Endpoint %26 Threat Management - Security Engineer

We are seeking a highly skilled Security Engineer with strong expertise in Microsoft Defender technologies and foundational knowledge across core cybersecurity domains. The ideal candidate will assess, enhance, and automate endpoint security processes while driving efficiencies across detection and response workflows. Experience with micro-segmentation, SIEM platform integration, and threat management will be considered a strong advantage.

• Assess, design, and optimize endpoint security processes leveraging Microsoft Defender and related technologies.
• Implement automation frameworks to streamline security operations and improve detection and response times.
• Conduct threat analysis and investigations, working with SIEM platforms to identify, contain, and remediate incidents.
• Collaborate with cross-functional IT and security teams to ensure endpoint security controls are aligned with organizational standards and compliance requirements.
• Design and implement micro-segmentation strategies to limit lateral movement and reduce attack surface.
• Regularly review and improve existing security playbooks, runbooks, and response workflows.
• Stay updated on emerging threats, vulnerabilities, and best practices to proactively improve the organization’s security posture.

• Strong hands-on expertise with Microsoft Defender (Endpoint, Identity, and related modules).
• Good understanding of cybersecurity fundamentals including endpoint, network, identity, and access security.
• Experience in process assessment and optimization for endpoint security.
• Proven track record of implementing automation in security operations (e.g., PowerShell, Python, Logic Apps, SOAR platforms).
• Working knowledge of SIEM tools (Microsoft Sentinel or equivalent) for threat monitoring and incident response.
• Familiarity with micro-segmentation solutions (e.g., ColorTokens, Illumio, or equivalent) is a strong plus.
• Knowledge of threat hunting and threat intelligence practices.
• Strong problem-solving, analytical, and communication skills.

• Bachelor’s degree in Computer Science, Information Security, or related field (or equivalent experience).
• Relevant industry certifications such as Microsoft Certified: Security Operations Analyst Associate, SC-200, CISSP, or GIAC preferred.

Experience in large enterprise or managed security environments.