Microsoft 365 Security and Compliance Expert
Part Time • Remote
Job Summary:
We are seeking a highly skilled Microsoft 365 Security and Compliance Expert to join our IT Security team. This role focuses on implementing, managing, and enhancing security and compliance features within the Microsoft 365 environment. The ideal candidate will have deep expertise in Microsoft 365 Defender, Purview Compliance solutions, Azure AD (now Entra ID), and modern security frameworks.
Key Responsibilities:
- Design, implement, and manage M365 security and compliance solutions including:
- Microsoft Purview Information Protection (sensitivity labels, DLP, etc.)
- Microsoft Defender for Office 365
- Microsoft Defender for Endpoint
- Microsoft Defender for Identity
- Microsoft Defender for Cloud Apps (MCAS)
- Implement and manage security baselines and secure configurations across M365 services.
- Define and enforce data loss prevention (DLP) policies, retention policies, and compliance labels.
- Monitor and respond to security alerts using Microsoft 365 Defender portal and Security & Compliance Center.
- Configure and manage conditional access policies, MFA, role-based access control (RBAC), and identity protection in Azure AD/Entra ID.
- Ensure compliance with regulatory frameworks (e.g., GDPR, HIPAA, ISO 27001) using Microsoft compliance tools.
- Collaborate with the SOC, legal, and risk teams to manage insider risk and eDiscovery workflows.
- Provide recommendations for continuous improvement in M365 security posture and compliance readiness.
- Lead or support incident response and forensic investigations related to M365.
Required Skills and Qualifications:
- Overall 15+ years of experience in Microsoft stack
- Proven experience (5+ years) in M365 administration, with 3+ years focused on security and compliance.
- Strong expertise in Microsoft 365 Defender and Purview Compliance Portal.
- In-depth knowledge of Azure Active Directory / Entra ID, Conditional Access, and Identity Governance.
- Must be familiar with SAML and SCIM provisioning protocols
- Experience implementing DLP, data classification, retention labels, and eDiscovery.
- Familiarity with cloud security frameworks (e.g., CIS, NIST, Zero Trust, FedRAMP).
- Hands-on experience with Microsoft Secure Score and Compliance Score.
- Understanding of Microsoft Sentinel integration and threat intelligence.
- Strong analytical and problem-solving skills.
- Must be Microsoft Certified in the following:
- Microsoft 365 Certified: Enterprise Administrator Expert (MS-100, MS-101)
- Security Operations Analyst Associate (SC-200)
- Information Protection Administrator Associate (SC-400)
- Identity and Access Administrator Associate (SC-300)
- CISSP, CISM, or equivalent security certifications are a plus.
- Experience with Microsoft Sentinel or other SIEMs.
- Experience automating tasks using PowerShell or Microsoft Graph API.
Compensation: $60.00 per hour
We are an equal opportunity employer and all qualified applicants will receive consideration for employment without regard to race, color, religion, sex, national origin, disability status, protected veteran status, or any other characteristic protected by law.
ABOUT US
Technical Experience
We are well-versed in a variety of operating systems, networks, and databases. We work with just about any technology that all businesses would encounter. We use our expertise to help our customers.
(if you already have a resume on Indeed)