Microsoft Security Engineer - Inside IR35

A Microsoft Security Engineer is required for an initial 6 month contract. This is a hybrid role with 2-3 days per week on site in London and is inside IR35, so work will be via an FCSA accredited umbrella company.

A proactive and skilled Microsoft Security Engineer/Analyst tasked with safeguarding digital assets by leveraging a comprehensive suite of Microsoft security technologies. The candidate will use Microsoft Defender XDR for threat management and response, implement Microsoft Purview for data governance and compliance, and secure identities and access through Microsoft Entra ID.

• Microsoft Defender XDR (Extended Detection and Response) platform expertise and management, including:
• Microsoft Defender for Endpoint: manage endpoint protection, detection, and response across the device fleet
• Microsoft Defender for Office 365: protect against email-based threats (phishing, malicious attachments, compromised links)
• Microsoft Defender for Identity: monitor on-premises Active Directory signals to identify threats related to compromised identities
• Microsoft Defender for Cloud Apps: enforce security policies and provide threat protection across cloud applications
• Microsoft Defender Vulnerability Management: prioritize and address critical vulnerabilities based on risk
• Collaboration & support: work with internal IT and security teams; act as a point of contact for external services like Microsoft Defender Experts for proactive hunting and guidance
• Documentation & reporting: document incident response procedures, produce security posture reports, and brief leadership
• Microsoft Purview (Data Governance and Compliance) responsibilities include:
• Data lifecycle management: implement records management and retention policies according to legal/business requirements; secure disposal when appropriate
• Data Security Posture Management (DSPM): identify data risk, locate sensitive data, and implement controls; include AI data governance considerations
• eDiscovery & auditing: support legal/compliance with Purview capabilities
• Education: Bachelor’s degree in Cybersecurity, IT, Computer Science, or related field
• Experience: 8-10 years in cybersecurity with strong focus on Microsoft security solutions
• Technical skills: deep knowledge of Defender XDR, Purview, and Entra ID; scripting experience (PowerShell) for automation; familiarity with MITRE ATT&CK framework
• Certifications (preferred): Microsoft Security Operations Analyst Associate (SC-200); Identity and Access Administrator Associate (SC-300); Information Protection Administrator Associate (SC-400); CISSP

• Advanced Threat Protection: use Entra ID Protection to identify/respond to compromised credentials and monitor on-premises AD with Defender for Identity
• Privileged Access Management: implement PIM/PAM for just-in-time access and least privilege
• Authentication protocols: configure and integrate SAML, OAuth, OIDC, and SCIM for provisioning
• Device management: secure BYOD and other devices with device-based access policies

• Excellent analytical and problem-solving abilities
• Strong communication and collaboration skills across technical and non-technical teams
• Proactive mindset and ability to adapt in a fast-paced, evolving threat landscape

LA International is a HMG approved ICT Recruitment and Project Solutions Consultancy, operating globally from the largest single site in the UK. We act as IT Consultancy or Employment Business & Agency depending on the work type. We welcome applications from all sections of the community and from people with diverse experience and backgrounds. Awarded The Queen’s Award for Enterprise: International Trade for the second consecutive period.