Security Engineer – Microsoft 365 Security, Detection

Emploi pas sur LinkedIn

🕒 il y a 21 jours

⛷️ Utah – Distant

⛷️ Utah – Remote

⏰ Temps Plein

🟡 Intermédiaire

🟠 Senior

👮‍♂️ Cybersécurité / Ingénieur Sécurité

Postuler Maintenant

Trouver des Emplois à Distance Similaires

Recevoir des emails pour des emplois à distance

📊 Vérifiez votre score de CV pour ce poste

Améliorez vos chances d'obtenir un entretien en vérifiant votre score de CV avant de postuler.

Télécharger le CV

Project Time & Cost, LLC

Site WebLinkedInTous les Emplois

51 - 200 employés

Fondée en 1982

🏛️ Gouvernement

⚕️ Assurance santé

🔐 Sécurité

Government • Healthcare Insurance • Security

Project Time & Cost, LLC, faisant partie d'Acuity International, se consacre à fournir des services complets de gestion de programmes et de gestion de la construction. L'entreprise soutient les organisations gouvernementales et d'entreprise en garantissant la continuité et la stabilité des missions, notamment dans les environnements difficiles à l'échelle mondiale. De plus, Project Time & Cost offre des services de réponse aux munitions, de démilitarisation et de sécurité mondiale. La société est également impliquée dans les services de santé au travail, la gestion de cas, les interventions en cas de catastrophe et d'urgence, et l'aide humanitaire, visant à répondre aux enjeux tels que la réponse aux pandémies, la santé et la sécurité au travail. Leurs services contribuent à créer une plus grande efficacité et valeur dans les environnements de construction et sécurisés.

Description

• Monitor and investigate alerts across Microsoft Defender (Defender for Endpoint, Defender for Identity, Defender for Office 365) and associated security platforms • Analyze Entra ID (Azure AD) sign-in logs, audit logs, and risky sign-in activity to identify potential account compromise or misuse • Respond to security incidents involving endpoints, identities, email, and collaboration platforms • Tune and optimize detection rules, alert thresholds, and signal-to-noise ratios within SIEM and Microsoft security tools • Perform log analysis and basic threat hunting using tools such as Microsoft Sentinel, Defender Advanced Hunting, and audit logs • Implement and validate Conditional Access policies, MFA enforcement, and identity protection controls • Support endpoint security through Intune and Defender for Endpoint, including policy enforcement, device compliance, and response actions • Collaborate with IT to harden Microsoft 365 configurations (Exchange Online, SharePoint, Teams) and reduce attack surface • Support vulnerability management by identifying gaps and coordinating remediation across systems and endpoints • Maintain clear and audit-ready documentation of incidents, controls, and response activities • Assist with eDiscovery, audit requests, and compliance-related investigations when required • Identify gaps in monitoring, coverage, or controls and recommend improvements to security architecture

🎯 Exigences

• Strong understanding of Microsoft 365 security architecture, including Entra ID, Exchange Online, SharePoint, and Teams • Experience with Microsoft Defender security stack (Defender for Endpoint, Office 365, Identity, or Cloud Apps) • Familiarity with identity security concepts such as MFA, Conditional Access, and identity risk • Experience with endpoint management and security using Microsoft Intune or similar platforms • Working knowledge of incident response processes and common attack techniques (phishing, credential abuse, lateral movement) • Log analysis and threat hunting using Microsoft Sentinel or Defender Advanced Hunting (KQL experience preferred) • Experience configuring and tuning alerts in SIEM, EDR, or cloud-native security tools • Scripting or automation using PowerShell, KQL, or Python • Experience with email security, phishing analysis, and investigation within Exchange Online

🏖️ Avantages

• Opportunity for advancement within a rapidly growing professional services firm • Competitive compensation • 401(k) and medical benefits