We are seeking a highly skilled Security Engineer with expertise in Microsoft 365 security to join our IT security team. This role is responsible for ensuring the security, integrity, and availability of the organization's hybrid infrastructure, cloud services, and digital assets. The ideal candidate will have a strong background in Microsoft 365 security, along with knowledge of next-generation firewalls, web application firewalls, VPNs, network access control, and related security technologies
Key Accountabilities
* Design and oversee the implementation of Microsoft 365 security solutions, including Defender for Office 365, Defender for Endpoint, Defender for Identity, and Defender for Cloud
* Define governance models and access strategies for Conditional Access, Privileged Identity Management (PIM), and Entitlement Management in Microsoft Entra
* Provide architectural guidance and security requirements for the use of Microsoft Intune across Windows and mobile platforms (iOS and Android), supporting the Workplace and Endpoint teams in the secure configuration of devices
* Ensure compliance with industry security standards (NIST, ISO 27001, GDPR, etc.) and regulatory requirements
* Define and propose proactive security measures to mitigate risks
* Provide incident response and forensic analysis during security breaches or cyberattacks
* Conduct security awareness training for employees to promote best practices in cybersecurity
* Stay updated with emerging cyber threats, vulnerabilities, and security trends to recommend improvements
* Provide input on the design and implementation of network security solutions, including Next Generation Firewalls, VPNs, WAFs, SWG, and NAC systems to safeguard the organization's infrastructure
Networking/Key relationships
Key stakeholders in each funcional area
Minimum Knowledge & Experience required for the position:
* Bachelor’s degree in Computer Science, Cybersecurity, or a related field (or equivalent experience)
* 5+ years of experience in Microsoft 365 security solutions
* Strong knowledge of Zero Trust architecture, Identity and Access Management, Single Sign-On, and Multi-factor Authentication
* Relevant certifications such as Microsoft 365 Enterprise Administrator Expert, and Microsoft 365 Security Administration
* Hands-on experience with Next Generation Firewalls, WAF, VPN, NAC, and IDS/IPS solutions is a plus
* Experience with SIEM, SOAR, and security automation is a plus
Skills & Capabilities:
* Strong analytical and problem-solving skills to identify and address security challenges and vulnerabilities
* Effective communication skills to convey complex cybersecurity concepts to both technical and non-technical stakeholders
* Willingness to stay updated on the latest cybersecurity trends, threats, and technologies through continuous learning and professional development
* Ability to collaborate with cross-functional teams, share information, and work together to enhance overall cybersecurity posture
Travel requirements:
Less than 15% of the time