(Security Clearance Required)
As an M365 Consultant/Senior Consultant, you will help transform clients' cybersecurity posture by designing and implementing advanced Microsoft Threat Protection technologies. You will work directly with clients in a consulting capacity, supporting medium to large enterprise environments and contributing to robust Cyber Defence strategies across endpoints, identities, cloud, and collaboration platforms.
Key ResponsibilitiesDesign and implement AV/EDR solutions (e.g., Microsoft Defender for Endpoint) to detect and respond to cyber threats across major operating systems.
Protect email, messaging, and collaboration platforms from phishing, spear phishing, BEC, and identity-related attacks.
Develop and maintain cyber defence use cases, correlation rules, and attack chain detections across disparate systems.
Design, implement, and integrate SIEM solutions-particularly Microsoft Sentinel-into Security Operations.
Perform threat hunting across endpoints, identities, networking, cloud, and collaboration platforms in the Microsoft ecosystem.
Handle L2-level incidents leveraging Microsoft Sentinel and Microsoft Defender tools.
Support incident response, triage, threat modelling, and vulnerability remediation within Azure-hosted environments.
Create, run, and troubleshoot Azure Logic Apps, playbooks, and Sentinel automation components.
Collaborate with business and security stakeholders to define and enhance security standards and improve security posture.
Technical Expertise: Proven experience with Microsoft Sentinel (architecture, deployment, analytics rules, workbooks, playbooks); Microsoft Defender for Endpoint and Defender for Cloud; SIEM/SOC operations; Azure Logic Apps; vulnerability remediation; incident response.
Threat Hunting & Detection: Hands-on experience using KQL, Microsoft Defender XDR, and threat intelligence sources to hunt threats and support investigations.
Cyber Defence & Infrastructure Security: Strong understanding of cyber defence concepts, infrastructure security, and troubleshooting across the Microsoft ecosystem.
Methodology: Familiarity with agile methodologies and backlog management.
Collaboration & Communication: Strong communication skills, ability to work with cross-functional teams, and experience in client-facing environments.
Technologies: Knowledge of Microsoft 365, Azure, Windows, Linux, and mobile operating systems.
SC100 or equivalent desirable
Consultative and collaborative mindset; strong relationship builder.
Resilient, adaptable, intellectually curious.
Passionate about Microsoft security technologies (M365 Threat Protection, Defender suite, O365, Identity).
Problem-solver, quality-driven, self-motivated, and innovative.