IT Security Engineer

About Blair Carlisle

Blair Carlisle is a cybersecurity, IT, and AI advisory consulting firm based in Columbus, OH. We serve clients across technology, SaaS, financial services, healthcare, and other mid-market and enterprise sectors with fractional CIO/CISO services, SOC examinations, compliance advisory, IT operations support, and a rapidly growing AI consulting practice.

We are a small, technically deep team. Our engineers work directly with client executives, see the full picture of how a business operates, and ship work that matters. We invest heavily in our people — every engineer here has a path to senior technical leadership.

Role Overview

We are hiring a Security Engineer I to support the operational IT and security work we deliver to clients. This is a hands-on engineering role for someone who is ready to specialize and grow in a senior, technically deep environment. Early-career candidates are encouraged to apply, and we will also consider engineers with more experience who are looking for a high-impact, mentorship-driven team.

You will work across multiple client environments — spanning technology, SaaS, financial services, healthcare, and other enterprise sectors — administering identity platforms, tuning SIEM detections, hardening cloud tenants, and responding to security events. You will report to the CEO and work closely with our senior consultants. Mentorship is built into the role.

What You’ll Do

• Identity & Access Management. Administer Okta, Entra ID (Azure AD), and Google Workspace identity across client tenants — user lifecycle, SSO/SAML/OIDC integrations, MFA enforcement, conditional access policies, and privileged access reviews.
• SIEM & Detection. Operate Microsoft Sentinel, SentinelOne, and similar platforms for client environments. Tune alerts, build queries, triage events, and contribute to detection engineering as you grow into the role.
• Microsoft 365 & Google Workspace Security. Configure and maintain security baselines — Defender for M365, Safe Links/Attachments, DLP, Google Workspace security controls, conditional access, and tenant hardening to CIS benchmarks.
• Cloud Security (Azure & AWS). Help administer client Azure and AWS environments — IAM, security groups/NSGs, logging, GuardDuty/Defender for Cloud findings, and remediation of misconfigurations.
• Incident Response Support. Participate in security event triage and response under the direction of senior engineers. Document findings, capture evidence, and contribute to lessons-learned write-ups.
• Client Documentation & Tickets. Produce clear, concise tickets, runbooks, and client-facing summaries. Our clients are senior executives — your written communication needs to be sharp.
• AI-Assisted Security Work. Use Blair Carlisle’s internal AI tooling (we run a multi-agent platform built on Claude and local models) to accelerate analysis, documentation, and detection work. Curiosity about AI security — model risk, agent safety, data sovereignty — is a real plus.

What We’re Looking ForRequired

• Hands-on experience in IT operations, cloud administration, or security — from a help desk, MSP, SOC, internal IT, or similar setting.
• Working knowledge of Microsoft 365 administration (Exchange Online, SharePoint/OneDrive, Teams, Entra ID).
• Familiarity with at least one major cloud platform — Azure or AWS — including IAM concepts, networking basics, and resource management.
• Practical experience with an identity provider (Okta, Entra ID, Google Workspace, JumpCloud, or similar).
• Exposure to a SIEM or EDR platform (Sentinel, Google SecOps, Palo Alto Cortex, Splunk, SentinelOne, CrowdStrike, Defender, or similar).
• Strong written communication — you can explain a technical issue to a CIO without burying them in jargon.
• U.S.-based with the ability to work standard business hours; reliable home internet and workspace.

Nice to Have

• Industry certifications such as Security+, AZ-500, AWS Security Specialty, SC-200, Okta Certified Professional, or equivalent.
• Scripting in PowerShell, Python, or Bash — enough to automate a repetitive task or pull data from an API.
• Experience with Google Workspace administration in addition to M365.
• Exposure to compliance frameworks (SOC 2, HIPAA, CIS Controls) — you don’t need to be an auditor, but understanding why controls exist is useful.
• Hands-on experience with AI tools, agent platforms, or LLM APIs in a security or IT context.
• Background in a multi-tenant or MSP environment.

Who Will Thrive in This Role

• Curious. You read changelogs, try new tools, and want to know how things actually work — not just how to click through them.
• Self-directed. You don’t wait to be told what to do next. You see a gap, ask if you should fill it, and then fill it.
• Growth-oriented. You want a role that will stretch you. You want senior engineers to push you, not babysit you, and you actively seek out new skills and challenges.
• Direct. You write clearly. You ask questions when something doesn’t add up. You flag risks early.
• Trustworthy. You will have access to sensitive client environments. We expect discretion, judgment, and a security-first mindset by default.

What We Offer

• Competitive base salary in the $80,000–$95,000 range, with room to grow as you take on more responsibility.
• Fully remote work with the autonomy of a small, senior team.
• Direct mentorship from a CEO and senior engineers who hold CISA, CISSP, ISO, CDPSE, and other senior credentials.
• Exposure to a wide range of client environments — you will see more in your first year here than most engineers see in five at a single employer.
• Budget for certifications, training, and conferences. We want you to keep learning.
• Hands-on involvement in Blair Carlisle’s internal AI platform — a rare opportunity to learn modern security AI from the inside.
• A clear path to Security Engineer II and Senior Security Engineer as you develop.

Pay: $79,046.20 - $95,195.42 per year

Benefits:

• Flexible schedule
• Paid time off

Work Location: Remote