Information Security Engineer (Cloud Security Engineer) - 1 Year Contract

Microsoft Security Platform Engineering

Identity & Access Management

• Design, implement, and maintain Microsoft Entra ID security controls, including Conditional Access policies, identity governance, privileged access management, and authentication security controls.
• Review and validate access requests, identity exclusions, and security exceptions while ensuring alignment with security best practices.

Endpoint Security & Device Management

• Configure and maintain Microsoft Intune security baselines, compliance policies, endpoint protection controls, and automated deployment workflows.
• Partner with IT teams to strengthen endpoint security and device management capabilities across the organization.

Threat Protection

• Implement, administer, and optimize Microsoft Defender security solutions, including Defender for Endpoint, Defender for Identity, Defender for Office 365, and Defender for Cloud Apps.
• Continuously improve detection, prevention, and response capabilities across the Microsoft security ecosystem.

Data Protection & Compliance

• Configure, manage, and tune Microsoft Purview Data Loss Prevention (DLP), information protection, and compliance controls.
• Support ongoing data governance and security compliance initiatives.

Security Operations & Incident Response

Monitoring & Detection

• Design and maintain Microsoft Sentinel detections, KQL queries, analytics rules, dashboards, and workbooks.
• Build and enhance automated response playbooks and SOAR workflows to reduce manual effort and improve response times.

Incident Response

• Participate in security operations activities including alert triage, investigation, containment, remediation, and post-incident analysis.
• Support incident response efforts and collaborate with infrastructure and business teams to resolve security events.

Vulnerability Management

• Administer vulnerability scanning and security assessment tools.
• Coordinate remediation efforts with technical teams and validate corrective actions.
• Support continuous asset discovery and security posture improvement initiatives.

Operational Support

• Participate in a rotating on-call schedule to support security incidents and operational escalations.
• Continuously identify opportunities to automate processes, improve tooling effectiveness, and reduce operational overhead.

Vendor & Security Program Support

Security Tool Optimization

• Lead the implementation, integration, and optimization of security technologies to maximize platform capabilities and business value.
• Partner directly with vendors to evaluate new features, improve configurations, and support strategic security initiatives.

Third-Party Risk & Technical Assessments

• Review vendor architectures and technical solutions to identify security risks and recommend appropriate controls.
• Support security reviews and assessments of third-party technologies and services.

Security Awareness

• Administer the KnowBe4 platform, including phishing simulations, awareness campaigns, and user training initiatives.
• Contribute to fostering a strong security culture across the organization.

  Cloud Security Posture Management (CSPM)

  Support the implementation, administration, and continuous improvement of Cloud Security Posture Management (CSPM) capabilities across Microsoft Azure and AWS environments.
  • Monitor cloud environments for security misconfigurations, compliance gaps, excessive permissions, and emerging risks, partnering with infrastructure teams to drive remediation.

  Microsoft Entra ID, Intune, Microsoft Defender Suite, Microsoft Sentinel, Microsoft Purview, Microsoft 365 Security & Compliance capabilities, and cloud security best practices within AWS and Azure environments.

Education

• Bachelor's degree in Computer Science, Cybersecurity, Information Technology, or a related field.
• Master's degree considered an asset.

Experience

• Minimum 5 years of hands-on experience in security engineering, cloud security, security operations, or a related cybersecurity role.
• Demonstrated experience implementing and administering Microsoft 365 E5 security technologies in an enterprise environment.
• Experience supporting security operations functions, including incident response, threat detection, vulnerability management, and security monitoring.
• Experience supporting security controls and monitoring within AWS environments.
• Familiarity with AWS security services such as IAM, Security Hub, GuardDuty, AWS Config, and related cloud security capabilities.
• Experience implementing or administering Cloud Security Posture Management (CSPM) solutions

Technical Expertise

• Microsoft Entra ID (Conditional Access, Identity Governance, Authentication Security)
• Microsoft Intune
• Microsoft Defender Suite
• Microsoft Sentinel
• Microsoft Purview
• Microsoft 365 Security & Compliance capabilities
• KQL (Kusto Query Language)
• PowerShell and/or Python automation
• Security monitoring, incident response, and vulnerability management practices

Preferred Certifications

• Microsoft Certified: Security Operations Analyst Associate (SC-200)
• Microsoft Certified: Identity and Access Administrator Associate (SC-300)
• Microsoft Certified: Cybersecurity Architect Expert (SC-100)
• CISSP (Certified Information Systems Security Professional)
• Microsoft SC-200, SC-300, or SC-100
• CISSP
• AWS Certified Security – Specialty (asset)

Success in This Role

The successful candidate is a hands-on security engineer who enjoys both building and operating security solutions. They are comfortable diving into technical details, automating repetitive tasks, improving security processes, and collaborating with stakeholders to strengthen the organization's overall security posture.