Microsoft 365 Security Implementations Specialist

Hirearchi

  • Metro Manila
  • Permanent
  • Full-time
  • 3 hours ago
About the job Microsoft 365 Security Implementations SpecialistEmployer: An MSP company located in Las Vegas, NevadaWork Setup: RemoteWorking Schedule: Monday to Friday, Pacific Standard TimeSalary: $2,000 - $2,500Position SummaryWe are seeking an experienced Microsoft 365 Security Implementation Specialist to design, deploy, and configure enterprise-wide security solutions using Microsoft's comprehensive security stack. This role focuses on implementing Zero Trust architecture, configuring advanced security controls, and ensuring robust protection across cloud and endpoint environments. The ideal candidate will have deep expertise in Microsoft Intune, Defender for Endpoint, Conditional Access, and compliance frameworks, with a proven track record of successful security implementations in enterprise environments.Key ResponsibilitiesZero Trust Architecture Implementation
  • Design and deploy comprehensive Zero Trust security models using Microsoft 365 security suite
  • Configure identity-centric security controls leveraging Microsoft Entra ID (Azure AD) capabilities
  • Implement least-privilege access models with Just-In-Time (JIT) and Privileged Identity Management (PIM)
  • Establish micro-segmentation strategies and network security boundaries
Endpoint Management & Protection
  • Deploy and configure Microsoft Intune for comprehensive Mobile Device Management (MDM) and Mobile Application Management (MAM)
  • Implement Windows Autopilot for zero-touch device provisioning and configuration
  • Configure device compliance policies aligned with CIS Controls and security baselines
  • Deploy and optimize Microsoft Defender for Endpoint across hybrid environments
  • Establish endpoint detection and response (EDR) capabilities with automated remediation
Identity & Access Management
  • Design and implement Conditional Access policies based on risk assessment and organizational requirements
  • Configure Multi-Factor Authentication (MFA) and passwordless authentication methods
  • Deploy identity protection policies and risk-based access controls
  • Integrate identity governance with automated access reviews and lifecycle management
Cloud Security & Compliance
  • Configure Microsoft Defender for Cloud Apps (CASB) for Shadow IT discovery and control
  • Implement Data Loss Prevention (DLP) policies across Microsoft 365 services
  • Deploy Microsoft Purview for data governance, classification, and compliance management
  • Ensure alignment with CIS 18 Critical Security Controls and other regulatory frameworks
  • Configure security monitoring and automated alerting systems
Integration & Automation
  • Develop PowerShell scripts and Microsoft Graph API integrations for security automation
  • Integrate Microsoft security solutions with existing SIEM/SOAR platforms
  • Create custom security workflows and incident response playbooks
  • Implement Infrastructure as Code (IaC) for consistent security deployments
Framework Implementation & Documentation
  • Apply NIST Cybersecurity Framework and CMMC requirements to Microsoft 365 implementations
  • Develop security configuration baselines and hardening guides
  • Create comprehensive technical documentation and security procedures
  • Conduct security assessments and gap analyses against industry frameworks
Required QualificationsEducation & Experience
  • Bachelor's degree in Computer Science, Information Technology, Cybersecurity, or related field (or equivalent experience)
  • 3-5 years for mid-level positions; 5-8+ years for senior-level positions of hands-on experience with Microsoft 365 and Azure security technologies
  • Demonstrated experience implementing security solutions in enterprise environments (1,000+ users)
  • Proven track record of successful Microsoft security tool deployments and configurations
Technical Requirements
  • Expert-level proficiency in Microsoft Intune/Endpoint Manager configuration and deployment
  • Advanced knowledge of Microsoft Defender suite (Defender for Endpoint, Office 365, Cloud Apps)
  • Strong experience with Conditional Access policy design and implementation
  • Hands-on expertise with Microsoft Entra ID (Azure AD) and identity management
  • PowerShell scripting capabilities for automation and bulk operations
  • Understanding of networking fundamentals and security principles
  • Experience with security compliance frameworks, particularly CIS Controls
Preferred QualificationsMicrosoft Certifications (Highly Valued)
  • SC-300: Microsoft Identity and Access Administrator Associate
  • SC-200: Security Operations Analyst Associate
  • AZ-500: Azure Security Engineer Associate
  • SC-100: Cybersecurity Architect Expert (for senior roles)
  • MD-102: Endpoint Administrator Associate
  • MS-102: Microsoft 365 Administrator Expert
Additional Technical Skills
  • Experience with Zero Trust implementation and architecture
  • Knowledge of additional compliance frameworks (NIST 800-171, CMMC, ISO 27001)
  • Familiarity with Microsoft Sentinel and KQL (Kusto Query Language)
  • Experience with hybrid cloud environments and multi-cloud security
  • Understanding of DevSecOps practices and Infrastructure as Code (Terraform, ARM templates)
  • Integration experience with third-party security tools and SIEM platforms
Soft Skills & Competencies
  • Strong analytical and problem-solving abilities
  • Excellent written and verbal communication skills for technical and executive audiences
  • Ability to manage multiple implementation projects simultaneously
  • Experience working in cross-functional teams and hybrid work environments
  • Client-facing consulting experience (for senior positions)
  • Security-first mindset with attention to detail

Hirearchi