Cloud Security Engineer

Roles and Responsibilities:

• Analyze complex security data and incidents independently to identify and mitigate security threats.
• Independently manage, optimize, and configure Entra ID policies and configurations to ensure secure cloud environments.
• Configure and manage security alerts across the entire Microsoft Defender suite to protect against potential security threats.
• Independently configure and optimize Azure Firewall, Network Security Groups (NSGs), and other Defender tools to safeguard cloud infrastructure.
• Set up and manage Microsoft Defender for Office 365 policies, including Safe Links, CASB, and other security configurations.
• Tune and integrate third-party tools such as Splunk and CrowdStrike into existing security systems and workflows.
• Provide expertise in cloud security for IaaS, PaaS, and SaaS environments, including threat analysis, vulnerability remediation, and security best practices.

Required Skills & Qualifications:

• Expertise in Microsoft Intune: Advanced skills in policy management and deployment.
• Certifications:
  • Microsoft Certified: Security Operations Analyst Associate
  • Azure Security Engineer Associate
  • Microsoft 365 Certified: Security Administrator Associate
• Advanced Proficiency in Microsoft Defender Suite:
  • Microsoft Defender for Endpoint, Office 365, Identity, Cloud Apps, Cloud, IoT, Business, External Attack Surface Management, and Threat Intelligence.
  • Configuration and incident response for all Defender tools.
• Microsoft Purview, Microsoft Priva, and Microsoft Defender Vulnerability Management: Expertise in compliance reporting and vulnerability remediation.
• Microsoft Sentinel & Security Copilot: Expertise in analytics, automation, and incident response within Microsoft Sentinel.
• Azure Security Services: Proficient in configuring and optimizing:
  • Azure Security Center, Azure Defender, Azure Firewall, NSGs, DDoS Protection, Bastion, Front Door, and Web Application Firewall (WAF).
• Microsoft 365 Security:
  • Proficiency in configuring Microsoft Defender for Office 365 (Safe Links, Safe Attachments) and Defender for Cloud Apps (CASB policies).
  • Experience with MFA, Conditional Access, and policy creation/enforcement.
• Compliance & Insider Threat Detection:
  • Expertise in Microsoft 365 Compliance Center, Microsoft Secure Score, Microsoft Audit Logs, eDiscovery, and Insider Risk Management.
• Experience with Third-Party Tools:
  • Firewalls (e.g., Palo Alto), SIEMs (e.g., Splunk), and endpoint protection (e.g., CrowdStrike).
• Azure Monitoring & Policy:
  • Advanced proficiency in Azure Monitor, Log Analytics, Policy, Blueprint, and Compliance Manager.

Preferred Qualifications:

• Hands-on experience with cloud security best practices for both public and hybrid cloud environments.
• Proven experience with automation and scripting to streamline security operations.

Key Competencies:

• Strong analytical skills with the ability to identify and respond to security incidents.
• Ability to work independently and collaboratively in a dynamic environment.
• Excellent communication skills for documentation, reporting, and collaboration with stakeholders