CrawlJobs Logo

Microsoft Security Framework Engineer

https://www.roberthalf.com Logo

Robert Half

Location Icon

Location:
United States , Miami Beach

Category Icon
Category:
IT - Administration

Job Type Icon

Contract Type:
Not provided

Salary Icon

Salary:

Not provided
Save Job
Save Icon
Apply Position

Job Description:

We are seeking a highly experienced Microsoft Security Framework Engineer to lead the full activation and optimization of the Microsoft Security stack within our Microsoft 365 E5 environment. This is a critical contract role focused on designing, configuring, and deploying a comprehensive security framework to protect endpoints, identities, cloud applications, email, and sensitive Protected Health Information (PHI). The successful candidate will serve as the subject matter expert responsible for implementing Microsoft Defender and Purview capabilities from the ground up, ensuring alignment with industry best practices and regulatory requirements.

Job Responsibility:

  • Lead the end-to-end design, configuration, and deployment of the full Microsoft Security stack, including: Microsoft Defender for Endpoint
  • Microsoft Defender for Office 365 Plan 2
  • Microsoft Defender for Identity
  • Microsoft Defender for Cloud Apps
  • Entra ID Protection
  • Microsoft Purview (Data Loss Prevention (DLP) and Sensitivity Labels for PHI)
  • Architect and implement a cohesive Microsoft security framework that integrates all components for maximum protection and visibility
  • Configure advanced threat protection, automated investigation and response (AIR), attack surface reduction rules, and device control policies
  • Design and deploy Purview DLP policies and sensitivity labeling strategies tailored for PHI protection and regulatory compliance (HIPAA, etc.)
  • Implement Entra ID Protection policies, Conditional Access, and identity threat detection capabilities
  • Conduct security assessments, gap analysis, and provide recommendations to strengthen the overall security posture
  • Collaborate with internal IT, security, and compliance teams to ensure successful adoption and operational handover
  • Develop documentation, runbooks, and knowledge transfer materials for ongoing management and maintenance
  • Provide expert guidance on Microsoft 365 E5 security licensing, features, and roadmap

Requirements:

  • Mandatory Certification: Microsoft 365 Security Administration (MS-500) – must be current
  • 7+ years of hands-on experience in Microsoft 365 security administration and engineering
  • 3+ prior full Microsoft 365 E5 security deployments (end-to-end implementation of the Defender and Purview suite)
  • Deep expertise in configuring and optimizing the complete Microsoft Security stack (Defender for Endpoint, Defender for Office 365, Defender for Identity, Defender for Cloud Apps, Entra ID Protection, and Purview)
  • Strong experience with Microsoft Purview Data Loss Prevention (DLP) and Sensitivity Labels, particularly in healthcare or regulated environments handling PHI
  • Proven ability to design and implement enterprise-grade security architectures in complex M365 environments
  • Excellent troubleshooting, analytical, and documentation skills

Nice to have:

  • Experience working in healthcare or regulated industries (HIPAA, HITRUST, etc.)
  • Additional Microsoft certifications (e.g., SC-400, SC-300, AZ-500)
  • Experience with Microsoft Sentinel integration and SIEM workflows
  • Familiarity with Zero Trust security model implementation using Microsoft tools
What we offer:
  • medical
  • vision
  • dental
  • life and disability insurance
  • 401(k) plan

Additional Information:

Job Posted:
April 23, 2026

Employment Type:
Fulltime
Work Type:
On-site work
Icon
Robert Half - All Job Offers
Job Link Share:
Copy Link Icon
Facebook Icon Twitter Icon LinkedIn Icon

Looking for more opportunities? Search for other job offers that match your skills and interests.

Briefcase Icon

Similar Jobs for Microsoft Security Framework Engineer

Security Engineer

Airspace Link is seeking a Security Engineer to support the security posture of ...
Location
Location
United States , Detroit
Salary
Salary:
Not provided
airspacelink.com Logo
Airspace Link
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • 2–5 years of experience in security engineering, cloud security, SOC/IR operations, or related hands-on security roles
  • Working knowledge of Azure security concepts and Microsoft cloud security tools
  • Practical experience with: Microsoft Defender for Cloud, Endpoint, Identity, and Cloud Apps
  • Microsoft Sentinel (KQL querying, incident investigation, dashboards)
  • Microsoft Intune / Endpoint Manager (MDM/MAM)
  • Microsoft Purview (DLP and compliance tooling)
  • Hands-on experience supporting vulnerability remediation with engineering teams
  • Familiarity with Terraform, secure CI/CD practices, and cloud configuration management
  • Strong written and verbal communication skills with the ability to collaborate cross-functionally
Job Responsibility
Job Responsibility
  • Assist with implementing and maintaining security controls within Azure and SaaS environments
  • Support the incident response lifecycle, including initial investigation, coordination with engineering, and documentation of remediation actions
  • Monitor, tune, and assist in the operation of the Microsoft Defender suite (Defender for Cloud, Endpoint, Identity, Cloud Apps, and Vulnerability Management)
  • Support mobile device management (MDM) and endpoint compliance using Microsoft Intune and Endpoint Manager
  • Partner with engineering teams to identify, prioritize, and track remediation of vulnerabilities across applications, cloud infrastructure, and CI/CD pipelines
  • Help implement and maintain Entra ID Conditional Access and Privileged Identity Management (PIM)
  • Assist in integrating DevSecOps guardrails within Azure DevOps and GitHub pipelines (e.g., CodeQL, IaC scanning, secret governance)
  • Participate in developing dashboards and analytics in Microsoft Sentinel, including KQL queries and incident correlation support
  • Contribute to threat modeling and risk assessments as part of project reviews
  • Support the creation and upkeep of security configuration baselines, Terraform modules, and policy templates
  • Fulltime
Read More
Arrow Right

