Microsoft Cloud Security and Systems Administrator

Family Resource Home Care•Spokane, WA

4d•$80,000 - $100,000

About The Position

The Microsoft Cloud Security and Systems Administrator is responsible for administering and securing the organization’s Microsoft 365 environment, Azure cloud services, enterprise endpoints, and related cloud applications. This role blends traditional systems administration with strong security responsibilities, including vulnerability remediation, cloud app governance, risk tracking, and continual improvement of the organization’s security posture. The role is hands-on and operational—supporting configurations, monitoring, troubleshooting, and security workflows across Microsoft cloud services—while also contributing to policies, procedures, and documentation. The position works closely with IT operations, security, compliance, and leadership teams.

Requirements

3–5 years of experience in systems administration, cloud administration, or IT security roles.
Hands-on experience with: Microsoft 365 administration Azure administration Intune & Entra ID Defender security tools
Understanding of: Identity and access management Endpoint compliance Cloud security principles
Strong troubleshooting and analytical skills.
Ability to create and maintain documentation.
Strong communication skills with both technical and non-technical audiences.

Nice To Haves

Microsoft certifications such as: SC-900, SC-200, SC-300 MD-102 AZ-900, AZ-104, AZ-500
CompTia certifications such as: Security+ CySA+
Familiarity with security frameworks (NIST CSF, CIS Controls).
Experience with Defender for Cloud Apps (CASB).
Experience contributing to risk management or compliance initiatives.

Responsibilities

Administer and support Microsoft 365 services with a focus on secure configuration and operations, including: Intune (device compliance, security baselines, configuration profiles, application deployment) Entra ID (identity and access management, conditional access, MFA, role administration) Exchange Online (security settings, anti-spam/anti-malware policies) Teams (security and compliance configuration) Defender suite (Defender for Endpoint, Office 365, Identity, Cloud Apps) Purview (DLP, information governance, sensitivity labels)
Support Azure resource access controls, RBAC, logging, and monitoring.
Review Azure Defender / Defender for Cloud alerts and assist with remediation.
Help implement secure configuration for Azure-hosted workloads.
Maintain identity, networking, and platform configurations as needed.
Assist with endpoint management, including device onboarding, compliance issues, patching coordination, and security baselines.
Support troubleshooting of M365 and Azure-related system issues.
Work with IT operations to ensure systems follow security and configuration standards.
Participate in vulnerability scanning, triage, remediation tracking, and validation.
Coordinate with system owners and IT staff to resolve identified risks.
Document findings and maintain remediation timelines.
Monitor threat feeds and evaluate relevance to the organization’s environment.
Review security alerts and logs for anomalous activity.
Recommend actions to improve detection and reduce risk exposure.
Maintain and update the organization’s security risk register.
Track risk mitigation progress and document status updates.
Support Defender for Cloud Apps (CASB) configurations and monitoring.
Review risky behaviors, shadow IT findings, and suspicious cloud app usage.
Assist with policy development and enforcement for SaaS application governance.
Assist with the development, review, and maintenance of security policies and procedures.
Document technical processes and standard operating procedures.
Assist in maturing the organization’s cloud and endpoint security controls.
Participate in initiatives focused on identity security, endpoint protection, vulnerability reduction, and cloud governance.
Help implement best practices aligned with NIST, CIS, and Microsoft recommended baselines.