Microsoft 365 (M365) Security & Endpoint Engineer jobs in United States
cer-icon
Apply on Employer Site
company-logo

Capgemini · 15 hours ago

Microsoft 365 (M365) Security & Endpoint Engineer

positionFort Worth, TX
timeFull-time
remoteOnsite
senioritySenior Level, Lead/Staff
money$100K/yr - $150K/yr
date8+ years exp

Capgemini Government Solutions is seeking a highly motivated Microsoft 365 Engineer with deep experience in cybersecurity and endpoint management. This role emphasizes hands-on architecture and administration of Microsoft Sentinel, Microsoft Defender for Cloud, and Microsoft Intune within high-security environments.

ConsultingInformation TechnologyInsurTechIT ManagementSoftware
badNo H1BnoteSecurity Clearance RequirednoteU.S. Citizen Onlynote

Responsibilities

Provide strategic input to identity and security architecture in Microsoft 365, Azure AD, and related services
Collaborate with security, operations, and compliance teams to implement secure-by-design configurations
Develop technical documentation, runbooks, and executive-level reporting for compliance audits and operational transparency
Troubleshoot Tier 3 issues related to Sentinel rules, Intune policy conflicts, AVD connectivity, and security misconfigurations
Serve as the SME for endpoint security, SIEM/SOAR platforms, and Zero Trust implementations within Microsoft ecosystems
Architect, configure, and manage Microsoft Sentinel for advanced threat detection, investigation, and response
Integrate Sentinel with Microsoft Defender solutions and third-party data connectors to monitor hybrid cloud infrastructure
Design and implement security best practices using Microsoft Defender for Cloud, focusing on CSPM, workload protection, and threat analytics
Create custom KQL queries and workbooks for detection, automation, and incident response workflows
Architect and manage Microsoft Intune for endpoint security, compliance, device lifecycle management, and mobile application management (MAM)
Define conditional access policies integrated with Azure AD to support Zero Trust architecture
Drive enrollment, configuration profiles, compliance baselines, and application deployment for Windows 10/11, iOS, and Android endpoints
Plan, deploy, and manage scalable AVD environments in Azure Government Cloud, ensuring optimal user experience and policy enforcement
Implement FSLogix profile management, MSIX app attach, and integration with Defender and Sentinel
Monitor AVD performance and usage analytics for capacity planning and optimization
Work within Microsoft 365 GCC High environments, ensuring full compliance with DoD, FedRAMP High, and NIST 800-53 frameworks
Secure M365 workloads with a strong focus on tenant hardening, conditional access, DLP, and insider risk policies

Qualification

Microsoft SentinelMicrosoft Defender for CloudMicrosoft IntuneAzure AD Conditional AccessPowerShell scriptingZero Trust ArchitectureAVD architectureM365 GCC HighMicrosoft certificationsLog AnalyticsKQLPlaybook automationMicrosoft PurviewDLPInsider Risk ManagementDoD 8570 Level II CertificationsCommunication skills

Required

US Citizenship is required
Eligible to obtain and maintain a DoD Security Clearance (Secret or Top Secret)
BS/BA degree and 8 years of IT experience, or 10 years total without a degree
Demonstrated experience in M365 GCC High, Azure Government Cloud, and DoD-compliant environments
Expert knowledge of Microsoft Sentinel, Defender for Cloud, Intune, and Azure AD Conditional Access
Working knowledge of AVD architecture, deployment, and management in regulated environments
Proficiency in PowerShell scripting for automation, policy enforcement, and monitoring
Experience designing solutions aligned with Zero Trust Architecture, NIST, and FedRAMP High standards
Strong communication skills for technical and executive-level briefings and documentation

Preferred

Microsoft certifications such as SC-200, MS-500, AZ-104, MD-102, or AZ-140
Experience integrating third-party SIEM, EDR, or MDM platforms with Microsoft solutions
Hands-on experience with Log Analytics, KQL, Playbook automation (Logic Apps), and Graph API
Familiarity with Microsoft Purview, DLP, and Insider Risk Management
One or more of the following DoD 8570 Level II Certifications: Security+ CE, GSEC, SSCP, CCNA Security, or equivalent

Benefits

Paid time off
Medical/dental/vision insurance
401(k)

Company

Capgemini

twittertwittertwitter
Glassdoor3.9
company-logo
Capgemini is a software company that provides consulting, technology, and digital transformation services.
dateFounded in 1967
location
Paris, Ile-de-France, FRA
people-size10001+ employees
web-link
https://www.capgemini.com

Funding

Current Stage
Public Company
Total Funding
$4.72B
2025-09-18Post Ipo Debt· $4.72B
1999-04-01IPO

Leadership Team

leader-logo
Aiman Ezzat
CEO, Capgemini Group
linkedin
leader-logo
Anirban Bose
CEO of Americas Strategic Business Unit
linkedin

Recent News

Investing.com
Morgan Stanley downgrades Capgemini, sees no path for valuation expansion
2026-01-12
Zawya.com
Refinancing dominates EMEA loan market in bumper year: IFR
2026-01-08
crnasia.com
Hitachi Vantara appoints Wendy Koh as VP of Sales for Asia Pacific
2026-01-06
Company data provided by crunchbase