Security Specialist

Security Specialist

WHO WE ARE:

STAHL Companies provides the Program Management for its Channel of Commercial Technology companies in Government that consist of Small Businesses and New Technology start-ups.STAHL advocates for policies that can improve government services and maintain our government's competitive advantage, by bringing more technology into government programs.STAHL Companies advocates on behalf of our nation's innovative, new technology and small businesses looking to work with the U.S. government. We do this by aligning the voice of our small business members with advocacy for change in federal policy that will make the government market more accessible to small businesses and the commercial technology ecosystem.The Channel's founding Technical Board Members include former government leaders and IT executives passionate about bringing best-of-breed technology to the government.

We are seeking a skilled and experienced Security Specialist to join our team!

The Security Specialist provides expert-level support across Microsoft 365 (M365) security, governance, compliance, and identity solutions in a large corporate or government environment. This role leads the implementation of enterprise security controls, supports cyber architecture, enables secure collaboration across M365 services, and ensures compliance with organizational, federal, and industry standards. The specialist works directly with engineers, architects, ISSOs, and business units to safeguard data, mitigate risk, and maintain a secure, resilient cloud ecosystem.

Key Responsibilities:

• Lead security administration, compliance governance, and identity protection activities across the Microsoft 365 environment.
• Implement, configure, and optimize security controls across Exchange Online, SharePoint Online, OneDrive, Teams, Intune, Azure AD, Power Platform, and Copilot-enabled services.
• Monitor and enforce enterprise policies for data retention, DLP, classification, encryption, conditional access, and secure sharing.
• Manage and audit permissions, group policies, identities, authentication mechanisms, and role-based access across tenants and systems.
• Develop, review, and maintain PowerShell scripts for security configuration, reporting, automation, and compliance monitoring.
• Design and implement Purview-based data protection, data lifecycle, and data readiness strategies.
• Oversee AvePoint Online Services for tenant governance, activity auditing, cross-tenant migration support, reporting, and compliance enforcement.
• Support incident response activities by analyzing logs, identifying root causes, and recommending remediation steps.
• Collaborate with engineers, architects, system administrators, and ISSOs to design secure integrations across M365 workloads.
• Evaluate and implement Microsoft security enhancements, including Defender suite capabilities, Copilot integrations, Loop, Graph connectors, and Zero Trust improvements.
• Support system hardening, audit preparation, POA&M updates, continuous monitoring, and compliance assessments.
• Document and manage Security Change Requests, ensuring all updates meet regulatory and organizational requirements.
• Provide detailed reporting on security posture, risks, incidents, compliance activities, and mitigation strategies.
• Conduct regular security reviews, access audits, and vulnerability assessments across M365 environments.
• Assist teams in securely developing solutions using Power Apps, Power Automate, Power BI, and other low-code platforms.
• Maintain up-to-date knowledge of cybersecurity trends, Microsoft security roadmap, and evolving compliance requirements.
• Communicate security impacts, risks, and recommendations to leadership, stakeholders, and non-technical audiences.
• Promote secure user behavior and provide training, guidance, and awareness across teams.
  

Education:

Qualifications:

Bachelor’s degree in computer science, Information Technology, or related field

Preferred Certifications:

Microsoft 365 Certified: Enterprise Administrator ExpertMicrosoft Certified: Power Platform Solution Architect ExpertMicrosoft Certified: Security, Compliance, and Identity FundamentalsMicrosoft Certified: Azure Solutions Architect Expert

Security Clearance:

Minimum Background Investigation (MBI) required

General Requirements:

• Minimum 5 years’ experience supporting Microsoft 365 Cloud Based Suite in a large corporate or government environment.
• Experience with the M365 cloud platform implementing, managing, and optimizing M365 solutions across organizational environments.
• Hands-on knowledge implementing, managing, and optimizing M365 solutions (Exchange Online, SharePoint Online, OneDrive, Power Platform, Teams, Copilot, AvePoint), including migrations, security, and governance practices in M365.
• Comprehensive understanding of cross-functional tasks and responsibilities to support seamless collaboration.
  

