26 Microsoft Defender Jobs

Role & responsibilities Identity and Access Management (IAM): Administer and maintain IAM solutions to ensure secure and appropriate access to organizational resources. Implement and manage user provisioning, de-provisioning, and access reviews across cloud and on-premises systems. Support the integration of IAM with Office 365, Azure AD, and other enterprise applications. Create New Conditional Access Policies to cater to business needs and well as Review and optimize Conditional Access Policies Monitor and respond to IAM-related incidents, ensuring timely resolution and documentation. Collaborate with internal teams to enforce role-based access controls (RBAC) and least privilege principles. Participate in IAM-related projects such as onboarding new applications, automating access workflows, and enhancing authentication mechanisms (e.g., MFA, conditional access), Secret and Certificate rotation etc. Maintain and update IAM documentation, including process flows, SOPs, and technical configurations. Office 365 Administration: Perform day-to-day administration of Office 365 services including SharePoint Online, PowerApps, Teams etc. Configure and manage Office 365 security features such as Data Loss Prevention (DLP) and Defender for Office 365. Support compliance initiatives by maintaining audit logs, retention policies, and access controls. Assist in troubleshooting and resolving Office 365-related issues and service requests. Work with the Security Operations team to ensure Office 365 logs are integrated into SIEM and relevant alerts are generated. Preferred candidate profile: Education: Bachelors degree in Computer Science, Information Technology, Cybersecurity, or a related field. Experience: 4+ years of experience in IT Security with a strong focus on Identity and Access Management and Office 365 administration. Hands-on experience with Azure AD, Conditional Access, MFA, and IAM lifecycle processes. Experience managing Office 365 tenants and security configurations. Familiarity with Defender for Office 365 and Microsoft compliance tools. Skills: Strong understanding of IAM principles, RBAC, and authentication protocols. Proficiency in Microsoft PowerShell for automation and administration tasks. Experience with Microsoft Graph API is a plus. Solid troubleshooting and analytical skills. Effective communication and collaboration abilities. Ability to manage multiple operational tasks and project deliverables simultaneously. Good to have: MS-102 or equivalent Microsoft certification. Benefits Highlights: 5 Days working in a Fast-paced work environment. Work directly with the senior management team Reward and Recognition Employee friendly policies Personal development and training Health Benefits, Accident Insurance Potential Growth for you! We will nurture your talent in an inclusive culture that values diversity. You will be doing regular catchups with your manager who will act as your career coach and guide you in your career goals and aspirations. Location The position is based at Egon Zehnders KCI office in Gurgaon, Plot no. 29, Institutional Area Sector 32 EZ Commitment to Diversity & Inclusion Egon Zehnder aims for a diverse workplace and strives to continuously lead with our firm values. We respect personal values of every individual irrespective of race, national or social origin, gender, religion, political or other opinion, disability, age and sexual orientation as warranted by basic rights enshrined in the UN Declaration of Human Rights. We believe diversity of our firm is central to the success and enables us to deliver better solutions for our clients. We are committed to creating an inclusive environment and supportive work environment, where everyone feels comfortable to be themselves and treated with dignity and respect and there is no unlawful discrimination related to employment, recruitment, training, promotion, or remuneration. Egon Zehnder is an Equal Opportunity Employer Egon Zehnder provides equal employment opportunities to all applicants and employees without regard to race, color, creed, religion, sex, sexual orientation, gender identity, marital status, citizenship status, age, national origin, disability, or any other legally protected status and to affirmatively seek to advance the principles of equal employment opportunity.

Under the direction of the Security Administration Manager, the Security Administration Engineer will manage and administer security technologies and provide security management services, requirements, direction, and support. The Security Administration Engineer is responsible for the quality control within the Security infrastructure and tools. This includes building and defending scalable, secure, and robust systems; defining security requirements for operational systems and networks; helping the organization understand advanced cyber threats; and helping to create strategies to protect networks. This role will be responsible for execution of the vulnerability management program and assist the Security Administration Manager with improving processes and reducing the time remediate vulnerabilities. This leader must be current and keep current with changing technology, industry best practices, and standard security frameworks. Assign remediation tasks and assist application owners and remediation teams by providing vulnerability analysis and remediation prioritization. Maintain the vulnerability scanning infrastructure, scan schedules, and risk scoring adjustments Participates in direct support of security systems and tools, including installation, configuration, security, and maintenance. Implements upgrades, enhancements, and fixes following established change management procedures. Maintains security tool disaster recovery and DEV/Test environments. Execute and improve vulnerability management processes (vulnerability scanning, remediation, exceptions, etc.) and maintain process documentation. Participates as a technical lead in the execution of the security program roadmap across the enterprise by providing expert guidance and solutions engineering services as part of initiatives and day-to-day operations. Stays current with emerging identity technologies, solutions and best practices. Advises Security Administration Manager on related risk and security posture. Performs troubleshooting and remediation of security tool issues. Participates in scheduled and unscheduled after-hours system maintenance and support. Performs rotational on-call duty. Provides implementation assistance for onboarding new security tools and processes. Updates team training documentation, technical processes, and testing plans. Education/Certifications Preferred: CompTIA Security+ Technical/Soft skills Required: Thorough understanding of vulnerability management concepts and processes. Demonstratesstrongproblemsolving,analytical,interpersonalandownershipskills. Proficiency with cloud, hybrid cloud, and on-prem Security Administration models. Thoroughunderstandingofsecurityprotocols/methodologiesandcontrols. Preferred: Knowledge of all aspects of the software development lifecycle Knowledge of web development technologies EXPERIENCE Preferred: Microsoft Defender - Endpoint Vulnerability Management Delinea Privilege Manager 2+years of experience in an information securityrole LEADERSHIP SKILLS Required: Strong leadership skills and the ability to work effectively with business managers, Enterprise Architecture, IT engineering and IT operations staff. Ability to break down technically complex and ambiguous concepts and rationalize into simple concepts and ideas. Ability to understand and articulate business imperatives as well as the business impact of security tools, technologies and policies. Ability to mentor and provide coaching to team members.

