job-postings/v1/jobs/4611f0d7bd6d4c2d406ff28d7c9095246a0d3bce?include=descriptionJSONGET https://api.bluedoor.sh/job-postings/v1/orgs/75949101-40bb-42f4-afdd-cf86ec16bd86JSONGET https://api.bluedoor.sh/job-postings/v1/sources/f6d0cadf-249b-4136-83dc-06ed741e1fb3JSONGET https://api.bluedoor.sh/job-postings/v1/jobs/4611f0d7bd6d4c2d406ff28d7c9095246a0d3bce/eventsJSON