One of our clients, a highly reputable and prominent organization, is currently seeking an experienced Microsoft Security Engineer to join their team.
Minimum Qualifications & Experience:
- Experience with cloud security platforms (e.g., Azure Security)
- Experience with security orchestration, automation, and response (SOAR) tools
- Security certifications (e.g., CISSP, CISA, CEH)
- Minimum of 5 years of experience in a relevant cybersecurity role, preferably within the IT/Security industry.
- Demonstrated expertise in Microsoft Sentinel, Microsoft 365 Defender, Crowdstrike EDR, Mimecast, Netskope, Nessus, network security, and firewalls.
- Strong understanding of security best practices, frameworks, and compliance requirements (e.g., NIST, CIS Controls).
- Excellent analytical and problem-solving skills.
- Strong communication and collaboration skills.
- Ability to work independently and as part of a team.
Job Responsibilities
Threat Detection and Investigation:
o Utilize Microsoft Sentinel and Microsoft 365 Defender to proactively hunt for threats, investigate security incidents, and identify potential vulnerabilities within our environment.
o Analyze security logs and alerts from various security tools, including Crowdstrike EDR, Mimecast, and Netskope to identify and respond to malicious activity.
o Collaborate with the security operations team to investigate and remediate security incidents effectively and efficiently.
• Vulnerability Management:
o Conduct regular vulnerability assessments using tools like Nessus to identify and prioritize vulnerabilities in our network, applications, and systems.
o Develop and implement vulnerability management plans to address identified vulnerabilities in a timely manner.
o Stay up-to-date on emerging threats and vulnerabilities and recommend appropriate mitigation strategies.
• Security Architecture:
o Participate in the design and review of security architecture to ensure alignment with industry best practices and regulatory compliance requirements.
o Recommend and implement security controls and technologies to strengthen the organization’s overall security posture.
o Stay informed about the latest security trends and technologies and advise on their potential implementation within the organization.
• Incident Response:
o Actively participate in the organization’s incident response process, providing expert guidance and technical assistance.
o Analyze incident data to determine the scope and impact of security breaches.
o Assist in remediation and recovery efforts to minimize damage and restore normalcy.
• Knowledge Sharing & Training:
o Share your expertise by providing training and guidance to security team members and other stakeholders on various cybersecurity topics.
o Stay up-to-date on the latest cyber threats and vulnerabilities and share relevant information with the team.