Cloud Security Engineer

The role will involve working with various technologies such as AWS Technologies...
Location
Location
United States , New York
Salary
Salary:
Not provided
https://www.roberthalf.com Logo
Robert Half
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Proficient in AWS Technologies
  • Experience with Microsoft Dynamics 365 Finance & Operations
  • Knowledge of Azure DevOps
  • Ability to code in X++
  • Bachelor's degree in Computer Science or a related field
  • Minimum of 3 years of experience in a similar role
  • Strong understanding of cloud security principles
  • Excellent problem-solving skills
  • Ability to work independently and as part of a team
  • Strong communication skills, both written and verbal
Job Responsibility
Job Responsibility
  • Conduct internal control reviews and user security risk assessments for customers utilizing Microsoft Dynamics D365 for Finance, Microsoft Dynamics D365 for Supply Chain, and/or Microsoft Dynamics AX2012
  • Utilize Governance, Risk and Compliance products such as Fastpath to assess risk
  • Identify areas of business risk, potential technical problems, and opportunities to improve the efficiency and profitability of the client’s overall business processes
  • Manage the assignment of permission sets and user roles within Dynamics 365 environments to different user profiles based on their job functions
  • Develop policies related to the user roles and permission sets within Dynamics 365 environments
  • Use technologies such as Visual Studio, Azure DevOps, PowerApps, and Power Automate for various tasks
  • Build custom solutions using X++
  • Maintain a working knowledge of internal control frameworks, with understanding of both IT and Business risks and controls concepts related to D365
What we offer
What we offer
  • medical
  • vision
  • dental
  • life and disability insurance
  • 401(k) plan
  • Fulltime
Read More
Arrow Right

Senior Security Engineer

PagerDuty is seeking a Senior Security Engineer (Infrastructure & Identity Secur...
Location
Location
United States
Salary
Salary:
172000.00 - 289000.00 USD / Year
https://www.pagerduty.com Logo
PagerDuty
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • 5+ years of experience as a full-stack Security Engineer in an AWS native, micro-service SaaS environment with focus on IAM
  • Deep expertise in cloud security, particularly AWS services including but not limited to: GuardDuty, CloudTrail, Config, IAM family, Secrets Manager, KMS, EKS, Service Mesh architectures
  • Strong expertise and experience implementing and managing identity providers, specifically Okta and/or Microsoft Entra at scale (1000+ users)
  • Strong understanding of zero trust principles and modern authentication patterns
  • Experience working with multiple development teams and technology stacks
  • 5+ years experience leading technical security initiatives, with proven ability to scope ambiguous projects, break down complex work into actionable items, and successfully delegate responsibilities while maintaining project momentum
  • Proficiency with security tools: Vulnerability Management & EDR: Wiz, Snyk, Qualys/Nessus, Crowdstrike
  • SIEM: SumoLogic or Splunk
  • Experience with Infrastructure as Code and CI/CD: Terraform, Helm, Chef, Ansible, Buildkite, Jenkins, ArgoCD
  • 4+ years of experience and proficiency in at least one programming language and framework (Python, Java, or similar)
Job Responsibility
Job Responsibility
  • Lead and implement comprehensive IAM strategy across cloud infrastructure
  • Work closely with Product Engineering teams and conduct architecture reviews and threat modeling sessions focusing on but not limited to identity and access patterns
  • Design and implement modern service-to-service authentication patterns using technologies such as IRSA (IAM Roles for Service Accounts) and pod identity
  • Develop and maintain a robust secrets management framework and strategy
  • Drive adoption of principle of least privilege across all services and applications
  • Design and implement automated workflows for access reviews and certification
  • Design and implement security controls for AWS cloud infrastructure and containerized environments
  • Develop metrics and monitoring for IAM-related security events and access patterns
  • Monitor and maintain security tooling supporting infrastructure security controls
  • Design and implement security automations and tool integrations
What we offer
What we offer
  • Competitive salary
  • Comprehensive benefits package from day one
  • Flexible work arrangements
  • Company equity
  • ESPP (Employee Stock Purchase Program)
  • Retirement or pension plan
  • Generous paid vacation time
  • Paid holidays and sick leave
  • Dutonian Wellness Days & HibernationDuty - companywide paid days off in addition to PTO
  • Paid parental leave: 22 weeks for pregnant parent, 12 weeks for non-pregnant parent
  • Fulltime
Read More
Arrow Right