What you will do In this vital role you will work for the Manager of Endpoint Security, in direct support of the global endpoint management group. This position will provide essential services that enable us to better pursue our mission. Amgen is searching for a Specialist Security Engineer covering Email and Data Loss Prevention (DLP) technologies. This role will work for the Manager of Data Security in direct support of the global email management group. This position will provide essential services that enable us to better pursue our mission. Specialist Security Engineers operate, lead, and improve Amgens email security and email DLP solutions. In our Data Security team, they will identify emerging risks related to changes in communications technologies, advise management, and develop technical remediations to address those risks. Specialists lead the development of processes and procedures for multiple solutions which enable business units to identify and remediate data exposures. They run multiple projects simultaneously to implement and improve the data security protections and use advanced analytics to demonstrate success. This engineer will play a key role in educating technologists and business leaders about the security strategies that both protect and enable business processes related to cloud data handling. Lets do this. Lets change the world. In this vital role you will: Designs, operates, maintains, and enhances capabilities for the technical systems that ensure protection of email for all Amgen global operations. Identifies new risk areas for data and plans controls to mitigate those risks. Researches new technologies, processes, and approaches based on industry practices and recommends future plans for data protection. Includes developing and implementing the roadmap for migrating DLP & email controls into the cloud. Authors procedures and guidelines and advises on policies related to email and data protection requirements and remediation or investigation of violations. Develops and conducts training on email protection technologies for operations staff. Educates business leadership about data risk. Consults to other technology groups on email protection strategies and recommends appropriate points of both technical and process integration. Partners with the Manager of Data Security to collaborate closely with legal and human resources leadership on violation remediations. Collaborates with cloud strategy leaders and business unit leadership to ensure that email and data protection are incorporated by design into new business projects. Collaborates with Data Security Engineers to integrate data protection technology into the operations of traditional Data Loss Prevention operations. What we expect of you We are all different, yet we all use our unique contributions to serve patients. Basic Qualifications: Doctorate degree OR Masters degree and 4 to 6 years of Information Security or Information Technology experience OR Bachelors degree and 6 to 8 years of Information Security or Information Technology experience OR Diploma and 10 to 12 years of Information Security or Information Technology experience Preferred Qualifications: Familiarity with one or more security frameworks, especially in regulated environments. Holds or is actively seeking one or more security related certifications, preferably with a focus on cloud technologies or data protection. Proficiency specifying requirements for technical systems, as well as designing, implementing, and operating those systems. Expertise in global IT operations, including an understanding of regulatory and cultural differences encountered when dealing with international peers and customers. Demonstrated competence maintaining email systems and applications on Windows, MacOS & iOS based operating systems. Skill with elements of the O365 services, including hosted and on-prem exchange, Azure Information Protection (AIP), Microsoft Information Protection (MIP), Microsoft 365 Security, Microsoft Defender for Office 365, Microsoft Defender for Endpoint, and related security and compliance features. Basic capabilities with programming or scripting languages. Skill with elements of the O365 services, including hosted and on-prem exchange, Azure Information Protection (AIP), Microsoft Information Protection (MIP), Microsoft 365 Security, Microsoft Defender for Office 365, Microsoft Defender for Endpoint, and related security and compliance features. Understanding of mail technologies from a security perspective including the security risks associated with mail and collaboration tools. Experience deploying and configuring related M365 applications such as OneDrive, Teams, Defender and SharePoint Online Good-to-Have Skills Experience crafting the basic cryptographic controls associated with email protection. Working knowledge of programming or scripting languages such as Powershell Experience with project management workstream leadership, preferably using Agile methodology Deep knowledge of the principles of Data Protection, including availability, integrity, and confidentiality of data. Work Hours This position requires you to work from 2:00pm to 10:00pm IST. Professional Certifications: Systems Security Certified Practitioner (SSCP) or Security+ SANS Certifications Soft Skills: Excellent analytical and troubleshooting skills Highly motivated and able to work effectively under minimal supervision Strong written and verbal communication skills in English Successful management of multiple priorities Effective working with global, virtual teams Team-oriented, placing priority on the successful completion of team goals.

Job Title Cybersecurity Lead Incident Management Network Security Signature Writing Job Summary The Cybersecurity Lead will manage the Incident Management Network Security Signature Writing team This role involves overseeing incident response and signature development direct stakeholder management team management and project management The ideal candidate will have a strong background in cybersecurity incident response and network security with excellent communication and leadership skills Key Responsibilities Incident Monitoring and Response Monitor security alerts and incidents respond promptly and escalate as needed Threat Analysis and Detection Investigate security incidents develop detection rules and signatures Signature Development Create signatures for vulnerabilities and perform vulnerability hunting Tool Management Deploy configure and manage NDR tools Alert Tuning and Optimization Optimize alerts to reduce false positives Reporting and Documentation Document and report on security incidents Research and Development Stay updated with cybersecurity trends and improve detection capabilities Stakeholder Management Engage with stakeholders and manage escalated issues Team Management Lead and support the team Project Management Oversee projects related to incident response and signature development Preferred Skills Experience with Microsoft Defender or similar endpoint protection solutions Strong understanding of endpoint and network security threat detection and response Proficiency with SIEM platforms and scripting languages Knowledge of network protocols firewall rules and intrusion detection prevention systems Familiarity with advanced persistent threats threat hunting and incident response frameworks Understanding of IPSIDS signatures and Rapid7 recog signatures Good to have malware and threat analysis and CVE hunting This role operates within a 24x7x365 environment requiring flexibility for shifts holidays and on call responsibilities.

