We are in search of dedicated and skilled Microsoft Security and Compliance Engineers who are passionate about safeguarding large-scale cloud infrastructures. As a part of our rapidly growing team, you will play a pivotal role in enhancing our cybersecurity posture. We need individuals who understand the intricacies of Microsoft Security and Compliance Center, Microsoft Compliance, Microsoft Cloud App Security, Microsoft Entra, Microsoft Data Loss Prevention, Microsoft Sensitivity Labels, MS Insider Threat, Tanium Comply, Tanium Threat Hunter, Tanium Vulnerability, ThreatLocker, Identity Governance, Identity Access Management, and can collaborate effectively with managed service security providers.
What You Will Do:
· Lead risk management, security adoption, and governance efforts focusing on Microsoft Security and Compliance tools.
· Maintain and operate Microsoft Security and Compliance Center, Microsoft Compliance, Microsoft Cloud App Security, Microsoft Entra, Microsoft Data Loss Prevention, Microsoft Sensitivity Labels, MS Insider Threat, Tanium Comply, Tanium Threat Hunter, Tanium Vulnerability, ThreatLocker, Identity Governance, Identity Access Management.
· Analyze and report Cloud Anomaly Detection and Notification using specialized Microsoft tools.
· Deploy and optimize configurations that balance security with application usability and employee productivity within the Microsoft ecosystem.
· Participate in investigations into anomalous activity and assist in devising plans for appropriate resolution.
· Perform in-depth forensic investigations and malware analysis as part of the Incident Response Plan.
· Assist in the development and optimization of new and existing tools and techniques to enhance analytic capabilities, specifically focused on Microsoft Security and Compliance solutions.
· Maintain and operate information system security controls and countermeasures, including tuning existing security sensors, with a focus on Microsoft security products.
· Own problems from discovery to resolution, specifically related to Microsoft Security and Compliance tools.
· Document implementation, configuration settings, operational issues, analysis, and resolutions related to Microsoft Security and Compliance Center, Microsoft Compliance, and other Microsoft security products.
· Lead efforts to install, configure, and utilize a security information and event manager (SIEM) integrated with Microsoft Security and Compliance tools.
· Implement appropriate security policies and requirements within the Microsoft ecosystem and perform related technical activities.
· Produce and maintain run books for incident response, specifically tailored to Microsoft Security and Compliance solutions.
· Administer authentication and access controls, including provisioning, changes, and deprovisioning of user and system accounts, security/access roles, and access permissions to information assets within Microsoft tools.
· Monitor trends, news, and changes in the threat and compliance environment, specifically related to Microsoft Security and Compliance products, and assist in the execution of plans for compliance and risk mitigation.
· Assist in the administration of information security training and awareness programs, emphasizing Microsoft Security and Compliance tools.
Who You Will Work With:
· Collaborate closely with the Chief Information Security Officer (CISO), Chief Information Officer (CIO), and managed service security providers to implement an ongoing technology roadmap supporting cyber operations and integrating new Microsoft Security and Compliance technologies into the overall architecture.
· Work with global client groups across the company to enhance our organization’s Microsoft Security and Compliance posture.
· Bachelor’s degree from an accredited college or university in Computer Science, Information Systems, or related field. An equivalent combination of related education and experience may be substituted.
· 2 years of hands-on experience with Microsoft Security and Compliance Center, Microsoft Compliance, Microsoft Cloud App Security, Microsoft Entra, Microsoft Data Loss Prevention, Microsoft Sensitivity Labels, MS Insider Threat, and other relevant Microsoft tools.
· 5+ years of experience in security-related professions, with a strong focus on Microsoft Security and Compliance solutions.
· Proficiency in managing a variety of security products, specifically Microsoft Security and Compliance tools, including firewalls, network and host-based intrusion detection and prevention systems, security information event monitoring (SIEM) software, and endpoint detection and response (EDR) tools.
· Strong technical and functional knowledge of Cloud Security technologies such as ATP, EOP, DLP, Conditional Access, baseline policies, OneDrive, Guest Accounts, RBAC Roles, IAM, eDiscovery, and Compliance within the Microsoft ecosystem.
· Experience in security penetration testing and auditing using Microsoft Security and Compliance tools and related technologies.
· Familiarity with industry standards-based documentation, certification, and accreditation such as NIST SP 800-53, NIST SP 800-71, CMMC, FIPS 140-2/3, and Security Technical Implement Guides (STIGs) specifically related to Microsoft Security and Compliance products.
· Self-motivated, quick learner, and adept problem solver with excellent verbal and written communication skills.
· Exceptional team player who thrives in collaborative environments and can effectively manage and represent competing ideas simultaneously.
· Demonstrated ability to adapt and learn new technologies with a growth mindset.
· Must be a US person on US soil.
· Microsoft 365 Certified: Security Administrator (required)
· Certified Information Systems Security Professional (CISSP, required)
About Loyal Source
Loyal Source is an Orlando-based workforce solutions provider dedicated to delivering elite services worldwide, with a focus in government healthcare, technical and support services, engineering, and travel healthcare. Loyal Source provides exceptional custom solutions to both private enterprise and government agencies. Loyal Source is a military friendly employer and proud partner of the Military Spouse Employment Partnership program.
For more information go to our website www.loyalsource.com and follow us on LinkedIn, Facebook & Twitter for other positions currently open.
Loyal Source does not discriminate in employment based on race, color, religion, sex (including pregnancy and gender identity), national origin, political affiliation, sexual orientation, marital status, disability, genetic information, age, membership in an employee organization, retaliation, parental status, military service, or other non-merit factors.
This contractor and subcontractor abides by the requirements of 41 CFR 60-1.4(a), 60-300.5(a) and 60-741.5(a). These regulations prohibit discrimination against qualified individuals based on their status as protected veterans or individuals with disabilities, and prohibit discrimination against all individuals based on their race, color, religion, sex, sexual orientation, gender identity or national origin. Moreover, these regulations require that covered prime contractors and subcontractors take affirmative action to employ and advance in employment individuals without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability or veteran status.