Requirements

Expected technologies

Microsoft Azure

Defender

Sentinel

Entra ID

PowerShell

KQL

Operating system

Windows

Our requirements

• We’re looking for a technically strong, hands-on security professional with proven experience in managing and improving enterprise-grade security tools and platforms.
• Deep experience in Microsoft E5 Security technologies, particularly Defender suite, Sentinel, Entra ID (Azure AD), and Purview.
• Strong track record in vulnerability management, including tooling, reporting, and coordination with stakeholders.
• Familiarity with log management, threat detection, and incident response processes.
• Experience integrating security tooling across cloud and on-premises environments.
• Hands-on knowledge of scripting or automation (e.g., PowerShell, KQL, Azure Automation) to streamline security operations.
• Experience with hybrid IT environments, including Microsoft Azure and traditional infrastructure.
• Understanding of security frameworks such as ISO 27001, NIST, or MITRE ATT&CK.
• Familiarity with ITIL-based support models or similar operational frameworks is a plus.
• We value your skills and personality more than your educational background, but security certifications are desirable.
• Practical, hands-on problem-solver with a strong bias for action.
• Comfortable working independently and taking ownership of operational responsibilities.
• Strong communication skills, with the ability to collaborate with technical and non-technical stakeholders.
• Team-oriented with a passion for mentoring and capability development.
• Fluent in English, both written and spoken.

Your responsibilities

• Lead the deployment, configuration, and management of Microsoft E5 Security tools including Defender for Endpoint, Defender for Cloud, Defender for Identity, Entra ID Protection, Purview, and Microsoft Sentinel.
• Oversee vulnerability management processes including scanning, assessment, prioritization, and coordination of remediation activities across IT and business teams.
• Manage and fine-tune core security tools (e.g., endpoint protection, SIEM, EDR, email security, identity protection) to ensure effective detection and response.
• Maintain and enhance monitoring, alerting, and incident handling workflows in collaboration with our SOC and operational teams.
• Work closely with the Security Architect to implement designs and ensure operational readiness of proposed solutions.
• Ensure integrations between security tools and enterprise systems are reliable, secure, and up-to-date.
• Establish standard operating procedures and the creation of security playbooks
• Mentor and support a Security Analyst, helping them develop technical skills and grow into more advanced responsibilities.
• Participate in incident response activities and post-incident reviews.
• Stay informed of the threat landscape and continuously identify opportunities to improve our security controls and practices.
• Collaborate across teams to embed security engineering practices in infrastructure, platforms, and DevOps workflows.