Security Engineer – Microsoft 365 Security, Detection

Job not on LinkedIn

🕒 May 19

⛷️ Utah – Remote

⛷️ Utah – Remote

⏰ Full Time

🟡 Mid-level

🟠 Senior

👮‍♂️ Cybersecurity / Security Engineer

Apply Now

Find Similar Remote Jobs

Receive Emails For Remote Jobs

📊 Check your resume score for this job

Improve your chances of getting an interview by checking your resume score before you apply.

Upload Resume

Project Time & Cost, LLC

WebsiteLinkedInAll Job Openings

51 - 200 employees

Founded 1982

🏛️ Government

⚕️ Healthcare Insurance

🔐 Security

Government • Healthcare Insurance • Security

Project Time & Cost, LLC, part of Acuity International, is dedicated to providing comprehensive program and construction management services. The company supports government and enterprise organizations by ensuring mission continuity and stability, particularly in challenging environments globally. In addition, Project Time & Cost offers munitions response, demilitarization, and global security services. The company is also involved in occupational health services, case management, disaster and emergency response, and humanitarian assistance, aiming to address issues such as pandemic response, workforce health, and safety. Their services aid in creating higher efficiency and value in construction and secure environments.

📋 Description

• Monitor and investigate alerts across Microsoft Defender (Defender for Endpoint, Defender for Identity, Defender for Office 365) and associated security platforms • Analyze Entra ID (Azure AD) sign-in logs, audit logs, and risky sign-in activity to identify potential account compromise or misuse • Respond to security incidents involving endpoints, identities, email, and collaboration platforms • Tune and optimize detection rules, alert thresholds, and signal-to-noise ratios within SIEM and Microsoft security tools • Perform log analysis and basic threat hunting using tools such as Microsoft Sentinel, Defender Advanced Hunting, and audit logs • Implement and validate Conditional Access policies, MFA enforcement, and identity protection controls • Support endpoint security through Intune and Defender for Endpoint, including policy enforcement, device compliance, and response actions • Collaborate with IT to harden Microsoft 365 configurations (Exchange Online, SharePoint, Teams) and reduce attack surface • Support vulnerability management by identifying gaps and coordinating remediation across systems and endpoints • Maintain clear and audit-ready documentation of incidents, controls, and response activities • Assist with eDiscovery, audit requests, and compliance-related investigations when required • Identify gaps in monitoring, coverage, or controls and recommend improvements to security architecture

🎯 Requirements

• Strong understanding of Microsoft 365 security architecture, including Entra ID, Exchange Online, SharePoint, and Teams • Experience with Microsoft Defender security stack (Defender for Endpoint, Office 365, Identity, or Cloud Apps) • Familiarity with identity security concepts such as MFA, Conditional Access, and identity risk • Experience with endpoint management and security using Microsoft Intune or similar platforms • Working knowledge of incident response processes and common attack techniques (phishing, credential abuse, lateral movement) • Log analysis and threat hunting using Microsoft Sentinel or Defender Advanced Hunting (KQL experience preferred) • Experience configuring and tuning alerts in SIEM, EDR, or cloud-native security tools • Scripting or automation using PowerShell, KQL, or Python • Experience with email security, phishing analysis, and investigation within Exchange Online

🏖️ Benefits

• Opportunity for advancement within a rapidly growing professional services firm • Competitive compensation • 401(k) and medical benefits