M365 Exchange Security Architect

Locals are preferred but nonlocals will also work

It’s remote role.

Position : M365 Exchange Security Architect

Location : Chicago, IL

Duration : 6 Months

An "M365 Exchange Security Architect" is a technical expert responsible for designing, implementing, and maintaining a secure email infrastructure within a Microsoft 365 environment, focusing specifically on Exchange Online, by leveraging advanced security features, managing access controls, and ensuring compliance with industry regulations; they act as a key advisor on best practices for protecting sensitive data within the Exchange platform while collaborating with other IT teams to maintain overall M365 security posture.

Key responsibilities :

• Security Architecture Design :
• Develop and implement a robust security architecture for Exchange Online, including threat protection, data loss prevention (DLP), and email filtering policies.
• Define security controls for user access, mail flow, and attachment management.
• Integrate Exchange Online security with other M365 security components like Azure Active Directory (Azure AD) and Microsoft Defender for Office 365.
• Implementation and Configuration :
• Configure Exchange Online security settings based on organizational requirements, including anti-malware, anti-spam, and anti-phishing filters.
• Implement granular permission controls and access policies for mailboxes and distribution groups.
• Set up and manage security policies for data protection and compliance, including retention policies and legal holds.
• Threat Analysis and Incident Response :
• Define Exchange Online security alerts for potential threats and suspicious activity.
• Investigate security incidents related to email, including phishing attempts, malware infections, and data breaches.
• Collaborate with security teams to implement remediation strategies for security incidents.
• Compliance and Governance :
• Ensure Exchange Online configurations adhere to relevant industry regulations and compliance standards (., HIPAA, GDPR).
• Conduct regular security assessments and vulnerability scans to identify potential risks.
• Document security policies and procedures for Exchange Online usage.

Required Skills and Experience :

• Deep understanding of Microsoft Exchange Online security features and capabilities
• Expertise in Microsoft 365 security services like Azure AD, Microsoft Defender for Office 365, and Microsoft Purview
• Strong knowledge of email security protocols (SMTP, IMAP, POP3) and encryption standards
• Experience with security incident response and threat analysis
• Understanding of compliance frameworks and data privacy regulations
• Proficiency in PowerShell scripting for automating security tasks
• Excellent communication and collaboration skills to work with cross-functional teams

Security Architect • Chicago, Illinois, United States