Position : Cloud Security Engineer - 1. Azure (Pan India) 2. AWS(Only Pune) Top Selection & Auto Elimination Criteria: Only Immediate Joiners need to apply (0-15 days) Joiners 16-30 days might be considered >30 days joiners-Please do not apply US/Rotational Shift Cab facility : Yes only late night pick or drop(1 side only for Gurgaon Employees) Location : Gurgaon, Bangalore, Pune, Indore, Hyderabad Relevant experience range 7-9(AWS) / 9-12 years(Azure) Position : Cloud Security Engineer - Azure or AWS US Shift Must Have SKills: Azure, CCSP/Certified Cloud Security Professional, Encryption, Key Management/Azure key Vault, CSPM/Cloud Security Posture Management, Microsoft Defender for Cloud, WAF, Entra firewall, IDS/IPS, Python/Java/C++/Ruby, networking, linux, Microsoft Azure Security Engineer Associate/AZ-500, AWS JD 1: Job Title: Cloud Security Engineer Microsoft Azure (9-12 Years) We are seeking a Senior Cloud Security Engineer with 9-12 years of experience and deep specialization in Microsoft Azure to drive enterprise cloud security architecture, governance, and automation. This strategic and hands-on role will be responsible for ensuring the security and resilience of Azure environments across the organization, embedding security into CI/CD pipelines, and collaborating with stakeholders to strengthen compliance and risk posture. Key Responsibilities Architect, deploy, and optimize security tools in Azure: Microsoft Defender for Cloud , Azure Key Vault , Entra ID , Azure Firewall , WAF, and IDS/IPS. Perform continuous security assessments , vulnerability management , and misconfiguration detection across hybrid cloud environments. Implement and automate Zero Trust and least-privilege access models using Azure-native capabilities. Embed security controls and policy-as-code into infrastructure-as-code templates and DevOps pipelines (Bicep, ARM, Terraform). Conduct threat modeling , architecture reviews , and provide actionable recommendations for securing workloads. Tune SIEM alerts and conduct root cause analysis for incidents via tools such as Microsoft Sentinel and Splunk . Lead incident response efforts and build standardized runbooks, playbooks, and documentation. Collaborate with engineering, compliance, and leadership to shape Azure security strategy, drive remediation, and enforce policy governance. Mentor and guide junior team members on cloud security best practices and emerging trends. Required Skills & Experience 9-12 years of total experience, with 5+ years in Azure cloud security. Proven expertise in: Microsoft Defender for Cloud , Azure Key Vault , Entra ID , Azure Firewall, WAF, IDS/IPS. Scripting (Python, Java, C++, or Ruby) for automation. Linux/Unix administration , cloud networking, encryption, and IAM. Log management and SIEM (Microsoft Sentinel, Splunk). Integrating security into CI/CD pipelines. Strong grasp of security frameworks: ISO 27001, NIST CSF, SOC 2 . Strong SQL query capability and understanding of database security. Education & Certifications Bachelors degree in Computer Science, Information Security, or related field. Must-Have Certifications : Microsoft Azure Security Engineer Associate (AZ-500) CCSP Certified Cloud Security Professional ___________________________________________________________________________________________ JD 2: Cloud Security Specialist AWS (7-9 Years) We are hiring a Cloud Security Specialist (AWS) with 7-9 years of experience to lead the design and implementation of secure cloud environments and services. This role focuses on embedding robust security across Redaptives AWS infrastructure, integrating security automation into DevOps, and ensuring compliance with leading standards. This is a hands-on and strategic role that will be central to our cloud transformation. Key Responsibilities Cloud Security Architecture & Governance Design and enforce cloud-native security architectures for AWS environments using best practices and frameworks. Implement Zero Trust , least privilege access , and secure-by-design principles across workloads. Maintain and evolve cloud security standards, policies, and guardrails across services and regions. DevSecOps & Automation Integrate security checks and policy enforcement into CI/CD pipelines (Jenkins, GitHub Actions, GitLab CI). Automate compliance validation, secret scanning, and IaC security (Terraform, CloudFormation). Build and maintain security-as-code templates and enforcement pipelines. Monitoring & Threat Response Configure and manage AWS-native services: CloudTrail , GuardDuty , Security Hub , Macie , Inspector . Tune and manage log forwarding to SIEM platforms and build detection playbooks. Conduct proactive threat hunting and coordinate incident response activities. IAM & Identity Governance Design and manage IAM strategies with fine-grained permissions, permission boundaries, and access reviews. Implement SSO integrations and enforce secure service-to-service authentication . Compliance & Risk Ensure compliance with SOC 2 , NIST , ISO 27001 , and internal audit requirements. Conduct security risk assessments and provide mitigation strategies and dashboards. Required Skills & Experience 79 years in cybersecurity with 5+ years focused on AWS cloud security . Strong knowledge of: AWS IAM, KMS, GuardDuty, CloudTrail, Security Hub Infrastructure as code (Terraform, CloudFormation) DevSecOps principles, policy-as-code, automated remediation Scripting (Python, Bash, etc.) for security automation Working experience with container and serverless security (ECS, Lambda, EKS). Knowledge of CSPM, CWPP, and cloud-native compliance controls. Education & Certifications Bachelor’s degree in Cybersecurity, Computer Science, or related discipline. Must-Have Certifications : AWS Certified Security – Specialty CCSP or CISSP Preferred Traits Experience implementing Zero Trust architecture in AWS. Familiarity with secrets management (e.g., AWS Secrets Manager, Vault). Deep knowledge of AWS cost-optimization with security in mind. Strong cross-team collaboration and documentation skills. ____________________________________________________________________

Azure, CCSP , Encryption, Key Management/Azure key Vault, CSPM , Microsoft Defender for Cloud, WAF, Entra firewall, IDS/IPS, Python/Java/C++/Ruby, networking, linux, Microsoft Azure Security Engineer Associate/AZ-500, AWS

Managing & supporting the entire office IT infrastructure, ensuring stability, security & optimal performance of our systems and network. Key Role Support tickets Resolving technical issues Contributing to ongoing improvements in our IT operations

Cybersecurity expert skilled in Microsoft Defender, CrowdStrike, Intune, Entra ID, QRadar, PowerShell, and Python. Experienced in Zero Trust, PAM (CyberArk), and hybrid/cloud environments. Certified in CISSP, CEH, CCFA, and Microsoft SOA.

Minimum of 4 years of experience in endpoint management and security. Proficiency in Microsoft Intune and Microsoft Defender. Strong understanding of mobile device management (MDM) and endpoint protection strategies. Experience with data loss prevention and encryption technologies. Relevant certifications in Microsoft technologies or cybersecurity are a plus.

