Microsoft Security Engineer
Location: United Kingdom (Remote)
Contract type: Permanent / Full time – 40 hours per week
Remuneration: Up to £50,000 plus £1,000 working from home allowance.
Reporting to: Director of Cyber Security & Resilience. The role is home‑based and may require occasional travel for meetings within the UK.
As a Microsoft Security Engineer you will design, implement, and maintain secure solutions across cloud and hybrid environments, focusing on identities, data, applications, and infrastructure. The role involves identifying vulnerabilities, responding to incidents, improving threat detection, and ensuring compliance with security standards.
Responsibilities
* Implement and manage security solutions using Microsoft security tools and platforms.
* Monitor security alerts and respond to incidents in a timely manner.
* Conduct vulnerability assessments and coordinate remediation efforts.
* Design and enforce identity and access management (IAM) policies.
* Secure cloud environments, including Azure resources and hybrid infrastructure.
* Develop and maintain security documentation, policies, and procedures.
* Collaborate with cross‑functional teams to integrate security into system design.
* Ensure compliance with regulatory and organizational security requirements.
* Perform risk assessments and recommend mitigation strategies.
* Stay current with emerging threats, technologies, and security best practices.
Essential Qualifications, Skills and Experience
* Hands‑on experience securing Microsoft 365 and Azure environments.
* Strong understanding of Microsoft Defender security products and their configuration.
* Strong knowledge of Microsoft Entra ID, identity architecture, Conditional Access, IAM, and Zero Trust principles.
* Proven ability to analyse security alerts, correlate events, and perform basic incident response activities.
* Experience with SIEM platforms, incident management processes, and security automation.
* Knowledge of common security frameworks and standards (NIST, ISO 27001, CIS Benchmarks, Cyber Essentials).
* Industry certifications such as Microsoft Certified: Security Operations Analyst Associate, Identity and Access Administrator Associate, Azure Security Engineer Associate, or equivalent experience.
Desirable Qualifications, Skills and Experience
* Experience with Microsoft 365 Defender Suite.
* Experience implementing or managing Microsoft Purview (DLP, information protection, insider risk).
* Experience supporting SOC operations or security analyst duties.
* Experience with risk management processes, threat modelling (e.g., STRIDE), and secure‑by‑design assurance frameworks.
* Participation in pen‑testing or red/blue‑team exercises.
* Experience with regulatory and compliance environments (NHS DSPT, GDPR, FCA, ISO audits).
* Broader cloud experience across AWS or hybrid environments.
* Experience integrating third‑party security tools with Microsoft cloud environments.
* Experience creating phishing payloads and end‑user training programmes.
Benefits
* Health Cash Plan
* Well Hub Subscription
* Employee Assistance Programme
* Annual Volunteering Day
* Enhanced sickness and family leave pay
* Length of service bonus
* Work from Home allowance
* Pension options
#J-18808-Ljbffr