18 Defender Xdr Jobs

Role & responsibilities Manage and optimize M365 E5 Security Suite (Defender XDR, Entra ID, Purview). Implement Zero Trust, Conditional Access, and MFA . Administer Intune for compliance and device management. Lead threat detection, response, and posture improvement . Automate and report using PowerShell & Graph API . Preferred candidate profile M365 E5 Security & Intune Specialist

Our mission is to protect customers from cybersecurity threats. Our vision is to deliver a comprehensive AI-driven security stack that provides best-in-class protection.Our Threat Protection strategy at Microsoft spans multiple products and services, providingstate-of-the-artprotection across the entire digital estate.Our culture is centred on embracing a growth mindset, a theme of inspiring excellence, and encouraging teams and leaders to bring their best each day. In doing so, we create life-changing innovations thatimpactbillions of lives around the world. You can help usto achieveour mission. We are looking for a Cloud Solution Architect (CSA) , specializing in Security who is passionate...

We are seeking a SOC Operations Specialist to strengthen our cybersecurity defense and response capabilities. The role involves leading threat detection, investigation, and automation efforts using Microsoft Sentinel and Defender XDR . You'll be working closely with cross-functional teams to enhance the organization's overall security posture through advanced analytics, automation, and proactive threat hunting. Key Responsibilities Lead end-to-end threat detection, investigation, and response using Microsoft Sentinel & Defender XDR. Develop and optimize KQL queries , custom analytics rules, dashboards, and automated playbooks. Administer and maintain Sentinel environments , integrations, and...

Who We Are At Kyndryl, we design, build, manage and modernize the mission-critical technology systems that the world depends on every day. So why work at Kyndryl We are always moving forward always pushing ourselves to go further in our efforts to build a more equitable, inclusive world for our employees, our customers and our communities. The Role Are you passionate about protecting companies from cyber threats Do you want to be part of a team that safeguards the digital assets of cutting-edge organizations Look no further Kyndryl is seeking a Cybersecurity Specialist to join our team of talented Technical Specialists. As a Cybersecurity Specialist, you will be at the forefront of protectin...

WORK FROM NOIDA OFFICE, PLEASE DON'T APPLY IF YOU ARE LOOKING FOR HYBRID OR WORK FROM HOME Department: Managed Services & Support & Security Operations Center (SOC) Job Type: Full-Time Reports To: SOC Team Lead / Head of Cybersecurity Services Job Overview: We are seeking a technically skilled and detail-oriented SOC Content Detection Engineer to lead the development, optimization, and governance of detection content across Microsoft Sentinel and Defender XDR platforms. This role is critical to ensuring high-fidelity alerting, minimizing false positives, and aligning detection logic with threat intelligence and MITRE ATT&CK frameworks. The ideal candidate will have deep experience in KQL, Si...

Xylem is a Fortune 500 global water solutions company dedicated to advancing sustainable impact and empowering the people who make water work every day. As a leading water technology company with 23,000 employees operating in over 150 countries, Xylem is at the forefront of addressing the world's most critical water challenges. We invite passionate individuals to join our team, dedicated to exceeding customer expectations through innovative and sustainable solutions. Job Summary As a Security Analyst at Xylem, you will play a key role in safeguarding our digital infrastructure. You will monitor, analyze, and respond to security threats using industry-leading tools such as XDR, NGFW, and emai...

MSSP Onboarding & Enablement Consultant (SOC + MSS) Job Type: Full-Time Location: Noida / Singapore (SGT timezone alignment) Reports To: SOC Team Lead / Head of Cybersecurity Services Job Overview We are seeking a versatile and customer-centric MSSP Onboarding & Enablement Consultant to lead onboarding efforts across both Security Operations (SOC) and Managed IT Services (MSS). This role is pivotal in ensuring seamless integration of Microsoft 365, Azure, Microsoft Sentinel, Defender XDR, and related services into MSSP customer environments. The ideal candidate will possess: Deep technical expertise Strong consulting skills Ability to deliver onboarding excellence across both security and IT...

Overview: Highly skilled Azure Security Engineer with expertise in Microsoft Defender for Cloud, Microsoft XDR, and SC-100-level security architecture. The ideal candidate will be responsible for conducting comprehensive security posture assessments across client environments, identifying vulnerabilities, and recommending remediation strategies aligned with industry standards such as HIPAA, GDPR, and FEDRAMP. Detailed JD: > Conduct security posture assessments using Microsoft Defender for Cloud and XDR tools. > Analyze and report on threat detection, vulnerability management, and compliance posture across Azure workloads for a integrated security architecture across IAM, ITM and TVM. > Knowl...

Overview: Highly skilled Azure Security Engineer with expertise in Microsoft Defender for Cloud, Microsoft XDR, and SC-100-level security architecture. The ideal candidate will be responsible for conducting comprehensive security posture assessments across client environments, identifying vulnerabilities, and recommending remediation strategies aligned with industry standards such as HIPAA, GDPR, and FEDRAMP. Detailed JD: > Conduct security posture assessments using Microsoft Defender for Cloud and XDR tools. > Analyze and report on threat detection, vulnerability management, and compliance posture across Azure workloads for a integrated security architecture across IAM, ITM and TVM. > Knowl...

