Senior Technical Analyst Endpoint Security Defender L3

Role & responsibilities

• Configure and maintain Microsoft Defender for Endpoint and cloud applications, ensuring security, compliance, and alignment with organizational standards.
• Develop, implement, and manage complex scripts in PowerShell for automation, reporting, and process efficiency.
• Escalate and communicate issues in line with company processes to meet business and customer needs and provide high-quality support to internal and external stakeholders.
• Proactively keep skills updated with industry standards and emerging technologies to drive innovation in endpoint management.

Provide technical mentorship, drive team improvement initiatives, and take on special projects as assigned to ensure operational excellence

Preferred candidate profile

• Experience: Minimum of 5+ years in configuring, managing, maintaining, and troubleshooting large enterprise environments, especially within Microsoft Defender for Endpoint and good to know other Microsoft Defender stacks.
• Technical Expertise: Advanced proficiency M365 products including M365 Defender product suite and its integration with various Microsoft technologies.
• Experienced in the below different Microsoft Defender M365 suite:
• Microsoft Defender for Endpoint
• Microsoft Defender Vulnerability Management
• Microsoft Defender for Office 365
• Microsoft Defender for Identity
• Microsoft Defender for Cloud Apps
• Hands on experience on setting up M365 Defender product suite
• Core experience in handling technical administration and troubleshooting activities related to M365 Defender suite.
• Extensive knowledge on MS Defender Anti-virus and Defender Management
• Clear understanding of Malware Policies & tasks and Handling Zero Day events
• Very good understanding of SIEM and SOAR tools for example Microsoft Sentinel, Splunk.
• Excellent understanding of XDR
• Hands on experience with security incidents and alerts, endpoint data loss prevention, threat analytics, advance hunting, self healing and KQL
• Hands on experience with posture management and vulnerability management
• Excellent Client / Customer Facing skills - building trusted relationships - delivering high value service
• Should have capabilities to prepare LLD, SOP, WLI and other required documents on a project
• Good to have knowledge on Microsoft Cybersecurity Reference Architecture (MCRA) & Zero trust framework
• Good to have SC-900, SC-200, SC-300 certification along with the M365 Defender Ninja modules
• Familiar with ITIL process for Incident, Request, Change management
• Analytical & Problem-Solving: Strong analytical and technical troubleshooting skills, with a proactive approach to identifying and resolving complex technical challenges.
• Communication & Collaboration: Excellent verbal and written communication skills, with the ability to work effectively in a dynamic, team-oriented environment.
• Adaptability & Initiative: Flexible, quick to adapt to changes, and eager to take on additional duties and special projects as required.