Security Engineer at Airspace Link Inc

Detroit, Michigan, United States -

Full Time

Start Date

Immediate

Expiry Date

24 Feb, 26

Salary

0.0

Posted On

26 Nov, 25

Experience

2 year(s) or above

Remote Job

Yes

Telecommute

Yes

Sponsor Visa

Skills

Security Engineering, Cloud Security, SOC Operations, Incident Response, Azure Security, Microsoft Defender, Microsoft Sentinel, Microsoft Intune, Vulnerability Remediation, Terraform, DevSecOps, Threat Modeling, Risk Assessments, ISO Compliance, NIST CSF, FAA Regulations

Industry

Software Development

Description

Description About Airspace Link Airspace Link is a fast-growing Series B startup shaping the future of drone operations. We provide innovative software solutions that enable safe, scalable, and integrated drone flights in communities nationwide. As an FAA-approved provider of LAANC airspace checks and B4UFLY safety checks, we serve as the air traffic control system for drones, supporting cities, states, and federal agencies while enabling private industry to thrive in the emerging drone economy. About the Role Airspace Link is seeking a Security Engineer to support the security posture of our SaaS platform and internal cloud environment. This role is a strong contributor position focused on hands-on execution—working within established architectures and processes to help improve detection, response, and security controls across the Microsoft ecosystem. You’ll collaborate with IT, engineering, and compliance teams to assess issues, implement solutions, and support ongoing alignment with ISO 27001, 27701, 9001, SOC 2, and FAA LAANC requirements. Key Responsibilities Assist with implementing and maintaining security controls within Azure and SaaS environments. Support the incident response lifecycle, including initial investigation, coordination with engineering, and documentation of remediation actions. Monitor, tune, and assist in the operation of the Microsoft Defender suite (Defender for Cloud, Endpoint, Identity, Cloud Apps, and Vulnerability Management). Support mobile device management (MDM) and endpoint compliance using Microsoft Intune and Endpoint Manager. Partner with engineering teams to identify, prioritize, and track remediation of vulnerabilities across applications, cloud infrastructure, and CI/CD pipelines. Help implement and maintain Entra ID Conditional Access and Privileged Identity Management (PIM). Assist in integrating DevSecOps guardrails within Azure DevOps and GitHub pipelines (e.g., CodeQL, IaC scanning, secret governance). Participate in developing dashboards and analytics in Microsoft Sentinel, including KQL queries and incident correlation support. Contribute to threat modeling and risk assessments as part of project reviews. Support the creation and upkeep of security configuration baselines, Terraform modules, and policy templates. Assist with internal and external audits aligned with ISO, NIST CSF, and FAA frameworks. Location: Hybrid Status: Exempt Requirements 2–5 years of experience in security engineering, cloud security, SOC/IR operations, or related hands-on security roles. Working knowledge of Azure security concepts and Microsoft cloud security tools. Practical experience with: Microsoft Defender for Cloud, Endpoint, Identity, and Cloud Apps Microsoft Sentinel (KQL querying, incident investigation, dashboards) Microsoft Intune / Endpoint Manager (MDM/MAM) Microsoft Purview (DLP and compliance tooling) Hands-on experience supporting vulnerability remediation with engineering teams. Familiarity with Terraform, secure CI/CD practices, and cloud configuration management. Strong written and verbal communication skills with the ability to collaborate cross-functionally. Relevant Certifications (Preferred) CompTIA Security+ Microsoft SC-200: Security Operations Analyst Microsoft SC-300: Identity and Access Administrator Microsoft AZ-500: Azure Security Engineer Associate CompTIA CySA+ or PenTest+ ISC2 CC (Certified in Cybersecurity) ISACA CISM or CRISC (nice to have)

Responsibilities

The Security Engineer will support the security posture of the SaaS platform and internal cloud environment, focusing on hands-on execution to improve detection, response, and security controls. Responsibilities include implementing security controls, supporting incident response, and collaborating with various teams to ensure compliance with relevant standards.