About Client Hiring for One of the Most Prestigious Multinational Corporations! Job Description Job Title : Azure Infrastructure Expert Qualification : Any Graduate or Above Relevant Experience : 7+ Yrs Key expected results: As an Azure Infrastructure Expert Design, architect, and implement complex Azure cloud infrastructure solutions based on business requirements including major services related to compute,storage, network, and security. Ensure optimal performance, reliability, and security of Azure infrastructure across various environments, including production, staging, and development. Collaborate with cross-functional teams, including developers, architects to understand application requirement and provide guidance on Azure infrastructure solutions. Implementation of different Azure IaaS Services in Compute, Storage, and Networking Troubleshoot and resolve complex technical issues related to the Azure infrastructure, working closely with other technical teams and stakeholders. Stay current on emerging trends and technologies related to Azure infrastructure and continuously enhance your skills through training and certifications. Experience in Azure Databricks from Infra perspective. Technical Skills Minimum 7 years experience Azure Cloud services. Strong understanding of different Azure IaaS services and platform Experience in provisioning the Azure components. Expert in designing the secure azure components, services etc. Azure Security and Identity services (e.g., Microsoft defender for cloud, Microsoft Entra id, RBAC, NSGs / ASGs) Azure Networking services (e.g., VNETs, Load Balancers) Hands on experience on Storage account and integration of storage accounts with various components Strong understanding and hands-on capabilities of the Microsoft Cloud Platform (Security, Firewalls, Key Vault, Databricks, Blob Storage, App Insights) and their associated limitations Understanding and exposure to Azure CLI for performing administrative tasks Strong practical Linux and Windows-based systems administration skills in a Cloud or Virtualized environment preferred. Experience in recommending Capacity / Sizing options on Azure Platform Hands-on experience of Azure Scale Sets, Load Balancer, Azure networking, Azure Monitor, Alerts, and Log Analytics Energetic, able to switch gears quickly from task to task. Design, implement, configure, and maintain various Azure SaaS Cloud Services. Optimize Azure buildouts for cost/performance (VM optimization, reserved instances, etc.) Good to have knowledge on Snowflake, Dremio, PowerBI Location : Bangalore/Hyderabad/Chennai/Pune/Mumbai. CTC Range : 20LPA - 25LPA (Lakhs Per Annum) Notice period : Immediate / serving Notice period Mode of Interview : Virtual Joel IT Staffing Analyst Black and White Business solutions PVT Ltd Bangalore, Karnataka, INDIA 8067432416 I joel.manivasan@blackwhite.in I www.blackwhite.in

Job Title: Endpoint Security Lead(AV/EDR) Responsibilities: - Design, implement, and maintain endpoint security solutions (AV/EDR) - Monitor and analyze endpoint security event logs - Investigate and respond to security incidents - Develop and maintain endpoint security policies and procedures - Understanding and implementing Application and Device control policies - Collaborate with IT teams for endpoint security integration - Stay up-to-date with emerging threats and technologies - Should present reports to the clients as per requirements. Requirements: - 7+ years of experience in endpoint security (AV/EDR) - Strong knowledge of endpoint security technologies (e.g., McAfee, Symantec, CrowdStrike, Cortex XDR, Microsoft Defender) - Experience in Implementing the AV/EDR solution from scratch - Understanding the client network and implementing the security policies efficiently - Experience with security information and event management (SIEM) systems - Proficiency in query languages (e.g., SQL, KQL, XQL) - Strong analytical and problem-solving skills - Excellent communication and collaboration skills Good to Have: - Experience with cloud security (AWS/Azure) - Knowledge of threat intelligence and incident response - Experience with IT service management (ITSM) tools - Relevant certifications (e.g., CompTIA Security+, CISSP)

Cybersecurity Strategy and Security Engineering MRF00741 B - J48686 Key Role Characteristics: Must be responsible for creating security policies, standards for all IT assets, such as routers, firewalls, LANs, WANs, VPNs, and other network devices. Must be able to determine their efficacy and efficiency. Conduct comprehensive evaluations of Companies current security capabilities, identifying strengths, weaknesses, and areas for improvement. Define and oversee the execution of security strategies & roadmaps, ensuring alignment with company goals. Must help in identifying and prioritizing critical business functions in collaboration with organizational stakeholders. Must investigate the latest security standards, recent security systems, and renewed authentication protocols. Must help in preparing cost estimates and other potential integration concerns for all cybersecurity measures. Perform risk and maturity assessment programs, identifying potential implementation risks and developing solutions to mitigate them aligning with security standards and security frameworks. Strong background and experience with security domains such as Network Security Architecture, Endpoint Security Architecture etc. Good to have hands on experience on tools like Firewalls, WAF, EDR/XDR, VPN etc. Cloud Security knowledge and experience. Any cloud AWS, Azure (preferred), GCP. Tools Palo Alto Prisma (CSPM), Microsoft Defender for Cloud Apps (CASB), Azure Firewall, LinkerD etc. Knowledge on Security Reference Architectures on security capabilities such as Application Security, Network Security, Data Security etc. aligning with Security Frameworks, standards such as NIST, CIST, ISO, PCI etc Required Candidate profile Candidate Experience Should Be : 8 To 15 Candidate Degree Should Be : BE-Comp/IT,BE-Other,BTech-Comp/IT,BTech-Other

Job Title : Systems Administrator Level 3 Role: Zoom Application Administrator Job Summary : We are looking for an experienced Level 3 Zoom Application Administrator to manage, optimize, and secure the Zoom platform across the enterprise. This role will be responsible for advanced troubleshooting, configuration management, integrations, security enforcement, and supporting highpriority events. The ideal candidate will have deep expertise in Zoom Meetings, Webinars, Zoom Rooms, and Zoom Phone, along with experience in managing enterprise collaboration solutions. Qualifications & Skills: Bachelors degree in IT, Computer Science, or related field. 8-10 years of experience in Zoom administration and enterprise collaboration tools. Strong expertise in Zoom Meetings, Webinars, Zoom Rooms, and Zoom Phone administration. Experience with Microsoft 365, Teams, SharePoint, and enterprise collaboration ecosystem s. Proficiency in PowerShell scripting and Zoom API integrations. Strong knowledge of network protocols, firewall configurations, and bandwidth management for video conferencing. Experience w ith SSO, Azure AD, MFA, and security compliance f or Zoom. Ability to analyze logs, troubleshoot system failures, and implement performance optimizations. Preferred Qualifications: Zoom Certified Administrator or Zoom Certified Integration Expert. Knowledge of Proofpoint anti-spam, security monitoring, and Microsoft Defender integrations. Experien ce in large-scale Zoom deploymen ts and automation Work Schedule & Support Coverage: 24x7 Support Environment (Rotational Shift as required for Zoetis support). Notice Period :Immediate Joiner Excellent Communication Interested Candidate Share resume at dipti.bhaisare@in.experis.com