End Point Security Senior Engineer

Senior Engineer role focused on endpoint security implementation and maintenance...
Location
Location
India , Noida
Salary
Salary:
Not provided
https://www.soprasteria.com Logo
Sopra Steria
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Hands-on experience with EDR/XDR platforms such as Microsoft Defender for Endpoint or Sentinel One
  • Familiarity with vulnerability management tools
  • Knowledge of endpoint technologies including BitLocker, Application control, Endpoint privilege management, Windows Defender Firewall
  • Understanding of endpoint threat intelligence and ability to analyze threat data
  • Scripting or automation experience using PowerShell or other scripting languages
  • Total Experience Expected: 02-06 years
  • B.tech/BE/BCA qualification
Job Responsibility
Job Responsibility
  • Implement and maintain endpoint security solutions such as EDR, antivirus, encryption, and application control tools
  • Monitor, analyze, and respond to security alerts and incidents originating from workstations and endpoints
  • Apply and manage workstation hardening standards, including adherence to security baselines
  • Conduct vulnerability assessments on endpoints and coordinate timely remediation activities
  • Manage patch deployment for operating systems and applications to ensure compliance with internal policies and reduce exposure to threats
  • Ensure endpoint systems comply with security policies, standards, and regulatory frameworks
  • Actively participate in incident response efforts related to endpoint breaches or malware incidents
  • Contribute to risk assessments and provide input during security architecture reviews related to endpoints
  • Maintain a strong understanding of Windows and macOS operating systems from a security perspective
  • Fulltime
Read More
Arrow Right

Information Systems Security Engineer

STR has an exciting opportunity for a well-rounded cybersecurity professional to...
Location
Location
United States , Woburn
Salary
Salary:
136000.00 - 170000.00 USD / Year
str.us Logo
STR
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Active Top Secret security clearance with the ability to obtain SAP and SCI access (U.S. citizenship required)
  • 3-5 years of technical (hands-on) experience in Information Assurance/Cyber Engineering, including requirements development and implementation
  • DoD 8570 IAM Level III certification (CISA, CISM, CISSP, etc.) or the ability to obtain within 6 months of hire
  • Knowledge of the DCSA Authorization and Assessment Process Manual (DAAPM) and the Joint Special Access Implementation Guide (JSIG)
  • Configuration, certification, and auditing/analysis of Windows/Linux operating systems and system virtualization in peer-to-peer, LAN & WAN networks
  • Managing and implementing DISA STIGs and benchmarks in various operating systems (Windows, RHEL, Ubuntu)
  • Using IA vulnerability/compliance scanning tools (e.g., NMap, ACAS, Nessus, Security Content Automation Protocol (SCAP))
  • Maintaining/managing Security Incident and Event Management (SIEM) and centralized auditing tools (e.g., Splunk, PowerStrux)
  • Familiarity with Microsoft Deployment Toolkit (MDT)
  • Supporting the hardening of new builds of Information Systems (IS) and ensuring full functionality before deployment
Job Responsibility
Job Responsibility
  • Conduct both vulnerability and compliance scans of Information Systems
  • Support the development of Risk Management Framework (RMF) documentation and control validation testing for Authority to Operate (ATO) accreditations
  • Develop cybersecurity requirements, design, and architecture for current and emerging program needs
  • Implement Information Assurance and Information Security protections and requirements in program development and execution environments
  • Apply required security controls to networking devices, databases, operating systems, and hardware/software components
  • Assist ISSMs and ISSOs in monitoring and resolving Plan of Action and Milestones (POA&M) to mitigate system vulnerabilities
  • Conduct reviews and technical inspections to identify and mitigate potential security weaknesses, ensuring all security features are implemented and functional
  • Support the completion of Continuous Monitoring requirements in accordance with RMF and NIST SP800-53 standards
  • Perform other tasks as assigned by the manager
  • Fulltime
Read More
Arrow Right

