Senior Security Consultant

Role Overview

Senior Security Engineer

project delivery

Key Responsibilities

Security Engineering & Delivery (Primary)

• Deploy and configure

  Microsoft Defender Suite

  (Endpoint, Identity, Office 365, Cloud Apps).
• Implement and tune

  Microsoft Sentinel

  SIEM/SOAR: log sources, analytics rules, playbooks.
• Configure

  Microsoft Purview

  for DLP, insider risk, information governance, and compliance reporting.
• Lead

  threat modelling, vulnerability remediation, attack surface reduction, and security hardening

  .
• Align customer environments to

  Zero Trust

  and compliance frameworks (ISO 27001, SOC 2, NIST).

SOC & Operational Security

• Provide

  Level 3/4 escalation

  for incidents across identity, endpoint, and cloud security.
• Partner with Oreta’s

  SOC

  for threat hunting, investigation, and incident response.
• Conduct

  proactive security health checks

  and ensure

  patch/vulnerability compliance

  .
• Maintain

  security documentation, runbooks, and incident response playbooks

  .

Cloud Security (Supporting)

• Apply

  security architecture and controls

  to Azure, Microsoft 365, and hybrid workloads.
• Support secure

  cloud migrations

  and integrations, focusing on IAM, encryption, and monitoring.
• Configure

  Intune

  for endpoint compliance and secure device lifecycle management.

Leadership & Practice Development

• Mentor and coach junior engineers in

  security engineering and incident handling

  .
• Contribute to Oreta’s

  security playbooks, frameworks, and managed service enhancements

  .
• Participate in

  customer workshops and advisory sessions

  , translating risks into solutions.

Required Skills & Experience

• 5–8+ years’ experience

  in security engineering/operations (with Microsoft stack focus).
• Hands-on expertise in:

• Microsoft Sentinel

  (SIEM/SOAR)

• Microsoft Defender Suite

  (Endpoint, Identity, O365, Cloud Apps)

• Microsoft Purview

  (DLP, compliance, insider risk)

• Entra ID

  (MFA, Conditional Access, Identity Governance, PIM)
• Strong understanding of

  threat detection, incident response, and SOC workflows

  .
• Familiarity with

  Azure/M365 cloud security controls

  (landing zones, governance, monitoring).
• Experience with compliance frameworks (ISO 27001, SOC 2, NIST CSF).
• Preferred certifications:

  SC-200, SC-300, AZ-500

  (core); additional Azure/AWS security certs a plus.
• Excellent communication skills with customer-facing experience in

  delivery and operations

  .

  Role & responsibilities