Senior Security Engineer

About the Role

Key Responsibilities

• Design, implement, and maintain security controls across Microsoft Azure and Microsoft 365 environments.
• Manage and optimise Microsoft Defender for Cloud, Azure Policy, Key Vault, and Azure security controls.
• Administer and secure Microsoft Entra ID, including Conditional Access, Privileged Identity Management (PIM), Multi-Factor Authentication (MFA), and Identity Governance.
• Manage the Microsoft Defender XDR suite, including Defender for Endpoint, Defender for Office 365, Defender for Identity, and Defender for Cloud Apps.
• Configure and maintain Microsoft Purview security and compliance controls, including Data Loss Prevention (DLP), sensitivity labels, and information protection policies.
• Build, tune, and optimise security monitoring and threat detection capabilities within Microsoft Sentinel.
• Conduct proactive threat hunting activities and support security investigations using KQL and other analytical tools.
• Lead security incident response activities, including investigation, containment, remediation, recovery, and root cause analysis.
• Manage vulnerability assessments, remediation tracking, and security improvement initiatives.
• Develop and maintain security standards, procedures, and technical controls aligned with recognised frameworks and best practices.
• Support security audits, risk assessments, compliance reviews, and governance initiatives.
• Collaborate with infrastructure, cloud, application, and business teams to improve security posture across the organisation.
• Provide technical guidance and mentoring to junior team members and promote security awareness across the business.

Requirements

• Bachelor's Degree in Information Security, Cybersecurity, Computer Science, Information Technology, or a related discipline.
• Minimum 8 years of information security experience.
• Minimum 3 years of hands-on experience securing Microsoft Azure and Microsoft 365 environments.
• Strong expertise in:

• Microsoft Defender XDR

• Microsoft Sentinel
• Microsoft Purview
• Identity and Access Management (IAM)
• Threat Detection and Incident Response
• Vulnerability Management
• Strong understanding of cloud security architecture and Zero Trust principles.
• Experience with security monitoring, threat hunting, and incident response activities.
• Strong PowerShell scripting and automation skills.
• Experience supporting security audits, compliance initiatives, and risk assessments.
• Strong analytical and problem-solving capabilities.
• Ability to communicate effectively with both technical and non-technical stakeholders.

• Microsoft Certified: Security Operations Analyst Associate

• Microsoft Certified: Identity and Access Administrator Associate
• CISSP
• CISM
• CCSP

Key Competencies

• Cloud Security

• Microsoft Security Technologies

• Security Operations

• Threat Hunting & Detection

• Incident Response

• Identity & Access Management

• Vulnerability Management
• Security Governance

• Automation & Scripting

• Analytical Thinking
• Stakeholder Management