Are you ready to drive the next generation of digital transformation? Join us as a Senior Microsoft Engineer (L4) and take charge of cutting-edge M365 Tenant-to-Tenant migration projects, delivering seamless transitions across enterprise environments. This is your chance to make a significant impact, architecting the future of Microsoft 365, Active Directory, and cloud-based device management. Visit us at www.oreta.com.au LinkedIn: https://www.linkedin.com/company/oreta/posts/?feedView=all Location: Chandigarh/Mohali In this exciting role, you'll: Lead end-to-end design and execution of M365 Tenant-to-Tenant migration projects. Assess, plan, and execute migration strategies for Exchange Online, OneDrive, SharePoint, Teams, Application and SSO . Configure and migrate domains, DNS, mail flow, and user identities across tenants. Implement best practices for co-existence, domain cutovers, and post-migration validation. Develop risk mitigation plans and rollback strategies for migration activities. Design and implement Active Directory migration and consolidation strategies. Perform AD domain, forest, and trust migrations, ensuring seamless authentication and security policies. Evaluate and optimize Group Policies, DNS, and domain controller replication. Implement Hybrid AD environments, integrating on-prem AD with Microsoft Entra ID (Azure AD). Ensure compliance with IAM security policies, conditional access, and MFA enforcement. Design and implement Microsoft Intune architecture to support modern workplace strategies. Lead the migration from on-premises device management solutions (SCCM, GPO, AD) to cloud-based Intune MDM/MAM. Architect Windows Autopilot deployment model Develop and enforce device enrollment policies (Azure AD Join, Hybrid Join, BYOD). Develop and enforce enrollment strategies for all device platforms including Windows, macOS, iOS, Android. Configure Conditional Access policies and integrate Intune with Microsoft Defender for Endpoint, Azure AD, and Microsoft Purview. Implement and manage BitLocker encryption, Windows Hello for Business, and attack surface reduction policies Define security baselines for Windows, macOS, and mobile devices to ensure compliance. Maintaining high customer satisfaction Reporting on service scope to key stakeholders Preferred candidate profile 10+ years of IT industry experience with a focus on Microsoft 365, Active Directory, and Identity Management. Expertise in M365 Tenant-to-Tenant migration (Exchange, OneDrive, SharePoint, Teams). Strong experience in Active Directory migration, consolidation, and restructuring. Deep understanding of Azure AD, Conditional Access, MFA, and Identity Protection. Hands-on experience with Microsoft Entra ID, Hybrid AD, and authentication models (SSO, OAuth, WS-Fed, ADFS). Proficiency in PowerShell scripting for automation & migration. Familiarity with Microsoft Defender for Identity & Endpoint, Security Baselines, and Zero Trust Architecture. Expertise in Microsoft Intune (Endpoint Manager), Microsoft Defender for Endpoint (MDE), and Windows Autopilot. Strong knowledge of Windows, macOS, iOS, and Android device management. Deep understanding of Conditional Access, Azure AD security, and compliance policies. Experience with Threat Protection, Attack Surface Reduction (ASR), and Advanced Threat Hunting. Proficiency in PowerShell scripting & automation. Familiarity with Zero Trust Security Model, Microsoft Sentinel, and Windows 365 (Cloud PC). Perks and benefits Oreta takes pride in providing a service of excellence to our customers and looking after our employees who enable our business to succeed. The successful applicant will enjoy working in a collaborative environment in Chandigarh, India with a friendly and highly driven people (the Oreos), where ideas are always welcome and ongoing training and development is strongly encouraged. The renumeration will be negotiated and based on the relevant skills and experience of the successful applicant. If you are interested in a long-term career with potential to develop and grow with the business and are available to start immediately, then we look forward to hearing from you. To reach directly- write back at recruitment@oreta.com.au OR tarvinder@oreta.com.au

Role & responsibilities Develop and implement custom analytics rules within Microsoft Sentinel to identify security threats and anomalies. Leverage KQL and other tools to create custom detection on Microsoft Defender XDR MDE & MDCA. Create advanced detection rules based on business requirements & SOC Use Cases. Work with SIEM and SOAR solutions at scale. Collaborate with other security teams to identify and prioritize security requirements and develop effective solutions. Update the code (KQL) on analytical rule for finetuning the false positive incidents. Stay up to date with the latest security threats and trends and apply this knowledge to improve our security posture. Perform content enrichment depending on feedback received from security analysts. Have a strong understanding of Cloud Security and Networking Concepts and practices. Helps to create reports that properly present the key risk and performance indicators. Communicating & reporting concise summaries of complex scenarios & information across diverse and senior stakeholder groups. Design, maintain Content Management standard operating procedures (SOP), processes and guidelines. Report preparation for leads and management review with data from dashboards & reports. Preferred candidate profile Strong understanding of JSON, Kusto Query Language (KQL) and PowerShell languages. Experience analyzing data from cybersecurity monitoring tools such as SIEM / SOAR platforms, host and network logs, firewall and IPS/IDS logs and email security gateway. Strong understanding of security operations concepts: perimeter defense, endpoint management, data leak prevention, kill chain analysis and security metrics. Knowledge of the common attack vectors on various layers. Knowledge and experience working with the Cyber Kill Chain Model, MITER ATT&CK Matrix. Experience with Security Operations Center, SIEM management & solutions ownership. Knowledge of various security methodologies and technical security solutions. Conduct an audit of the platform configuration to optimize it. Optimizing the way logs are processed and leveraged by SOC team members. Knowledge on schemas of Microsoft Defender XDR solutions (Microsoft Entra ID and ID protection, Microsoft Defender for Endpoint, Microsoft Defender for Cloud apps, Microsoft Purview Information Protection) and Microsoft 365. Knowledge of schemas with security events logs from Microsoft windows server. Experience of working within a regulatory/controlled environment. Understanding of Cyber Security Risk and mitigation strategies.

