Microsoft Cloud Security Engineer- Remote (Anywhere in the U.S.)

GuidePoint is looking for a well-rounded Microsoft Cloud Security Engineer to join our Cloud Security Practice. Cloud Security Engineers work with GuidePoint’s clients to assess the security posture of their Azure and Microsoft 365 environments, develop roadmaps and design architecture for Azure and Microsoft security service adoption, and implement solutions to help customers meet their growing Microsoft Cloud needs. GuidePoint’s Microsoft Cloud Security Engineers have well-rounded experience in Azure IaaS and PaaS services and Microsoft Cloud services such as Microsoft 365, Teams, SharePoint, Defender for Endpoint, Microsoft Sentinel, Purview Information Protection, Microsoft Endpoint Manager, Azure Data Lake, Defender for Cloud Apps, Azure DevOps, AKS, and more.

Role and Responsibilities:

• Use knowledge of Microsoft Azure, M365, and EM+S products, methods, and solutions to design, engineer and make technical recommendations on Microsoft 365 Modern Workplace, Compliance and overall Microsoft Cloud Security for GuidePoint Security clients.
• Work with client stakeholders by communicating compliance management for adopted M365 or Azure products and implement best practices for M365 and Azure Security.
• Actively make contributions to technical design sessions and prepare technical design documentation for architectural reviews.
• Utilize outside the box thinking to define new and improved solutions or optimize current processes and tools.
• Manage and support Microsoft Entra ID, identity life-cycle management, process automation and improvement.
• Demonstrate understanding of Zero Trust principles and how they apply to the Microsoft Azure and M365 platform.
• Align business requirements with Azure, M365 applications, services and features.
• Conduct security assessments of Azure, Microsoft 365 and Microsoft services by leveraging cloud security standards established by CSA CCM, CIS, NIST and GuidePoint Security’s own cloud controls framework.
• Draft cloud security deliverables based on assessment findings.
• Work with subject-matter experts from other GuidePoint Security Information Assurance practices to understand internal process and functional requirements (e.g., GRC, AppSec, IAM, DFIR, Penetration Testing).
• Accurately and consistently document findings and recommendations that are easily digested by clients, including procedural documentation and technical briefings.
• Demonstrate strong interpersonal and verbal communication skills.
• Proven ability to meet or exceed project objective and user expectations.
• Possess strong client-facing and communication skills (written and verbal).
• Experience reading, writing, and interpreting technical documentation and procedure manuals.
• Solid understanding of cloud computing concepts, architectures, virtualization, containers, infrastructure security, data security, encryption, management plane, business continuity, identity entitlement and access management.

Requirements:

• 6 or more years of IT experience or related field with at least 4 years of experience administering and supporting Azure/Office/M365 platform technologies including but not limited to Exchange, OneDrive, Windows 10, Outlook, SharePoint Online, Teams, etc.
• Experience with Lifecycle Management.
• Minimum 2 years of experience with M365 security suite capabilities such as: Defender for Cloud apps, Conditional Access, Microsoft XDR, Compliance Center, Insider Threat Management, DLP, MCAS, EOP, MFA, PIP, PIM, etc.
• Minimum 2 years of experience with Microsoft Azure capabilities such as: Defender for Cloud. Sentinel, WAF, APIM, Azure Policy, etc.
• Demonstrate a thorough understanding of Microsoft Cloud services including identity, security, data, application, infrastructure, networking and workplace collaboration services.
• Preferred experience with Azure Resource Manager, PowerShell, KQL or Terraform.
• Candidate should have at least one Microsoft certification such as Microsoft 365 Security Administrator or Azure Security Engineer Associate, or be certified within 3 months of hire.