Principal Security Consultant - Contractor

Responsibilities:

• Design, configuration, and continuously enhance Microsoft 365 security features including Microsoft Defender for Office 365, Defender for Endpoint, Azure AD Conditional Access, and Purview Compliance tools.
• Manage and optimize the organization’s email gateway solution (e.g., Microsoft Defender, Proofpoint, Mimecast), ensuring effective spam filtering, anti-spoofing, control and protection against phishing and malware threats.
• Lead the implementation, monitoring, and refinement of Data Loss Prevention (DLP) policies across endpoints, email, and cloud environments to prevent unauthorized data access and leakage.
• Administer and enforce application whitelisting policies using AppLocker, Windows Defender Application Control (WDAC), or other tools to ensure only approved software runs in the environment.
• Collaborate with IT, compliance, and leadership teams to ensure security measures align with business goals and regulatory requirements.
• Respond to and lead investigations of security incidents and develop incident response plans and actionable playbooks to enhance organizational preparedness.
• Provide technical leadership, mentorship, and guidance to security engineers and analysts, fostering professional growth and a culture of continuous improvement.

Minimum Requirements:

• Bachelor’s or Master’s degree in Cybersecurity, Computer Science, or related discipline.
• 10+ years of hands-on experience in cybersecurity, with a focus on enterprise environments.
• Proven expertise in Microsoft 365 E5 security tools and administration.
• Strong experience managing and securing email gateways, DLP policies, and application whitelisting technologies.
• Deep understanding of endpoint protection, identity security, and threat detection and response.
• Familiarity with security standards and compliance requirements (e.g., ISO 27001, NIST, NCA, GDPR).
• Relevant certifications such as MS-500, Microsoft Certified: Cybersecurity Architect Expert, CISSP, or CISM are a plus.

Preferred Skills:

• Knowledge of PowerShell scripting and automation for security tasks.
• Background in incident response and security operations in a hybrid cloud environment.

Company Industry:

• IT - Software Services

Department / Functional Area:

• IT Software

Keywords:

• Principal Security Consultant