Min 5+yr of exp in Azure, MSSQL Deployment & administration of Azure services within the portal Infrastructure as Code Terraform / ARM Security – inc tool such as Microsoft Defender for Cloud Azure Networking Call Vikas 8527840989 2-11pm - Shifts Required Candidate profile Configure & maintain Azure Services Exp - Azure Data Lake , Data Factory Exp on Migration of on-premises instances to sustainable cloud solution DNS configuration, Cloudflare Multitenant provisioning

Responsibilities: • Monitor security logs and alerts using tools like Microsoft Defender for Office 365, Microsoft Defender for Endpoint, Azure Sentinel, and Cloud App Security. • Analyse security events and incidents to identify potential threats and vulnerabilities within the M365 environment. • Investigate security incidents, perform root cause analysis, and develop effective containment and eradication strategies. • Investigate and triage security alerts, escalating incidents as needed to senior analysts or incident response teams • Collaborate with other security teams and IT personnel to implement security best practices and improve the overall security posture. • Develop and maintain security documentation, including incident response plans, playbooks, and knowledge base articles. • Document security incidents and maintain accurate records of investigations and responses. • Develop and maintain security monitoring dashboards and reports. • Stay up-to-date with the latest security threats, vulnerabilities, and best practices. • Participate in security awareness training and promote a security-conscious culture. • Contribute to the continuous improvement of SOC processes and procedures. • Perform security assessments and vulnerability scans of the environment. • Automate security tasks and processes using scripting languages (e.g., PowerShell). • Generate security reports and metrics to track the effectiveness of security controls. • Should have working experience with SIEM platforms (e.g., Azure Sentinel) and SOAR tools. • Adhere to all company policies and procedures, including those related to security and compliance. Mandatory Skill - Must Have - SIEM + Sentinel Good to have - Sentinel

About the Role: We are seeking a highly motivated and experienced Data Classification and DLP Administrator to join our growing security team. This critical role will be responsible for the design, implementation, maintenance, and optimization of our data classification framework and Data Loss Prevention (DLP) solutions like Microsoft Purview. The ideal candidate will have a strong understanding of data security best practices, hands-on experience with DLP technologies, and a passion for protecting sensitive information. Responsibilities: • Develop and maintain the organization's data classification policy, defining different levels of data sensitivity (e.g., confidential, restricted, public). • Implement and manage data classification tools and technologies to automatically and manually classify data across various platforms (e.g., file servers, databases, cloud storage). • Collaborate with business units to understand their data needs and ensure proper classification of their data. • Regularly audit and review the effectiveness of the data classification program. • Utilize Microsoft Purview to discover, classify, and catalog sensitive data across various data sources • Design and implement Microsoft Purview and AIP solutions to meet business requirements for data discovery, classification, labeling, and protection • Administer and maintain the Microsoft Purview and AIP environments, including configuring policies, rules, and settings • Configure and fine-tune DLP policies to detect and prevent data exfiltration attempts via various channels (e.g., email, web, USB, cloud storage). • Monitor DLP alerts and incidents, investigating potential data breaches and taking appropriate action. • Collaborate with IT and security teams to integrate DLP solutions with other security tools. • Regularly review and update DLP policies to address evolving threats and business requirements. • Develop and maintain documentation related to data classification and DLP processes and procedures. • Stay up-to-date on the latest data security trends, threats, and technologies. • Participate in security audits and assessments. • Work closely with various stakeholders, including IT, legal, compliance, and business units. • Communicate effectively with technical and non-technical audiences regarding data classification and DLP initiatives. • Provide regular reports on the status of data classification and DLP programs. Qualifications: • Bachelor's degree in Computer Science, Information Technology, or a related field preferred • 5+ years of experience in administering Microsoft Purview and Azure Information Protection (AIP) • Microsoft certifications related to security and compliance (e.g., Microsoft 365 Security Administrator, Microsoft Information Protection Administrator) are highly desirable Technical Skills: • Deep understanding of Microsoft Purview (Data Catalog, Data Map, Data Estate Insights, etc.) • Extensive knowledge of Azure Information Protection (AIP) and its integration with other Microsoft 365 services. • Experience with data discovery, classification, labeling, and protection techniques. • Proficiency in PowerShell scripting for automation and management tasks. • Familiarity with other Microsoft security and compliance tools (e.g., Microsoft Defender for Cloud Apps, Microsoft 365 E5 Security features).

1.Candidate should have Hands-on experience in planning and implementing the deployment of Microsoft defender for Cloud and Entra ID, Azure Front Door and WAF is must. 2.Should have good hands-on experience in Multiple Azure security controls 3.Hands on delivery knowledge into Azure Infrastructure, including designing and deploying new Azure services based on specific requirements with cost effective 4.Hardening the security for workloads including PaaS service to improve your security posture efficiently and effectively in CSPM 5.Implementation the security recommendations and standards to protect the environment 6.Hands-on knowledge on proof of concept (POC) for integrating FD with App service and Function app 7.Azure networking concepts, including Vnet, Subnet, UDR, NSGs, and load balancers, to optimize and secure the infrastructure 8.understand logs and Monitor azure environment , alert configuration and optimize the false positive alerts in MDFC

