Cloud Security and Integrations Engineer

Social network you want to login/join with:

Client: Sibylline Ltd

Location: London, United Kingdom

Job Category: Other

EU work permit required: Yes

Job Reference: 7cb51ffbf7bb

Job Views: 5

Posted: 24.04.2025

Expiry Date: 08.06.2025

About the role

We are looking for a Cloud Security and Integrations Engineer with expertise in Microsoft 365 security, cloud integration, and identity management to join our rapidly growing company. You will play a pivotal role in safeguarding our organisation's cloud infrastructure, maintaining robust security configurations, and enabling seamless integration between our various systems.

You will also be monitoring and enhancing our Microsoft 365 security posture, managing cloud-based identity solutions, and implementing secure system integrations, whilst working closely with stakeholders throughout Sibylline and with external partners. You will collaborate with the Microsoft 365 Architect and other teams across the company to implement robust security measures, design and deploy automated processes, and establish secure integrations with third-party applications.

Additionally, you will be supporting incident response activities, contributing to compliance efforts, and driving security awareness across the organisation. This position requires a security-focused mindset with particular emphasis on cloud security best practices and zero-trust principles.

1. Monitor, assess, and enhance Microsoft 365 security configurations across the entire tenant, including Azure, Defender, Entra, Intune, and third-party software.
2. Support the Microsoft 365 Architect with research and implementation of cloud systems.
3. Implement and manage data loss prevention (DLP) policies, sensitivity labels, and advanced threat protection measures.
4. Conduct regular security assessments of the Microsoft 365 environment to identify and remediate potential security gaps.
5. Design and implement Conditional Access policies to strengthen security while maintaining staff accessibility.
6. Evaluate, integrate, and onboard third-party software with appropriate security policies and SSO configuration.
7. Conduct periodic reviews of third-party software integrated with Microsoft 365.
8. Develop and maintain secure integrations and automated workflows between Microsoft 365 and other business-critical applications.
9. Implement security controls for data flows between integrated systems.
10. Provide weekly updates to the Director of Tech and the wider team regarding recent security incidents or vulnerabilities.
11. Monitor security logs and alerts from Microsoft 365 Defender suite and track remediation efforts.
12. Create regular security reports for technical and non-technical stakeholders.
13. Conduct and support internal audits related to ISO-27001, Cyber Essentials, and other frameworks.
14. Develop and maintain security policies and procedures for cloud environments.
15. Respond to and investigate security incidents related to cloud environments and Microsoft 365, developing incident response playbooks.

1. Minimum 3 years of experience in cloud security, focusing on Microsoft 365 security and administration.
2. Relevant certifications such as Microsoft Certified: Security, Compliance, and Identity Fundamentals, Microsoft 365 Certified: Security Administrator Associate, or similar.
3. Expertise in Azure Active Directory/Entra ID, SSO implementation, and identity management.
4. Strong experience with Microsoft Defender for Office 365, Defender for Endpoint, and other M365 security components.
5. Experience with Conditional Access policies and zero-trust security principles.
6. Hands-on experience integrating Microsoft 365 with third-party applications and security controls.
7. Experience with Microsoft Intune for device management and security.
8. Understanding of data protection regulations and compliance standards like ISO-27001 and Cyber Essentials.
9. Proficiency in monitoring and responding to security alerts and incidents.
10. Knowledge of cloud security best practices and frameworks.
11. Effective communication of security concepts to technical and non-technical audiences.
12. Strong analytical and problem-solving skills.
13. Experience with audit and compliance initiatives.

• Additional certifications like CISSP, Azure Security Engineer Associate, or CCSP.
• Experience with cloud security posture management tools.
• Knowledge of secure API integration principles.
• Experience with Microsoft Sentinel or similar SIEM solutions.

Interview Process

• Initial call with our Talent Acquisition team.
• Interview with the hiring manager.
• Panel interview with team members and hiring managers at Sibylline.

We encourage candidates who meet some requirements and can bring unique perspectives to apply.

Sibylline is committed to equal opportunity and fostering an inclusive work environment.