M365 Cloud Security Engineer

GuidePoint is looking for a well-rounded Microsoft Cloud Security Engineer to join our Cloud Security Practice. Cloud Security Engineers work with GuidePoint’s clients to assess the security posture of their Azure and Microsoft 365 environments develop roadmaps and design architecture for Azure and Microsoft security service adoption and implement solutions to help customers meet their growing Microsoft Cloud needs. GuidePoint’s Microsoft Cloud Security Engineers have well-rounded experience in Azure IaaS and PaaS services and Microsoft Cloud services such as Microsoft 365 Teams SharePoint Defender for Endpoint Microsoft Sentinel Purview Information Protection Microsoft Endpoint Manager Azure Data Lake Defender for Cloud Apps Azure DevOps AKS and more.

Role and Responsibilities:

• Use knowledge of Microsoft Azure M365 and EM+S products methods and solutions to design engineer and make technical recommendations on Microsoft 365 Modern Workplace Compliance and overall Microsoft Cloud Security for GuidePoint Security clients.

• Work with client stakeholders by communicating compliance management for adopted M365 or Azure products and implement best practices for M365 and Azure Security.

• Actively make contributions to technical design sessions and prepare technical design documentation for architectural reviews.

• Utilize outside the box thinking to define new and improved solutions or optimize current processes and tools.

• Manage and support Microsoft Entra ID identity life-cycle management process automation and improvement.

• Demonstrate understanding of Zero Trust principles and how they apply to the Microsoft Azure and M365 platform.

• Align business requirements with Azure M365 applications services and features.

• Conduct security assessments of Azure Microsoft 365 and Microsoft services by leveraging cloud security standards established by CSA CCM CIS NIST and GuidePoint Security’s own cloud controls framework.

• Draft cloud security deliverables based on assessment findings.

• Work with subject-matter experts from other GuidePoint Security Information Assurance practices to understand internal process and functional requirements (e.g. GRC AppSec IAM DFIR Penetration Testing).

• Accurately and consistently document findings and recommendations that are easily digested by clients including procedural documentation and technical briefings.

• Demonstrate strong interpersonal and verbal communication skills.

• Proven ability to meet or exceed project objective and user expectations.

• Possess strong client-facing and communication skills (written and verbal).

• Experience reading writing and interpreting technical documentation and procedure manuals.

• Solid understanding of cloud computing concepts architectures virtualization containers infrastructure security data security encryption management plane business continuity identity entitlement and access management.

Requirements:

• 6 or more years of IT experience or related field with at least 4 years of experience administering and supporting Azure/Office/M365 platform technologies including but not limited to Exchange OneDrive Windows 10 Outlook SharePoint Online Teams etc.

• Experience with Lifecycle Management.

• Minimum 2 years of experience with M365 security suite capabilities such as: Defender for Cloud apps Conditional Access Microsoft XDR Compliance Center Insider Threat Management DLP MCAS EOP MFA PIP PIM etc.

• Minimum 2 years of experience with Microsoft Azure capabilities such as: Defender for Cloud. Sentinel WAF APIM Azure Policy etc.

• Demonstrate a thorough understanding of Microsoft Cloud services including identity security data application infrastructure networking and workplace collaboration services.

• Preferred experience with Azure Resource Manager PowerShell KQL or Terraform.

• Candidate should have at least one Microsoft certification such as Microsoft 365 Security Administrator or Azure Security Engineer Associate or be certified within 3 months of hire.