Job Summary:* We are seeking a skilled IT Security and Endpoint Management Specialist with expertise in Microsoft Defender, Intune, and Office 365 Mobile Device Management (MDM). The ideal candidate will be responsible for implementing, managing, and securing enterprise devices and applications using Microsoft security solutions. *Key Responsibilities:* - Deploy, configure, and manage Microsoft Defender solutions across enterprise environments. - Implement and maintain Microsoft Intune for device compliance, configuration, and security policies. - Oversee Office 365 MDM policies to ensure secure and efficient mobile device management. - Monitor security threats and vulnerabilities using Microsoft Defender ATP, Sentinel, and other security tools. - Configure Conditional Access policies, compliance settings, and security baselines within Intune and Azure AD. - Troubleshoot issues related to endpoint security, compliance, and access management. - Develop and implement endpoint security best practices and policies in alignment with organizational security frameworks. - Conduct risk assessments and recommend security enhancements for Microsoft 365 environments. - Work closely with IT and security teams to ensure compliance with industry regulations and internal security policies. - Provide training and support to IT staff and end-users regarding security best practices and Microsoft security solutions. Required Skills & Qualifications:* - Proven experience in deploying and managing Microsoft Defender, Intune, and Office 365 MDM solutions. - Strong knowledge of Microsoft security tools, including Defender for Endpoint, Defender for Office 365, and Microsoft Sentinel. - Experience in managing Intune policies, compliance settings, and mobile device security configurations. - Familiarity with Azure Active Directory (Azure AD), Conditional Access, and identity protection strategies. - Understanding of cybersecurity principles, threat management, and incident response processes. - Hands-on experience with Windows, macOS, iOS, and Android device management. - Knowledge of scripting and automation using PowerShell is a plus. - Strong analytical, problem-solving, and troubleshooting skills. - Excellent communication and documentation skills. *Preferred Certifications:* - Microsoft Certified: Security, Compliance, and Identity Fundamentals - Microsoft 365 Certified: Modern Desktop Administrator Associate - Microsoft Certified: Endpoint Administrator Associate - Microsoft Certified: Security Operations Analyst Associate Education & Experience:* - Bachelors degree in Computer Science, Information Technology, or related field (or equivalent work experience). - Minimum 3-5 years of relevant experience in IT security and endpoint management. If you are a proactive security professional with a strong background in Microsoft security and endpoint management, we encourage you to apply!

JOB OVERVIEW: DeliverHealth is seeking an experienced Senior DevSecOps Engineer to join our team. As a SeniorDevSecOps Engineer, you will integrate security best practices into our DevOps workflows, ensuring the development, deployment, and operation of secure and reliable applications. You will collaborate with development, security, GRC, and operations teams to build automated, scalable, and secure solutions for our infrastructure and applications. You will own the HITRUST evidence gathering process for DevOps. This employees job duties require access to covered information. The employee is subject to additional screening. This designation shall be reviewed at least annually. JOB DUTIES & RESPONSIBILITIES Design, implement, and maintain security controls in CI/CD pipelines to enable secure development and delivery practices. Develop and maintain automation scripts/tools to detect and remediate vulnerabilities in infrastructure and code. Collaborate with development teams to identify security risks, conduct threat modeling, and ensure secure architecture design. Implement scanning tools (e.g., SAST, DAST, container scanning) and address vulnerabilities in code, dependencies, and infrastructure. Secure cloud infrastructure (e.g., AWS, Azure, GCP) using tools such as IAM, security groups, and network policies. Conduct risk assessments and security audits to ensure compliance with industry standards and regulations. Collaborate with cross-functional teams to integrate security best practices into development and operations processes. Implement and manage security controls across Microsoft Office 365, Defender Suite, Intune, and Azure environments. Coordinate closely with GRC team on HITRUST controls, evidence gathering, and developing best practices for certification in tight time frames. Assist in incident response, root cause analysis, and remediation of security incidents. Ensure adherence to security frameworks and regulations (e.g., HIPAA, HITRUST). Deploy and monitor security tools, ensuring real-time visibility into potential threats and risks. Provide guidance on security policies, procedures, and best practices. Assist in the development and implementation of a comprehensive GRC program. Participate in on-call rotations to provide 24/7 support for critical systems. All DeliverHealth employees must follow the organization’s privacy and information security policies, processes, and standards. There are no exceptions to this expectation. QUALIFICATIONS 5+ years of experience in DevOps, Information Security, or related field. Hands-on experience with security tools such as SonarQube, Microsoft Defender or similar. Proficiency in one or more scripting/programming languages (e.g. Powershell, Python, Bash, C#, Java). Expertise in securing cloud environments (AWS, Azure, or GCP). Strong knowledge of CI/CD tools like GitHub Actions, Jenkins , or Azure DevOps with integrated security checks. Experience with IaC tools (e.g., Terraform, CloudFormation, Ansible, Powershell DSC) and their security considerations. Deep understanding of securing containers and orchestration platforms (Docker, ECS, Azure Containers, or Kubernetes). Familiarity with security frameworks and standards such as OWASP, NIST, CIS Benchmarks. Knowledge of penetration testing, secure coding practices, and encryption technologies. Familiarity with monitoring and logging solutions, such as Datadog, Azure Monitor, AWS CloudWatch, Zabbix, or ELK stack.

Experience: 12 to 18 Years Microsoft Defender Architecture Role: Primarily Involved in Microsoft Defender portfolio comprising of MS Defender for Endpoint (MDE), MS Defender for Identity (MDI), MS Defender for O365 (MDO) and Microsoft Defender for Cloud App (MCAS) architecture and design activities. Should have deep knowledge of Endpoint Detections, Active Directory/Azure Active Directory and Threat Intelligence concepts. To architect Microsoft Defender, the following skills are mandatory, Design of the service architecture for endpoint detection and response service using / utilizing Microsoft Defender Portfolio (Microsoft Defender for Endpoint, Microsoft Defender for Identity, Microsoft Defender for Office 365, Microsoft Defender for Cloud Apps). Must have strong knowledge in Windows Server, Windows Client, Active Directory and, or Entra ID, group policies. Performing migration of legacy endpoint security technologies to Microsoft technology stack for all the endpoint security modules of a suite (Endpoint detection and response, Antivirus, DLP, Encryption, Identity) Must have working knowledge on MS Defender for Cloud (Security Center) and MS Admin Center. Must have device(s) onboarding and off-boarding experience. Should have good understanding on ITIL process in order to align the service delivery with the stakeholders based on agreed SLA. Integration of EDR with Customers Incident Response processes. Performing Threat Hunting and EDR assessments. Developing EDR strategic advisory and roadmap to Customers. Developing sound working relationships with Sr. Executives of Client information security teams Building and sharing knowledge assets through executed engagements, industry connects, research and development. Supporting marketing initiatives as a speaker, presenter in events, etc. Supporting Sales related activities such as Proof-of-Concept, proposal presentations, Due-Diligence, solution campaigns, etc. Defining maturity model and conducting maturity assessments. Strong Threat hunting and detection knowledge and analysis of threats and alerts. Having working knowledge of Defender for Identity. Preferred certifications in SC-100, SC-200, SC-300, AZ-500, MS – 500 etc

Minimum of 4 years of experience in endpoint management and security. Proficiency in Microsoft Intune and Microsoft Defender. Strong understanding of mobile device management (MDM) and endpoint protection strategies. Experience with data loss prevention and encryption technologies. Relevant certifications in Microsoft technologies or cybersecurity are a plus.

