We are looking for a highly skilled Microsoft 365 Security & Compliance Engineer with 5+ years of experience in designing, deploying, and managing Microsoft 365 security solutions. This role involves ensuring the protection of email systems, data, and identity management while implementing advanced compliance and security measures within Microsoft 365 environments. The ideal candidate will work closely with cross-functional teams to secure and optimize Microsoft 365, Exchange Online, and related collaboration tools.
In this role, you will:
- Serve clients needs as a technical expert in Microsoft 365, including identity & access management, endpoint protection, threat protection, information protection and governance, and related technologies.
- Maintain a deep technical understanding of Microsoft 365 security and related technologies.
- Support the development of Microsoft 365 strategy.
- Lead technical projects related to Microsoft 365 security.
- Lead the configuration, implementation, and migration of Microsoft 365 and EMS capabilities.
- Evaluate related Microsoft 365 security changes & updates and determine the impact on clients.
- Collaborate with and provide direction to Microsoft 365 capability service owners and technical leads.
- Perform advanced troubleshooting and problem resolution.
- Maintain awareness of Microsoft 365 roadmap and releases.
- Maintain an awareness of Microsoft 365 third-party solutions.
Who You Are:
- Bachelors Degree in Computer Science or equivalent field of study.
- 5 + years of security engineering and experience implementing Microsoft 365 are required.
- 5+ years of IT or consulting work experience is preferred.
- 3+ years of hands-on experience implementing the capabilities in EMS, including Endpoint including Endpoint protection, Azure MFA, and Microsoft Information Protection.
- Working knowledge of non-Microsoft collaboration solutions such as G-Suite and Slack.
- Working knowledge of non-Microsoft security and compliance solutions such as Duo, Okta, and Symantec.
- Demonstrated experience in the development, migration, management, and support of Microsoft 365 implementations.
- Proven experience with Microsoft Active Directory services including forest and domain design administration, policies, trusts, replication, and topology.
- Strong understanding of email security protocols (SPF, DKIM, DMARC) and experience in email spoof protection.
- Hands-on experience with Identity and Access Management (IAM), including Conditional Access and Multi-Factor Authentication (MFA).
- Knowledge of compliance frameworks such as GDPR, HIPAA, and ISO 27001.
- Able to work independently with minimal direction.
- Excellent verbal and written communication skills.
- Able to manage multiple activities simultaneously.
- Good to have - Proven experience with Skype of Business and Teams (including voice) services, design, and topology is strongly desired.
- One or more of the following certifications in Microsoft 365 are required: SC-200, SC-300, SC-400, SC-900, AZ-103, AZ-104, AZ-303, AZ-304, AZ-500, MS-300, MS-500, MS-720.
