Cybersecurity Operations Engineer

About the role

We are seeking a Cybersecurity Operations Engineer to run security operations across a holding company and its portfolio of businesses while leading the technical evaluation of our next-generation security stack. This role owns MDR operations, incident response, endpoint security, and cloud security posture today, while driving proof-of-concept (POC) efforts for Palo Alto Cortex XDR/XSIAM and Prisma Access as we evaluate consolidating our MDR and moving toward a unified SASE and cloud security architecture. You will work closely with the Cybersecurity Manager and vCISO, collaborate with the Sr. IT Operations Engineer on identity and endpoint controls, and partner with portfolio company IT and engineering teams. This role will also address critical gaps including cloud security strategy, CIS hardening, CASB/DLP, vulnerability management, and continuous pentesting. Join us in this Full-time role, based in our Dallas Office at the Link: 2601 Olive Street, Dallas, TX. Be part of a vibrant community where amazing people, data & insights, and perpetual innovation converge to shape the future of digital commerce! About This Role at Momentum

Responsibilities

• MDR Operations & Incident Response
• Serve as primary liaison to the MDR provider; own escalation workflows, alert triage, and SLA accountability across all entities
• Act as primary incident responder, leading containment, eradication, recovery, and post-incident documentation
• Maintain and test incident response playbooks aligned to MITRE ATT&CK
• Lead tabletop exercises in coordination with the vCISO and drive IR maturity across portfolio companies
• Lead technical evaluation of Palo Alto Cortex XSIAM, including POC design, capability assessment, and transition planning
• Endpoint Security & Hardening
• Own endpoint security posture across ~1,400 macOS and 300 Windows devices
• Eliminate local admin access across the macOS fleet (priority initiative)
• Manage Jamf, Jamf Protect, and Jamf Connect; maintain CrowdStrike configurations and detection tuning
• Define and implement CIS baselines and hardening standards across endpoints and servers
• Palo Alto Platform Evaluation
• Lead POC for Cortex XDR/XSIAM: scenario design, detection validation, and operational fit
• Evaluate Prisma Access (SASE: ZTNA, SWG, CASB) and Prisma Cloud (CSPM/CWPP)
• Produce technical assessments covering capability gaps, integration complexity, migration risk, and total cost of ownership
• Own implementation if selected
• Cloud Security & Vulnerability Management
• Own cloud security strategy across AWS, GCP, and Azure
• Expand CloudTrail and GuardDuty coverage across environments
• Secure CI/CD pipelines (GitHub Actions), enforce secrets management and least-privilege IAM
• Evaluate and implement vulnerability management platform; enforce remediation SLAs and reporting
• CASB, DLP & Detection Engineering
• Lead CASB and DLP vendor evaluation and implementation
• Maintain and improve CrowdStrike Next-Gen SIEM/LogScale detection rules
• Map detection coverage to MITRE ATT&CK (focus on IAM abuse, lateral movement, data exfiltration)
• Evaluate and implement continuous pentesting platforms (Pentera, NodeZero, Horizon3)
• Portfolio Company Engagement
• Conduct technical security assessments across portfolio companies
• Support DevSecOps and secure SD

Requirements

• Required Qualifications
• 7-9 years of experience in cybersecurity operations, security engineering, or senior SOC/IR roles
• Hands-on MDR experience (alert triage, escalation workflows, MSSP management)
• Deep expertise with CrowdStrike Falcon (EDR, detection tuning, SIEM/LogScale)
• Endpoint security at scale (macOS with Jamf, Windows with Intune)
• Proven incident response leadership (led incidents end-to-end)
• Cloud security experience in AWS and either GCP or Azure (IAM, CloudTrail, GuardDuty, secrets man

Additional Information

Momentum is a respected collection of independent companies, including PMG, Koddi, Further. We serve as a premier global business transformation partner for over 125 of the Fortune 500 brands. With 1,400 global employees and $5B in media spend under management, we foster a fast-growing, values-driven, people-first environment where you can thrive. Our portfolio of companies partners with some of the world's most iconic and ambitious brands. We combine scalability with a solutions-oriented approach to deliver fast-paced, innovative results for our customers while creating meaningful growth opportunities for our teams. If you are looking for opportunities to grow in your career and are passionate about being at the forefront of data and technology, and driving rapid innovation in the future of commerce, we would love to talk with you about joining Momentum. We believe that a culture of belonging, inclusion, and diversity is key to empowering our team members to thrive both personally and professionally. Living out our values is not just a goal; it's a daily practice! For more information, please visit www.momentum.com .

Your Match

How well this role fits your profile.

Company Intel

What employees say

Worked at Momentum? Share your experience