Reports To - Group IT Manager Job Overview: Due to continued growth of our business, we have an exciting opportunity for an enthusiastic and highly motivated technical support engineer to join our team at our Manila office. Assisting with the smooth running of the IT infrastructure, the successful candidate will be part of a robust team that provide support across the business ensuring hardware and software issues are resolved promptly and effectively. The successful candidate will have a wealth of experience in EUC support, Enterprise IT Infrastructure implementation and support both on Cloud and on premise. They will have a thorough understanding of IT Security best practices. Excellent communication skills both face to face and over the phone and have worked in a similar position supporting end users and troubleshooting Role Responsibilities (Key Responsibilities and Tasks) To provide support to users in resolving IT application-related incidents, service requests and problems in a timely and efficient manner in line with Business requirements. To provide timely communication to users on the status of their service requests and incidents. Prioritise and schedule assigned support activities and tasks To apply appropriate application maintenance, support and incident management processes and procedures to support and maintain IT applications, and to investigate and resolve IT application-related incidents Provide first line support for business applications and support of associated business software Liaise with 3rd Party Suppliers of solutions in support of IT application-related incidents and ensure problems are resolved in a timely and professional manner Design, test and modify management reports using existing tools To support the development of applications under the supervision of the Group IT Manager Maintain IT application support technical documentation Police IT Policies and Procedures to ensure compliance with ISO 27001. Monitoring of Hardware and Software inventory and ensuring that only approved/licenced devices and softwares are used Carry out ad hoc duties as required by the Group IT Manager Implementation of a Global IT Strategy at a Global and Regional level Role Requirements (Professional & Technical Expertise) The successful candidate would have technical skills in the following areas: Understanding of and experience with Incident/Request/Problem ITIL principles End user compute support across all locations Microsoft Windows Desktop, Server OS and Virtual environment administration Knowledge of Server based hardware (e.g., Dell, HP) Excellent knowledge of the Microsoft Cloud stack, including Azure Cloud, Azure AD, M365 product suite with a particular focus on Exchange online, SharePoint and M365 Copilot administration Can display a strong understanding of Microsoft Defender suite for Endpoints (Intune), AIP, DLP and Cloud security Experience in the implementation and management of Networks, Wi-Fi and Enterprise Firewall solutions across a wide range of vendors Knowledge of enterprise Backup Solutions (e.g., Veeam, Azure Backup) Implement and maintain Cloud and on-prem storage solutions Experience with monitoring solutions utilizing traffic analyzer, NetFlow collectors, and capacity management tools Experience in the following areas SIEM, Azure Sentinel, Vulnerability Intelligence: Qualys, Tenable IO or Nessus - Windows patch management, 3rd party application patch management tools Thorough understanding of Threat Prevention and Detection technologies along with Malware Detection and Remediation technologies Knowledge of Information Security Management frameworks such as ISO 27001, NIST Cybersecurity, CIS Controls. Understanding of the Policies and Processes required for compliance Experience with the setup and support of Secure Email Gateway and Email archiving systems. Experience with the Autodesk product suite would be an advantage Good organizational and time management skills Must be presentable, with good customer facing skills Excellent written and verbal communication skills and can provide comprehensive documentation. Ability to plan and prioritise workload Ad hoc travel maybe required to other B&W offices . Getting Results And Working Together : At B&W our VISION is to be a Leading Global MEP Consultancy and we have five STRATEGIC BUSINESS THEMES that guide how we achieve this. These priorities are fundamental to our business planning process and underpin our ability to achieve our goals and objectives. The way we work with each other, and our clients is critical to our success, and we have five VALUES to support this: Accountability > Everyone is accountable. Integrity > We are straight talking, respectful and fair. Simplicity > Both in our approach and solutions. Supportive > We are approachable, inclusive and recognise success. Quality > We strive to get it right first time, every time. When Working Together We Are: Supportive Accountable Collaborative Respectful The Key Tools To Be Effective Are: Attention to detail Planning Solving problems Making decisions .

Job Summary: We are seeking an experienced Cybersecurity Strategy & Security Engineer to develop and implement security policies, frameworks, and architectures that align with organizational goals. This role is critical for defining security roadmaps, evaluating current capabilities, and ensuring robust protection across networks and cloud environments. We are looking for immediate joiners or a notice period less then a month is preferrable. Work from office and will have rotational shifts. Key Responsibilities: Develop and maintain IT security policies and standards for infrastructure components (firewalls, routers, VPNs, etc.) Design and implement cybersecurity strategies and roadmaps aligned with business objectives Conduct risk and maturity assessments and recommend security improvements Evaluate and integrate new security technologies and authentication protocols Provide expertise in network security architecture and cloud security across AWS, Azure, or GCP Collaborate with stakeholders to identify critical business functions and ensure alignment of security initiatives Reference and implement industry-standard frameworks like NIST 800-53, CIS Controls, ISO 27001, SOC 2 Mandatory Skills: Proven experience in security policy & standards development Deep understanding of security frameworks : NIST, CIS Controls, ISO 27001, SOC 2 Expertise in security strategy and roadmap development Strong background in network security architecture Cloud security knowledge in AWS, Azure (preferred), or GCP Familiarity with tools like Firewalls, WAF, VPN, EDR/XDR , and cloud-native tools (e.g., Prisma, Microsoft Defender for Cloud Apps, Azure Firewall ) Strong grasp of security reference architectures across domains like application, network, and data security Preferred Qualifications: Experience with security risk assessments, cost analysis, and security maturity evaluations Knowledge of security standards and compliance requirements (e.g., PCI-DSS)