Microsoft 365 & Endpoint Security Engineer

Description :

Key Responsibilities :

Microsoft 365 Administration :

- Manage and support Exchange Online, SharePoint Online, Intune, OneDrive, and Teams.

- Configure and maintain Microsoft 365 security and compliance features (DLP, eDiscovery, retention policies).

- Administer Microsoft Entra ID (Azure AD), including Conditional Access, MFA, and SSO integrations.

- Monitor and troubleshoot mail flow, Teams connectivity, and SharePoint permissions.

- Assist in Microsoft 365 migrations, upgrades, and security hardening projects.

Endpoint Security Management :

- Deploy, configure, and manage endpoint protection platforms (e.g., Microsoft Defender for Endpoint, Trend Micro, CrowdStrike).

- Implement and maintain device compliance policies, application protection policies, and encryption (BitLocker).

- Apply security baselines and hardening for Windows, macOS, and mobile devices.

- Monitor endpoint dashboards, investigate alerts, and remediate threats.

- Perform root cause analysis and coordinate with SOC or L3 teams for advanced threat investigations.

Incident Response & Escalation :

- Handle L2 escalations from Service Desk for Microsoft 365 and endpoint security issues.

- Perform advanced troubleshooting and coordinate with vendor support when required.

- Document incidents, resolutions, and contribute to knowledge base articles.

Monitoring & Reporting :

- Monitor Microsoft 365 health dashboards and security portals.

- Generate compliance and security reports for audits and management.

- Track and report on endpoint compliance and threat detection metrics.

Policy & Compliance :

- Create and maintain endpoint security policies aligned with organizational standards.

- Ensure compliance with regulatory frameworks (ISO 27001, NIST, GDPR).

- Work with InfoSec teams to align with Zero Trust and other security frameworks.

Automation & Optimization :

- Develop scripts (PowerShell, Python) for automation of security tasks.

- Optimize endpoint security configurations for performance and protection.

Required Skills & Experience :

Technical Skills :

- Strong knowledge of endpoint security tools (AV, EDR, DLP).

- Experience with Microsoft Intune (MDM/MAM) and Microsoft Defender for Endpoint.

- Familiarity with SIEM tools and incident response processes.

- Strong understanding of Microsoft 365 services and Azure AD.

- Knowledge of security frameworks (Zero Trust, NIST, CIS).

- PowerShell scripting for automation and reporting.

Experience :

- 3 - 5 years in Microsoft 365 administration and endpoint security.

- Experience handling L2 escalations and working in ITIL-based environments.

- Hands-on experience with enterprise security solutions.

Certifications (Preferred) :

- Microsoft 365 Certified : Modern Desktop Administrator Associate

- Microsoft Certified : Security Administrator Associate

- CompTIA Security+ or CySA+

- Vendor-specific certifications (Trend Micro, CrowdStrike, etc.)

Soft Skills :

- Strong problem-solving and analytical abilities.

- Excellent communication and documentation skills.

- Ability to work under pressure and manage multiple priorities.