Description

About Bodwé Group

Bodwé is the Professional Services Group of Mno-Bmadsen, the investment enterprise and a wholly owned instrumentality of the Pokagon Band of Potawatomi. We are architects, planners, consultants, designers, engineers, scientists, and federal contractors, committed to growing the economy and legacy of the Pokagon Band and supporting its more than 6,000 citizens. We provide value by integrating expertise across the natural and built environment lifecycle—from pre-development and planning to design, procurement, construction, and operations. By integrating expertise across architecture, engineering, construction, and facility management, we deliver holistic, end-to-end solutions that drive efficiency and deliver distinctive outcomes.

Position Summary

We are seeking a Systems Engineer to own, architect, and maintain our Microsoft security stack (O365 Sentinel, Defender, Purview) and overall electronic communications and file sharing technology infrastructure. This role will be critical in ensuring our environment remains secure, NIST 800-171 compliant, observable, and scalable. The ideal candidate blends hands-on engineering, strong security operations experience, and the ability to design and maintain dashboards, reporting, and automation to support security governance, risk, and compliance.

Accommodation Requests

We are committed to providing access, equal opportunity, and reasonable accommodation for individuals with disabilities in employment. If reasonable accommodation is needed to participate in the job application or interview process, contact our HR Director (April Hawkins) at 269-927-0144 or careers@bodwegroup.com

Essential Duties and Responsibilities

Administer and maintain security tooling across the Microsoft environment. Microsoft Sentinel, Microsoft Defender, and Microsoft Purview (or equivalent Microsoft 365 / Purview data governance tools).In conjunction with MSP, manage and optimize security dashboards, alerts, and reporting for threat detection, incident response, and risk metrics. Own vendor response management and success metrics. Build and maintain compliance reporting to support NIST 800-171 controls, working with compliance lead and vendors to align technical controls with policy.Implement and maintain security tooling (automation, playbooks) to reduce manual work, improve reaction times, and ensure consistency.Own change management documentation for all security-related system changes across our Microsoft cloud environment, including SIEM, endpoint security, identity, and data governance controls.Monitor security events, triage alerts, investigate potential incidents, and support remediation efforts in coordination with other MSP. Escalate to Compliance and Ops leads for org messaging and alerts.Conduct regular tuning of detection rules, logs, and telemetry to reduce noise and improve coverage.Assist MSP in threat hunting, threat modeling, and proactive security assessmentsManage data governance and classification via Purview (or equivalent): define and enforce data classification, labeling, retention, and access policies.Provide technical oversight for user and endpoint security posture; integrate Defender with identity, endpoint, and cloud infrastructure.Maintain and test incident response procedures and playbooks with regards to Covered Unclassified Information (CUI).Support security best practices for cloud infrastructure, identity management, access control, and data protection.Provide training and mentorship to other IT staff on Sentinel, Defender, Purview, and security processes.Collaborate with auditors, compliance leads, and external assessors to prepare for assessments (e.g., NIST, CMMC ISO, etc.).Stay current on Microsoft security offerings, emerging threats, and best practices, and make recommendations for improvements.

Education, Experience, and Technical Skills

Required Education, Experience, and Technical Skills

Bachelor's degree in computer science, information technology, cybersecurity, or related field (or equivalent experience).Minimum 24 years of experience in security operations, systems engineering, or cloud security.Hands-on experience deploying, operating, and maintaining Microsoft Sentinel, Microsoft Defender (endpoint, identity, etc.), and Purview (or similar Microsoft security/GRC tools).Understanding of SIEM, security alerts, log aggregation, and incident response.Experience building dashboards, reports, and alerts to drive visibility and compliance.Scripting, automation, or orchestration experience (PowerShell, Azure Automation, Logic Apps, or similar).

 

Preferred Education, Experience, and Technical Skills

Familiarity with NIST 800-171 (or other government / federal security compliance frameworks) and how technical controls map to its requirements.Certifications such as CISSP, CCSP, Microsoft SC-200 / SC-300 / SC-400, or Azure Security Engineer Associate.Familiarity with Azure cloud infrastructure Azure and identity management (Azure AD, conditional access, etc.)Experience in federal contracting environments or regulated industries (with NIST, FedRAMP, or similar).Prior work in a small or mid-size business environment; tribal organization experience is a plus but not required.Strong problem-solving skills, with the ability to triage security events and lead investigations.Excellent communication skills—able to translate technical security metrics into meaningful reports for leadership, auditors, and compliance teams.Self-starter with a growth mindset; comfortable working in a smaller, evolving organization of about 200-250 users

Work Environment

This position operates in a professional office setting. The role routinely uses standard office equipment such as computers, phones, printers, and photocopiers. The work environment is generally quiet and free from exposure to loud noise, hazardous materials, or heavy machinery. Employees are typically seated for extended periods and may occasionally move about the office to attend meetings or access equipment and supplies.

Physical Demands

Sitting/Standing: This role is generally sedentary, performing sitting work utilizing technological office equipment, including a laptop, mouse, keyboard, computer monitors, telephones, scanners, and copiers.

Walking: This role requires the ability to move about inside the office to access the required technological equipment.

Stooping/Kneeling/Crouching/Crawling: This role may require stooping to reload printer trays with print paper, moving equipment, and managing cords.

Using Hands/Fingers: This role constantly operates technological office equipment such as laptops, mice, keyboards, computer monitors, telephones, scanners, and copiers.

Talking/Hearing: This role requires constant communication with others in the organization to exchange information, review information, and make decisions about information.

Seeing: This role requires seeing, viewing, and distinguishing all aspects of internal and external communications.

Carrying/Lifting: This role requires lifting up to 20lbs to transport technological office equipment to and from various workspaces.   

Equal Employment Opportunity

All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability, or status as a protected veteran.

 

Native American Hiring Preference

Our parent company, Mno-Bmadsen, prefers to hire Pokagon citizens who are qualified and suitable for available positions. For purposes of this section, "qualified" means that the applicant meets the technical and experiential needs for employment; and "suitable" means that the candidate appears to be the best fit considering present circumstances and conditions. Targeted preference is in the following order:

First, to qualified Pokagon Band citizens; andSecond, to qualified spouses and qualified custodial parents; andThird, to other qualified Native Americans; andFourth, to all other qualified applicants

Any determinations as to the applicability of the Pokagon hiring preference are at the discretion of each Company President.

Branch:

Support Staff

Entity:

Bodwe Professional Services

FLSA Status:

Exempt

Hours Per Week:

40-40+

Work Arrangement:

Hybrid

Reports To:

Business Operations Director

Manages Others:

No

Overnight Travel:

None

Tags: 

#LI-Hybrid

#LI-SM1

PI280997785