Primary Technical Requirements:

• Extensive experience with Microsoft Power Platform (PowerApps, Power BI, Flow/Power Automate).
• Strong .NET development skills (C#, ASP.Net MVC, Entity Framework, JavaScript, HTML, CSS)
• Proficiency in PowerShell scripting for M365 administration tasks.
• Strong working knowledge of Exchange Online, Intune, Azure AD, and the Azure ecosystem.
• Experience with M365 development and SharePoint Administration (tenant/site-level admin).
• Demonstrated experience developing model-driven PowerApps
• Demonstrated experience customizing SharePoint lists and integrating disparate systems with PowerApps
• Experience managing user permissions, data retention, and compliance settings.
• Understanding of Copilot for Power Apps, Copilot for Power Automate, and AI Builder as part of the M365 solution set.
• Ability to troubleshoot and resolve technical issues across the M365 cloud platform and AvePoint Online Services.
  

Secondary Requirements:

• Experience developing data readiness plans and integrating Purview to protect sensitive data.
• Extensive SharePoint Online Administration experience.
• Experience supporting Windows Server and SQL database clusters (2019/2022) in an M365 context.
• Experience designing and implementing Power Platform environments and pipelines.
• Experience with Microsoft product enhancements such as Defender, copilots, Loop, Purview, Graph connector.
• Experience designing and managing SharePoint on-premises farm infrastructure.
• Knowledge of AvePoint Online Services interfaces and security (tenant-to-tenant, Splunk, BYOK, IP restrictions, SFTP).
• Experience applying data connectors and establishing enterprise policies.
• Experience assisting application development using Power Apps, Power Automate, and Power BI (even if hands-on dev is done by Developer roles).
• Experience collaborating with systems support staff to integrate SharePoint Online, Teams, Exchange Online, and Azure services.
  

Administrative Requirements:

• Experience ensuring processes, plans, schedules, and written documents are completed on time.
• Experience documenting and managing Security Change Requests and audit logging solutions.
• Knowledge of security and cyber architect support
• Experience preparing bi-weekly technical status reports (schedule, deliverables, actions, risks, mitigations, escalations, accomplishments, closures).
• Experience preparing monthly consolidated status reports on the overall health of a technical team or program.
• Excellent verbal and written communication skills, including explaining technologies and technical business concepts to multiple audiences.
• Demonstrated ability to establish and maintain effective business unit relationships.
• Position is contingent upon award. Location: REMOTE To know more about the company, visit Stahl Companies (stahlusa.us)
  

Department M365 Employment Type Contract / Temp Location M365CSS-IRS-REM Workplace type OnsiteKey ResponsibilitiesThe Security Specialist provides expert-level support across Microsoft 365 (M365) security, governance, compliance, and identity solutions in a large corporate or government environment. This role leads the implementation of enterprise security controls, supports cyber architecture, enables secure collaboration across M365 services, and ensures compliance with organizational, federal, and industry standards. The specialist works directly with engineers, architects, ISSOs, and business units to safeguard data, mitigate risk, and maintain a secure, resilient cloud ecosystem.

About Stahl Companies

STAHL USA provides the Program Management for its Channel of Commercial Technology companies in Government that consist of Small Businesses and New Technology startups.STAHL advocates for policies that can improve government services and maintain our government's competitive advantage, by bringing more technology into government programs.STAHL USA advocates on behalf of our nation's innovative, new technology and small businesses looking to work with the U.S. government. We do this by aligning the voice of our small business members with advocacy for change in federal policy that will make the government market more accessible to small businesses and the commercial technology ecosystem.BiC-1, a sister company to STAHL USA, was founded in 2020 with just two partners and some meaningful relationships, is a U.S.-based, diverse, Joint Venture Partnership, supported by our Channel Member Services and Supply-Chain Management Center (SCMC).We are a Joint Venture of Best-in-Class, small business Government contractors (who are SAMS registered and SBA Approved) with extensive breadth and depth, specializing in areas of Data Center Management, Cloud Solutions, Cyber Security, Systems Integration, Worldwide C6ISR, Data Analytics, and Mission-Focused Engineering.BiC-1 responds to today's demanding and ever-changing technology and warfare landscapes by delivering innovative, secure, and agile solutions that transform and modernize Government operations, improving our national security and well-being. We focus on providing a broader and deeper set of capabilities to simplify complex problems into NAICS segments, with achievable goals, valuing people and relationships over profit.Apply NowOur Hiring Process

Stage 3:

Interview

Stage 4:

Hired

Stage 1:

Applied

Stage 2:

Review

Stage 4:

HiredNot quite right? Register your interest to be notified of any roles that come along that meet your criteria.Register Your Interest