Senior Security Engineer
Employment Information
Report this job
Job expired or something wrong with this job?
Job Description
Senior Security Engineer managing Microsoft 365 security stack for compliance and threat detection. Collaborating cross-functionally to enhance security controls and respond to incidents.
Responsibilities:
- Own the Microsoft Security Stack
- Manage and optimize Microsoft 365 Defender, Defender for Endpoint, Defender for Identity, Defender for Cloud Apps, and Defender for Office 365
- Administer and tune Microsoft Sentinel - build and maintain KQL detection rules, analytics rules, workbooks, and playbooks
- Monitor the Microsoft Secure Score, prioritize improvement actions, and drive remediation across the tenant
- Configure and maintain Conditional Access policies, Microsoft Entra ID (Azure AD) security settings, and Privileged Identity Management (PIM)
- Monitor and respond to security alerts, incidents, and investigations across Defender XDR and Sentinel
- Develop and maintain incident response playbooks, automation workflows (Logic Apps / SOAR), and escalation procedures
- Perform threat hunting using KQL and identify gaps in detection coverage
- Conduct vulnerability assessments and lead remediation efforts in coordination with IT and engineering teams
- Evaluate and respond to identity-based threats, phishing campaigns, and anomalous behavior patterns
- Serve as a technical resource for SOC 2 Type 2 audit preparation and execution
- Design, implement, and document security controls that satisfy Trust Service Criteria (TSC) requirements across the company’s toolset
- Maintain evidence collection for audit deliverables - access reviews, logging configurations, policy enforcement, and change management records
- Identify control gaps and drive remediation efforts prior to and during audit windows
- Partner with external auditors, providing technical walkthroughs and supporting evidence requests
- Implement and enforce security controls across the company’s broader toolset - SaaS platforms, cloud infrastructure, and endpoint environment
- Advise and support IT on secure configuration for onboarding, offboarding, and access provisioning workflows
- Partner with engineering teams on secure development practices, secrets management, and cloud security posture
- Produce clear, concise reporting on security posture, incident trends, and audit readiness for IT leadership
- Stay current on the Microsoft security roadmap, threat landscape, and emerging attack techniques relevant to the company’s environment
Requirements:
- 5+ years of hands-on experience in a security engineering or security operations role
- 3+ years of deep, practical experience with the Microsoft 365 security suite (Defender XDR, Sentinel, Entra ID, Purview)
- Demonstrated experience supporting or leading a SOC 2 Type 2 audit - from control design through evidence delivery
- Proficiency in KQL (Kusto Query Language) for building detection rules, hunting queries, and dashboards in Sentinel
- Experience with Azure cloud security, including Azure Security Center / Defender for Cloud, RBAC, and policy management
- Hands-on experience with SOAR/automation - Logic Apps, Sentinel playbooks, or equivalent
- Microsoft Certified: Security Operations Analyst Associate (SC-200) or Microsoft Certified: Azure Security Engineer Associate (AZ-500) preferred
Benefits:
- Flexible work arrangements
- Professional development opportunities
Similar Jobs
Information Systems Security Officer – Part-time
Information Systems Security Officer managing IT security and protecting sensitive information for federal clients. Leading risk management and compliance efforts while collaborating with various stakeholders.
Security & Compliance Engineer
Security & Compliance Engineer for ARGO-HYTOS Group. Ensuring information security and compliance in a global IT environment.
Virtual Chief Information Security Officer – vCISO
Virtual Chief Information Security Officer leading information security and compliance initiatives at a healthcare platform. Ensuring secure technology systems and serving as a strategic advisor to leadership.
Senior Security Engineer
Senior Security Engineer focused on securing infrastructure through technology deployment and incident response for a digital asset protection at ARC-One Solutions.
Azure Solutions, Security Architect
Azure Solutions Architect leading security-focused Azure cloud solutions at Ascend Technologies. Designing scalable architectures, ensuring compliance, and mentoring teams in Agile environments.
Presales Security Expert – National Partners
Presales Security Expert supporting and enabling Fortinet's Canadian partners with solutions and technical improvements. Involving multi-team collaboration and direct partner engagement for effective results.
Senior Information Security Engineer
Senior Information Security Engineer responsible for implementing security solutions for enterprise environments. Collaborating with teams to enhance security architecture and manage stakeholder relationships.
Intern, Blue Team
Internship position in Cyber Security at It4us focusing on Blue Team operations and security analysis. Supporting various tasks involving Linux, development, and threat monitoring.
Security Engineer – Client Consulting
Threat Protection Security Engineer at Cyclotron deploying Microsoft Defender and Sentinel for enterprise organizations. Collaborating with security engineers to improve protection of Microsoft-based assets in cloud and on-premises environments.
Security Controls Assessor – OSCAL, Part Time
Security Controls Assessor conducting security compliance assessments and reports for U.S. Government and Commercial clients. Required experience with OSCAL and NIST guidelines.
Security Controls Assessor
Security Controls Assessor developing compliance frameworks for federal clients using NIST, RMF, and FISMA. Conducting assessments and creating security plans with a focus on continuous improvement.
Mid-level Cybersecurity Engineer
Cybersecurity Engineer focusing on offensive security and penetration testing in a fully remote role. Requiring extensive experience in web applications and modern environments.
AI Engineer – Offensive Security
AI Engineer designing and building LLM-powered systems for offensive security work. Collaborating on agent architecture and integration of security tools in a remote setting.
Senior Strategic Account Manager, Data Center – Security
Strategic Account Manager for integrated security solutions at Johnson Controls. Focused on expanding relationships with contractors and driving revenue growth in security systems.
Network Security Architect, Cybersecurity Expert, Palo Alto certified
Senior Network Engineer specializing in Palo Alto security solutions for Kapres Technology. Working fully remote from Morocco with expertise in Fortinet and cybersecurity.
Security and Compliance Manager
Security and Compliance Manager overseeing compliance and assurance at Semaphore. Ensuring audit readiness and maintaining security processes within a remote-first software company.
Security Alignment Engineer
Security Alignment Engineer safeguarding clients' IT infrastructure at Onsite Logic. Conducting audits, providing technical support, and enhancing security posture for clients.
Network Security Engineer
Network Security Engineer focusing on architecture and engineering for network security with Zero Trust principles. Involves Zscaler environments, firewall management, and collaboration with architects and SOC teams.
Business Analyst Level 3, Security Coordinator
Business Analyst Level 3 - Security Coordinator for healthcare IT consulting firm. Responsible for overseeing security administration and user provisioning in a remote position.
Administrador de Sistemas Microsoft, Identidad, Seguridad
Administrador/a de Sistemas Microsoft especializado en seguridad e identidad para servicios remotos. Administración y soporte de entornos Microsoft en la nube, híbridos y locales.