Apply on Employer Site

Invoke · 2 weeks ago

Cloud Solution Architect – Threat Protection

United States

Full-time

Remote

Senior Level

$100K/yr - $140K/yr

5+ years exp

Invoke, a Microsoft Partner of the Year, is seeking a hands-on consultant to lead enterprise threat mitigation implementations across cloud and hybrid environments. This role involves working with business and IT stakeholders to assess security posture, design operating models, and deploy Microsoft security solutions.

Business IntelligenceComplianceConsultingInformation Technology

Responsibilities

Working on some of the largest and leading-edge engagements; In the Cloud Solution Engineer – Threat Protection role, you will lead customer-facing engagements on some of the largest and most advanced security projects, guiding organizations through their journey to modernize and adopt Microsoft Threat Protection capabilities across cloud and hybrid environments. Key responsibilities include:

Advanced Threat Protection : Implement machine learning-driven anomaly detection, threat intelligence via Microsoft Security Graph, and Indicators of Compromise (IoC) analysis

Prevention & Hardening : Deploy proactive malware blocking, Attack Surface Reduction (ASR), endpoint security, exploit protection, network protection, and Cloud Security Posture Management (CSPM) using Microsoft Defender for Cloud to secure Azure and hybrid infrastructure

Identity & Access Management : Design RBAC/ABAC models, enable Just-In-Time (JIT) access, integrate Privileged Access Management (PAM), enforce Separation of Duties (SoD), and access review attestation

Extended Detection & Response (XDR) : Configure Microsoft Defender XDR for cross-domain correlation across endpoints, identities, email, and cloud apps; implement automated investigation and remediation with AI-driven playbooks

Identity Protection : Enable risk-based Conditional Access with Microsoft Entra ID Protection , mitigate credential theft, and deploy phishing-resistant authentication methods

Security Operations & Response : Utilize Microsoft Sentinel for log aggregation, advanced threat detection, automated response workflows, and proactive threat hunting

Vulnerability & Exposure Management : Implement continuous scanning for CVEs and misconfigurations and provide actionable patch recommendations

Integration & Automation : Deliver a unified security experience through the Microsoft Defender Portal and leverage Security Copilot for AI-assisted incident analysis, response guidance, and automation

You will be responsible for the full engagement lifecycle—discovery, analysis, design, and implementation—while confidently leading customer workshops and executive discussions

Qualification

Microsoft Defender XDRMicrosoft SentinelVulnerability ManagementIdentity & Access ManagementMicrosoft Defender for CloudMicrosoft Entra ID ProtectionSecurity CopilotPowerShellOrganizational Change ManagementCommunication SkillsTeam PlayerAttention to Detail

Required

A minimum of 5 years of experience in IT professional services delivery

A minimum of 2 years of experience as an Architect or Consultant for Microsoft Purview

Highly motivated individual who exercises diligence in their work and an attitude of willingness to be successful

Relationship building abilities

Demonstrate confident presentation, negotiation, and communication skills

Strong organizational and time management skills with the ability to work autonomously or with a team

Excellent written and verbal skills with proficiency in all relevant Microsoft Data Security & Governance solutions

Team player willing to assist peers to increase collective agility and success

Meticulously attentive to details

Proven design, planning and implementation experience with Microsoft Defender for Endpoint, Microsoft Defender for Office 365, Microsoft Defender for Identity, Microsoft Defender for Cloud Apps (CASB), Microsoft Defender for Cloud, Microsoft Sentinel, Microsoft Entra ID Protection, and Microsoft Security Copilot

Experience in working with implementing the Microsoft Defender Suite, Entra ID, Sentinel, and Security Copilot

Experience working with customer Security teams to help provide guidance in moving to cloud-based management

Experience working with customers in adopting new technologies to include Organizational Change Management by developing end-user, help desk, and stakeholder communications

Experience working with Microsoft's scripting (PowerShell) and low code with Power Platform to extend and customize capabilities

Microsoft Certified: Security Operations Analyst Associate (SC-200)

Microsoft Certified: Azure Security Engineer Associate (AZ-500)