Overview: Highly skilled Azure Security Engineer with expertise in Microsoft Defender for Cloud, Microsoft XDR, and SC-100-level security architecture. The ideal candidate will be responsible for conducting comprehensive security posture assessments across client environments, identifying vulnerabilities, and recommending remediation strategies aligned with industry standards such as HIPAA, GDPR, and FEDRAMP. Detailed JD: > Conduct security posture assessments using Microsoft Defender for Cloud and XDR tools. > Analyze and report on threat detection, vulnerability management, and compliance posture across Azure workloads for a integrated security architecture across IAM, ITM and TVM. > Knowl...

Role & responsibilities Monitor security alerts via Microsoft Sentinel and Defender XDR. 2. Perform initial triage and analysis of incidents. 3. Execute first-level containment actions (endpoint isolation, credential disablement). 4. Escalate complex incidents to L2 Team. Exhibit strong analytical and communication skills. 5. Maintain incident logs and ITSM records. 6. Prepare shift handover documentation. Preferred candidate profile 1. 1 to 3 years SOC experience. 2. Familiar with Microsoft Defender, Sentinel, QRadar, Splunk and Palo Alto. 3. Working knowledge of incident response processes on the said technologies. 4. Perform proactive Threat Intel and Threat hunting using Defender XDR, Se...

Level: L3 Lead the investigation of high and critical severity email security incidents flagged by Microsoft Defender for Office 365 (MDO). Correlate alerts across Defender XDR (including Defender for Endpoint, Identity, and Cloud Apps) to build a complete incident storyline. Use automated investigation and response (AIR) playbooks to identify impacted entities and take containment actions such as: - Soft-deleting malicious emails. - Removing suspicious inbox rules. - Blocking sender domains or URLs Perform forensic analysis of phishing, spoofing, and business email compromise (BEC) attacks. Document root cause analysis (RCA) and lessons learned for each incident Identify gaps in detection l...

Level: L3 Lead the investigation of high and critical severity email security incidents flagged by Microsoft Defender for Office 365 (MDO). Correlate alerts across Defender XDR (including Defender for Endpoint, Identity, and Cloud Apps) to build a complete incident storyline. Use automated investigation and response (AIR) playbooks to identify impacted entities and take containment actions such as: - Soft-deleting malicious emails. - Removing suspicious inbox rules. - Blocking sender domains or URLs Perform forensic analysis of phishing, spoofing, and business email compromise (BEC) attacks. Document root cause analysis (RCA) and lessons learned for each incident Identify gaps in detection l...

Level: L3 Lead the investigation of high and critical severity email security incidents flagged by Microsoft Defender for Office 365 (MDO). Correlate alerts across Defender XDR (including Defender for Endpoint, Identity, and Cloud Apps) to build a complete incident storyline. Use automated investigation and response (AIR) playbooks to identify impacted entities and take containment actions such as: - Soft-deleting malicious emails. - Removing suspicious inbox rules. - Blocking sender domains or URLs Perform forensic analysis of phishing, spoofing, and business email compromise (BEC) attacks. Document root cause analysis (RCA) and lessons learned for each incident Identify gaps in detection l...

Level: L3 Lead the investigation of high and critical severity email security incidents flagged by Microsoft Defender for Office 365 (MDO). Correlate alerts across Defender XDR (including Defender for Endpoint, Identity, and Cloud Apps) to build a complete incident storyline. Use automated investigation and response (AIR) playbooks to identify impacted entities and take containment actions such as: - Soft-deleting malicious emails. - Removing suspicious inbox rules. - Blocking sender domains or URLs Perform forensic analysis of phishing, spoofing, and business email compromise (BEC) attacks. Document root cause analysis (RCA) and lessons learned for each incident Identify gaps in detection l...

Level: L3 Lead the investigation of high and critical severity email security incidents flagged by Microsoft Defender for Office 365 (MDO). Correlate alerts across Defender XDR (including Defender for Endpoint, Identity, and Cloud Apps) to build a complete incident storyline. Use automated investigation and response (AIR) playbooks to identify impacted entities and take containment actions such as: - Soft-deleting malicious emails. - Removing suspicious inbox rules. - Blocking sender domains or URLs Perform forensic analysis of phishing, spoofing, and business email compromise (BEC) attacks. Document root cause analysis (RCA) and lessons learned for each incident Identify gaps in detection l...

This job is with Kyndryl, an inclusive employer and a member of myGwork the largest global platform for the LGBTQ+ business community. Please do not contact the recruiter directly. Who We Are At Kyndryl, we design, build, manage and modernize the mission-critical technology systems that the world depends on every day. So why work at Kyndryl We are always moving forward - always pushing ourselves to go further in our efforts to build a more equitable, inclusive world for our employees, our customers and our communities. The Role Are you ready to take on an exhilarating role as a Program Manager at Kyndryl Prepare to embark on a journey where you will be at the helm of delivering value-add tra...

Job description Job Role : EDR Admin --Work From Office Experience : 3 to 6 Yrs Key Skills: End-End management of MS Defender, Hands-on experience with EDR, Defender Antivirus, Strong knowledge of Python, PowerShell or any scripting Notice Period : 0 to 30 days-- Candidates must attend F2F interview in Hyderabad(Weekdays only) Should be willing to work in Rotational shift Company: Cyber Towers, Quadrant 3, 3rd floor, Madhapur, Hyderabad -- 500081. Job Overview: We are seeking a proactive and detail-oriented Endpoint Security Engineer to manage and enhance our endpoint protection technologies. This role focuses on deploying, tuning, and monitoring Microsoft Defender products (such as Defender...