Microsoft 365 / Defender Security Engineer

תיאור משרה

We are looking for Microsoft 365 Security Engineer to lead the implementation and continuous improvement of Microsoft security and compliance capabilities across the Microsoft 365 environment. The role focuses especially on Microsoft Purview and Microsoft Defender for Cloud Apps, and also covers Microsoft Defender for Office 365, Security for identity, Entra ID security controls, and security features across Exchange Online and collaboration services. You will translate requirements into technical design and configuration, implement and tune policies, rollout changes safely, troubleshoot complex issues, and document solutions and operational procedures. You will work closely with IT and System teams to ensure stable integrations, minimal business disruption, and measurable risk reduction.

· Lead end to end implementation and ongoing improvement of Microsoft 365 security and compliance controls.

· Implement and operate Microsoft Purview, including sensitivity labels and DLP, and support additional compliance capabilities as needed.

· Implement and operate Microsoft Defender for Cloud Apps CASB, including cloud discovery, governance controls, and policy enforcement.

· Implement and tune Microsoft Defender for Office 365 protections for phishing, malware, and impersonation threats.

· Support identity driven security controls with Entra ID, including Conditional Access concepts and tenant security posture improvements.

· Improve Exchange Online security posture, mail flow protections, and related configurations.

· Create technical documentation, runbooks, and change plans, and provide operational support and troubleshooting.

· Partner with internal teams and stakeholders to plan rollouts, reduce false positives, and maintain business continuity.

· Experience in securing Microsoft SharePoint Online, including configuration of access controls, data protection policies, and compliance settings.