/Codec%20-%20Website%20Assets/New%20Logos/codec-medium-fav.png)
- Professional
- Optionales Büro in Belfast
We are seeking a highly skilled and results-driven Microsoft Security Engineer to join our technical delivery team. The ideal candidate will be a hands-on subject matter expert in Microsoft's security ecosystem, with a strong focus on implementing, configuring, and supporting cloud security and data governance solutions within Azure, Entra, the Microsoft Defender suite, and Microsoft Purview. This role is primarily focused on technical execution—turning architectural designs into secure, compliant, and operational customer environments
Key Responsibilities
Key Responsibilities
Implementation & Configuration:
- Deploy, configure, and maintain core Microsoft security technologies, including Azure Networking Security components (Azure Firewall, NSGs, Azure WAF) and Entra ID services (Conditional Access, PIM, Entra Private Access).
- Execute the onboarding and fine-tuning of the Microsoft Defender suite (e.g., Defender for Endpoint, Defender for Cloud, Defender for Office 365) across customer environments.
- Implement and manage Microsoft Sentinel for security information and event management (SIEM), including connector deployment, playbook automation, and custom rule creation.
Data Governance & Compliance:
- Implement and configure Microsoft Purview capabilities, including Data Loss Prevention (DLP) policies, Information Protection (sensitivity labels, encryption), and records management features.
- Configure eDiscovery, communication compliance, and audit log settings within Purview to meet regulatory and data protection requirements (e.g., GDPR, ISO 27001).
- Define and apply data classification schemes and retention policies across various data sources using Purview tools.
Endpoint & Identity Management:
- Implement and manage Microsoft Intune policies for endpoint security, compliance, and device configuration.
- Configure advanced Identity and Access Management (IAM) solutions within Entra ID, focusing on least privilege principles and identity governance.
Operational Support & Documentation:
- Perform security hardening and ensure operational compliance through the implementation of Azure Policy, and resource locks.
- Produce clear, detailed, and up-to-date technical runbooks, configuration guides, and "as-built" documentation for all implemented security and compliance solutions.
Skills, Knowledge and Expertise
Technical Execution Expertise:
- Deep, hands-on experience with the deployment and configuration of Microsoft Azure security services (Azure Policy, Network Security, Key Vault) and E5 Security.
- Expert proficiency in configuring and managing Entra ID (formerly Azure AD), including advanced features like Conditional Access Policies, PIM, MFA, and SSO integrations.
- Proven implementation experience with the Microsoft Defender Suite and Microsoft Sentinel.
- Practical hands-on experience implementing Microsoft Purview, specifically configuring DLP policies, sensitivity labeling, and retention labels.
- Strong practical knowledge of managing security controls for Windows and mobile endpoints using Microsoft Intune.
Soft Skills & Qualifications:
- Excellent ability to follow detailed technical implementation plans and execute tasks efficiently.
- Strong troubleshooting and analytical skills to diagnose and resolve complex technical security and compliance issues.
- Meticulous attention to detail in technical configuration and "as-built" documentation.
Desirable Attributes
- Current Microsoft certifications such as AZ-500 (Azure Security Engineer Associate), SC-200 (Microsoft Security Operations Analyst), or SC-400 (Microsoft Information Protection Administrator).
- Practical experience applying security and compliance frameworks such as ISO 27001 or NIST during implementation.
- Familiarity with automation and scripting tools (e.g., PowerShell, Azure CLI, ARM/Bicep templates) to streamline deployments.
