Position:
Full-Time
Location:
Remote
Start Date:
ASAP
Nationality:
Any
Windows Management Experts (WME) is looking for a Microsoft Security Engineer Role for one of our valued clients. The selected candidate will support the design and development of cybersecurity tools and technology along with the integration of new architectural features into existing infrastructures while maintaining the integrity and security of enterprise-wide systems and networks.
The Microsoft Security Engineer will need to be a self-starter with excellent analytical and problem-solving skills, flexibility, good judgment, and the ability to coordinate multiple, concurrent tasks in an effective manner. That said, this individual will work with internal team members to ensure that systems are functional, secure, and scalable. The systems and networks developed will be used to collect and process data and improve the customer’s security infrastructure.
Moreover, this person will be responsible for ensuring that our user devices management is secure enough from the standpoint of all the stakeholders and trusted by everyone. Delivering users an empowering & seamless device experience while providing the required security and protection for the organization’s data will be core to their duties.
Most importantly, the candidate is required to have solid expertise in implementing security controls and threat protection, managing identity and access, and protecting data, applications, and networks in cloud and hybrid environments as part of an end-to-end infrastructure.
All in all, WME is looking for some exceptional communication and interpersonal skills in our new team member. The candidate’s toolbox must be diverse & complete. From being technically savvy to displaying a vigorous passion for learning beyond their traditional areas of expertise, the resource must prove to be an asset to the company.
Required SkillsQualifications/Education:
- Bachelor’s degree in Computer Science or equivalent experience.
- Technical advisor with superior expertise in cybersecurity.
- Able to demonstrate a high degree of credibility and influence senior technical and senior management stakeholders with internal stakeholders.
- Minimum of 4 years of experience in a dynamic business and IT environment, including at least 1 year of technical security experience.
- Good Project Management and time management skills
- Knowledge of information security standards, principles, and practices required.
- Must understand and be knowledgeable regarding emerging security trends and marketplace solutions.
- Ability to gain consensus and alignment on strategies, objectives, and improvement initiatives that support the overall cybersecurity strategy and align with the goals and objectives of business units.
- Excellent written and oral communication skills with the ability to share technical knowledge in business terms.
- Expertise with Azure services and components to build, manage, and maintain Azure Cloud environments.
- Experience with Active Directory (AD) and ADFS
- An understanding of the entire ecosystem of data protection including a well-rounded understanding of the information security domains and their inter-relations across that ecosystem.
- Extensive automation experience with PowerShell and Shell Scripting for automating repeatable tasks and installations.
- Extensive knowledge of server operations and maintenance
- Understanding of cloud terminology, architecture, and tools to include installing, provisioning, and monitoring.
- Ability to remain cooperative and professional in stressful situations.
- Working experience in a 24×7 environment.
- Well-organized personality with great attention to minimalistic details.
- Excellent customer service skills.
Preferred Certifications:
- MS-500 Microsoft 365 Certified: Security Administrator Associate
- AZ-500 Microsoft Certified: Azure Security Engineer Associate
- SC – 200 Microsoft Certified: Security Operations Analyst Associate
- SC – 300 Microsoft Certified: Identity and Access Administrator Associate
- SC – 400 Microsoft Certified: Information Protection Administrator Associate
Responsibilities of the Desired Microsoft Security Engineer:
- Writes playbooks for incident responders.
- Responsible for assessing systems, processes, and projects against compliance requirements, control objectives, and security best practices; interacts with internal and external technical staff and consults with project teams at various stages of project cycles.
- Reports status on activities, issues, projects, etc. to senior staff/management, including the effectiveness and efficiency of security activities.
- Proposes new standards, tools, policies, and procedures to improve security and compliance & risk management activities based on security operations findings, or security events or incidents.
- Collaborates with IT teams and security colleagues to ensure audit readiness, and to prepare customers for internal and external audits.
- Identifies gaps in controls, processes, and systems and recommends solutions.
- Provides ongoing technical assessment of current and emerging technologies.
- Fosters relationships with vendors and identifies uses for their products as well as configuration best practices.
- Hands-on experience with Microsoft Advanced Information Protection, Intune, All Microsoft Defender products, Microsoft Data Loss Prevention, and Microsoft Cloud App Security technologies.
- Experience in building security processes, run books, and documenting important security tasks.
- Ability to quickly and effectively investigate security incidents, perform root cause analysis, and document findings.
- Understanding of cyber-security principles such as encryption, ports, protocols & services, policies, procedures, physical security, risk management, configuration management, ethics, access control, security architecture, continuity of operations, contingency planning, application security, etc.
- Advanced understanding of the information security threat landscape. Should be up to date on current attacker tools, techniques, and procedures.
- Ensures cybersecurity policies, procedures, and standards documentation is accurate, current, and relevant.
- Develops strong working relationships with support teams, management, and cross-functional working groups.
- Identifies security risks and develops solutions to eliminate or minimize risks.
- Performs capacity reviews and recommends expansions or reductions as warranted.
- Leads in evaluating and identifying ways to automate, streamline and improve otherwise manual functions.
- Provides operational support such as training and documentation.
- Forward-thinking to identify upcoming trends and security best practices.
- Responsible for up-time, reliability, stability, and policy maintenance of supported systems.
- Leverages advanced information security, operations, cyber defense, and incident response experience to drive change and transformation within customers’ environments.
- Interacts with Data Privacy and Compliance departments as it relates to data security.
- Detection and Response experience (Detection Engineering, Digital Forensics, Incident Response, and/or Threat Intelligence)
- Performs incident response activities and ensures that proper protection or corrective measures have been taken when an incident has been discovered.
- Supports security monitoring, protection, and delivery of security services for the organization and its customers.Meets security audit mandates, standards, and requirements for ISO 27001, NIST 800-171, CMMC 2.0Configures new systems and responds to security related problems, and performs troubleshooting and resolution of all technical issues.
Core Values:
- Integrity (Doing What’s Right)
- Inclusion (Encouraging Diversity)
- Teamwork (Working Together)
- Excellence (Being Your Best)
- Accountability (Taking Personal Responsibility)
All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability or veteran status.