Apply on Employer Site

JBA International · 4 months ago

Microsoft 365 Security Engineer

Irvine, California, US

Full-time

Hybrid

Senior Level

$110K/yr - $130K/yr

7+ years exp

JBA International is a company specializing in security solutions, and they are seeking a Microsoft 365 Security Engineer to enhance their security posture. The role involves designing and maintaining security monitoring solutions, implementing Microsoft Security tools, and collaborating with IT teams to improve security measures.

ConsultingHealth CareLegalProfessional Services

Diversity & Inclusion

No H1B

U.S. Citizen Only

Responsibilities

Design, deploy, and maintain security monitoring solutions across enterprise environments

Implement and optimize Microsoft Security tools, including but not limited to Microsoft Defender for Endpoint, Defender for Office 365, Sentinel, Microsoft Purview, and Entra ID Protection

Manage and enhance SIEM platforms to detect, analyze, and respond to security threats effectively

Monitor and analyze system and network activity for security incidents, vulnerabilities, and performance issues

Develop and refine incident response processes, ensuring swift detection and mitigation of security events

Collaborate with IT and security teams to harden system configurations, enforce security policies, and improve overall security posture

Conduct security assessments, penetration tests, and risk analyses to identify and mitigate security gaps

Automate security workflows and incident response procedures using scripting and automation tools (e.g., PowerShell, Python, or Azure Logic Apps)

Stay updated with emerging security threats, vulnerabilities, and industry best practices to continuously enhance security defenses

Assist in compliance efforts, ensuring adherence to frameworks such as NIST, CIS, ISO 27001, and SOC 2

Qualification

Microsoft Security solutionsSIEM technologiesWindows ServerSecurity certificationsCloud-native security toolsNetwork securityIncident response processesSoft skills

Required

Hands-on experience with Microsoft Security solutions, including Microsoft Defender, Sentinel, and Entra ID Protection

Expertise in SIEM technologies (e.g., Microsoft Sentinel, Splunk, QRadar, or similar)

Strong understanding of security monitoring, application monitoring, and network monitoring methodologies

Proficiency in Windows Server, Active Directory, and Azure security principles

Knowledge of firewall configurations, intrusion detection/prevention systems (IDS/IPS), endpoint detection & response (EDR), and network security

Certifications such as Microsoft Certified: Security Operations Analyst, CISSP, CISM, CEH, or GIAC

Knowledge of container security, DevSecOps principles, and cloud-native security tools

Familiarity with log aggregation, anomaly detection, and behavioral analytics

7+ years of experience in systems engineering with a focus on security

Experience in threat hunting, security incident investigation, and forensic analysis

Experience working in environments compliant with HIPAA, GDPR, PCI-DSS, or SOX

Experience and knowledge of deploying, configuration and management of Microsoft Cloud and Security Stack. Including but not limited to: Azure AD, Entra, Defender, Intune, Sentinel / Threat Protection, Email & Data Protection, Compliance and Governance and Network – Application Security