Job
Description
Project Role :Security Architect
Project Role Description :Define the cloud security framework and architecture, ensuring it meets the business requirements and performance goals. Document the implementation of the cloud security controls and transition to cloud security-managed operations.
Must have skills :Cloud Access Security Broker (CASB)
Good to have skills :Endpoint Extended Detection and Response
Minimum 3 year(s) of experience is required
Educational Qualification :15 years full time education
Summary:The Senior Analyst will be responsible for managing and optimizing Cloud Access Security Broker (CASB) solutions and Microsoft Defender for Cloud Apps and Endpoint. The role focuses on securing SaaS applications, monitoring user and device behavior, enforcing data protection policies, and responding to threats across cloud and endpoint environments.Roles & Responsibilities:CASB & Defender for Cloud Apps
Administer CASB policies for cloud app discovery, access control, and data protectionMonitor user activity across SaaS platforms (e.g., Microsoft 365, Salesforce, Dropbox)Configure and manage Defender for Cloud Apps policies for anomaly detection, session control, and threat protectionIntegrate CASB with Conditional Access, Microsoft Purview, and SIEM platformsCollaborate with compliance and data governance teams to enforce regulatory controlsDefender for EndpointDeploy and manage Microsoft Defender for Endpoint across enterprise devicesConfigure and optimize attack surface reduction (ASR), endpoint detection and response (EDR), and device compliance policiesInvestigate endpoint alerts and behavioral anomaliesIntegrate Defender with Microsoft Sentinel and SOAR platforms for automated responseGeneral ResponsibilitiesConduct risk assessments and recommend security enhancementsDevelop and maintain SOPs, runbooks, and policy documentationProvide L2/L3 support for cloud and endpoint security incidentsMentor junior analysts and support knowledge sharing across teamsGenerate reports on threat trends, policy effectiveness, and compliance posture Professional & Technical
Skills:5–8 years of experience in cybersecurity, cloud security, or endpoint protectionHands-on experience with CASB platforms (Microsoft Defender for Cloud Apps, Netskope, McAfee, etc.)Strong understanding of SaaS security, user behavior analytics, and data protectionExperience with Microsoft Defender for Endpoint and Microsoft 365 Defender suiteFamiliarity with KQL (Kusto Query Language), PowerShell, and automation workflowsKnowledge of Zero Trust architecture and Conditional Access policiesEducation & CertificationsBachelor’s degree in Computer Science, Information Security, or related fieldPreferred certifications:oMicrosoft Certified:Security Operations Analyst AssociateoMicrosoft Certified:Information Protection Administrator AssociateoCompTIA Security+, CISSP, or equivalent
Additional Information:Experience with insider risk management and cloud-native DLPExposure to API security and OAuth-based integrationsKnowledge of compliance frameworks (ISO 27001, NIST, GDPR)
Qualification15 years full time education
