Microsoft Security Engineer (200)

About The Position

Requirements

• Demonstrable, current, and verifiable technical skills with the Microsoft security tools, especially MS Sentinel, Defender, LogicApp.
• Robust experiences with EntraID, AD, e.g., and creating and managing complex role creations, assignments and permissions
• Experiences with Purview.
• A proven, recent, and verifiable track record in improving and maturity existing security implementations and configurations in the Microsoft Cloud landscape
• Substantial expertise implementing SIEM/ SOAR automations, developing and finetuning the SIEM detection rules to reduce manual efforts, including SIEM log ingestion, connector options, and cost analysis for current and future needs
• Solid current experiences in securing the attack landscape in a Microsoft environment, and hardening the existing systems in the enterprise hybrid landscape (end-user devices, servers, etc); skills and experiences with other vendors and services would be an added advantage
• Substantial expertise about the overall security landscape, including Threat and Vulnerability Management, and the ability to guide on their remediation.
• Deep knowledge of EntraID, including identity protection, conditional access, zero trust architecture and advanced threat detection
• Cyber professional at heart, tracking and mitigating emerging cyber threats against the company (e.g. zero-day exploits, APTs etc).
• Experiences with other concepts and systems like Privileged Account Management, Key Management (certificates, keys, ciphers, etc.).
• Ability to lead security systems integration, e.g., defining the architecture to work with ticketing systems, e.g. integrating Defender to create–manage the tickets and communications in ServiceNow
• Knowledge of extracting relevant data, creating security reports etc. would be a definite advantage.
• Solid abilities to lead and plan the architecture, deliveries, and even more importantly coach and teach other members of the technical team to high levels of technology excellence
• Previous experiences in security tools and systems administration, including experience as a security administrator for security platforms
• Knowledge and experience in SIEM and Microsoft platforms (Microsoft Azure ecosystems), other vendor security systems are good experiences as well (e.g. CyberArk, Akeyless)
• Good knowledge of EDR systems e.g. MS Defender, KQL etc. (or alternatively the willingness to learn them)
• Planned and meticulous approach to deliveries.
• Knowledge and/or willingness to learn about advanced security capabilities, including integrations with other systems
• 10+ years of related experience with at least 4+ years of specialization in information technology roles, and security experiences with Microsoft solutions.
• Bachelor's degree or equivalent in Information Technology, Computer Science, Engineering, data sciences, or related field
• Strong analytical skills with a keen eye for detail and accuracy.

Nice To Haves

• Microsoft MVP (Most Valuable Professional)
• PowerBI skills
• Master’s degree in information technology, Computer Science, Engineering, data sciences, or related field

Responsibilities

• Work with a globally distributed team, taking inputs from the business, SOC, and management to roll out systems and troubleshoot (Tier-3) support for security issues
• Lead-guide the local Service Desk/ OSS teams with knowledge bases to resolve tickets at first instance for issues relating to security software and configurations
• Develop the automation (including playbooks, SOAR), scripts to monitor system-health, as well as management the SOC tools in use
• Extract data from systems and build reports for management; PowerBI skills would be an advantage
• Knowledge transfer and sharing
• Monitor and respond to feedback from the customers (employees and business stakeholders)
• Bring a problem-solving and solutions-mindset, coordinate with the IT teams as needed
• Provide feedback on tooling and identify additional needs
• Plan for expanse of security tools to cover ongoing needs
• Evaluation of license usage and potential growth

Benefits

• WSP provides a comprehensive suite of benefits focused on a providing health and financial stability throughout the employee’s career. These benefits include coverage related to medical, dental, vision, disability, and life; retirement savings; paid sick leave; paid vacation (or other personal time); paid parental leave; and paid time off for purposes of bereavement, voting, and/or attendance at naturalization proceedings.
• Employees are also afforded a comprehensive suite of benefits including medical, dental, vision, disability, life, and retirement savings focused on providing health and financial stability throughout the employee’s career.