Microsoft Threat Protection Security Architect
Location: 100% Remote in UK (U.S. based company with clients in UK)
Employment Type: Contract (potential to convert to FTE)
Level: Experienced/Sr. Level
Rate: Based on experience level
Responsibilities
As a Security Architect at Cyclotron, you’ll make an impact on diverse enterprise organizations by architecting, designing, and executing enterprise deployments of Microsoft Defender XDR and Microsoft Sentinel, including Microsoft Defender for Office 365, Microsoft Defender for Endpoint, Microsoft Defender for Identity, Microsoft Defender for Cloud Apps, Microsoft Defender for Cloud, Entra Identity Protection, Microsoft Sentinel, and related Azure security features. You will be the subject matter expert that works with Cyclotron clients to design and deploy industry-leading solutions to improve the protection of Microsoft-based assets within their on-premises and cloud environments. You will understand how to use a wide variety of approaches to improve cloud, network and endpoint security posture within client security architectures.
The ideal candidate for this job will be a goal-oriented, client-focused Threat Protection and SIEM/SOAR architect who possesses the ability to generate & execute technical designs based on client requirements to assist the customer to make the most of their investments in Microsoft technologies and services.
* Work directly with customer teams to drive discovery, design, configuration, validation, piloting, deployment and support of Microsoft cloud and on-premises security capabilities.
* Work across Cyclotron business units to provide a holistic approach that combines your areas of expertise in threat protection with identity & devices, compliance, and more.
* Contribute to the development of new Threat Protection and SIEM services offered by Cyclotron.
* Engage with other Cyclotron and customer teams to get and share information to improve processes and security posture.
Experience
* Demonstrated knowledge and skill with Microsoft cloud security solutions and services such as Microsoft Defender for Office 365, Microsoft Defender for Endpoint, Microsoft Defender for Identity, Microsoft Defender for Cloud Apps, Microsoft Defender for Cloud, and Sentinel.
* Strong and demonstrated experience with KQL queries, Attack Simulation services, on-premises Microsoft security solutions including Windows 10 and 11, Windows Server and Active Directory as well as third party solutions used to protect hosts.
* Strong communication skills, experience in leading technical discussions, providing guidance and direction when resolving technical challenges along with demonstrated technical writing experience.
Bonus Experience
* History with competitive security tools (Crowdstrike, Cortex, Webroot, Soti, XenMobile, Workspace ONE, Okta, PingFederate, etc.).
* Experience with Microsoft Intune, Configuration Manager, Entra ID, Entra ID Connect, SSO and Microsoft Purview capabilities.
* Experience with data connectors, data sources, and Logic Apps.
* Experience with migration of third party email security applications (Proofpoint, Mimecast, Cisco Secure Email, Tessian and Ironscales).
* Currently holds a Microsoft 365 Certified Security Administrator Associate or Azure Security Engineer Associate certification.
* Currently holds a Certified Information Systems Security Professional (CISSP) and/or Certified Information Security Manager (CISM)
* Security Operations (SecOps) experience with Microsoft Defender XDR.
Additional Notes
* A sanitized example deliverable will be required, representing quality of your written work. This can be a public blog, deliverable or documentation you have created (non-client-identifiable, and adhering to confidentiality requirements where appropriate), or something comparable.
* This is a fully remote role.
* Cyclotron is an Equal Opportunity Employer. Cyclotron values diversity, equity and inclusion, and aims to practice DE&I in all that we do.
#J-18808-Ljbffr