Data Security Engineer

The data security engineer is responsible for designing, implementing, and maint...
Location
Location
United States , Spring
Salary
Salary:
106000.00 - 243000.00 USD / Year
https://www.hpe.com/ Logo
Hewlett Packard Enterprise
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Bachelor's degree in Cybersecurity, Information Technology, Computer Science, or a related field. Or equivalent experience
  • 8 years of experience in cybersecurity, with at least 5 years focused on DLP
  • Hands-on experience with tools like Zscaler DLP, Microsoft IPG, or equivalent
  • Strong understanding of data protection regulations (HIPPA, PCI, SOX) and enterprise compliance frameworks
  • Certified Information Systems Security Professional (CISSP), Certified Information Security Manager (CISM), or equivalent
  • Knowledge of the NIST 800-53, ISO 27001, and Zero Trust
  • Strong analytical and problem-solving skills
  • Excellent communication and leadership skills
  • Ability to manage multiple high-impact projects simultaneously
Job Responsibility
Job Responsibility
  • Lead the design and deployment of enterprise data protection capabilities like DLP, encryption, SSPM, and CASB
  • Lead the evaluation and adoption of new security tools and technologies
  • Manage and fine tune data security policies with the changing requirements
  • Contribute to security policies, standards, and procedures to ensure compliance with industry best practices and regulatory requirements
  • Collaborate with IT and DevOps teams to integrate security into the software development lifecycle (SDLC), infrastructure as code (IaC), and cloud environments
  • Collaborate with data warehouse team to feed data into SIEM and long term storage solutions
  • SME for the technical response of high-severity security incidents
  • Contribute to playbooks and procedures
  • Collaborate with key stakeholders, including IT, DevOps, legal, and compliance teams
  • Provide expert guidance on emerging threats, technologies, and regulatory requirements
What we offer
What we offer
  • Health & Wellbeing benefits
  • Personal & Professional Development programs
  • Unconditional Inclusion environment
  • Comprehensive suite of benefits supporting physical, financial and emotional wellbeing
  • Fulltime
Read More
Arrow Right

Operational Technology (OT) Cyber Security Engineer

The OT Cyber Security Engineer will contribute to the delivery of high-quality t...
Location
Location
United Kingdom , Stockton-on-Tees
Salary
Salary:
Not provided
risktec.tuv.com Logo
Risktec Solutions
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • A relevant technical degree or equivalent industry experience in OT cybersecurity is desirable
  • Good working understanding of industrial control systems (DCS, SCADA, PLCs, etc.)
  • Prior experience in technical delivery roles, including hands-on involvement in a project delivery or client-facing setting, is desirable but not essential
  • Evidence of delivering high-quality technical work under supervision
  • Foundational knowledge of OT cybersecurity practices, frameworks, and regulations, such as IEC 62443, CAF, OG86, and NIS
  • Awareness of OT cybersecurity techniques and tools for compliance with national/international standards, contributing to effective technical solutions
  • Developing competency in performing assignments in areas such as: Supporting risk assessments and vulnerability analysis of OT environments
  • Assisting in asset inventory preparation and management for industrial control systems (ICS)
  • Conducting physical and standards-based site audits, aligned with international standards
  • Contributing to network diagram creation to improve system visibility and security
Job Responsibility
Job Responsibility
  • Support risk assessments and create asset inventories for OT systems across client sites under supervision
  • Perform physical and standards-compliant site audits as directed by senior consultants or team leads
  • Assist in the creation, documentation, review, and validation of network diagrams and OT systems architecture
  • Support the review, development, and implementation of OT Cyber Security Management Systems (CSMS) in alignment with established frameworks and international standards
  • Collaborate with the OT Cyber Security team and other departments to deliver projects successfully, ensuring high-quality outputs
  • Prepare and deliver accurate and professional technical reports and documentation that meet client expectations and regulatory compliance
  • Stay informed of industry trends and emerging OT cybersecurity challenges, applying foundational knowledge to support team-directed initiatives
  • Interaction with customers to ensure TUV deliver a solution on time and to high quality
What we offer
What we offer
  • comprehensive training
  • flexible working
  • a great pay and benefits package
  • Fulltime
Read More
Arrow Right

System Information Assurance and Security Engineer

Barbaricum is seeking a highly skilled System Information Assurance and Security...
Location
Location
United States , Tampa
Salary
Salary:
Not provided
barbaricum.com Logo
Barbaricum
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Active DoD TS/SCI Clearance
  • Bachelor’s degree in Computer Science, Information Systems, Cybersecurity, or related field (Master’s preferred)
  • 5+ years of experience in enterprise identity and access management architecture
  • Demonstrated expertise with Zero Trust frameworks and DoD ICAM standards
  • Hands-on experience with SAML, OAuth2.0, OpenID Connect, PKI, and certificate management
  • Experience with DoD enterprise solutions such as Radiant Logic, Okta, Ping Identity, SailPoint, ForgeRock, Microsoft Entra ID (Azure AD), or equivalent
  • Deep knowledge of Privileged Access Management and Identity Governance & Administration solutions
  • Strong understanding of DoD cybersecurity compliance frameworks (RMF, NIST SP 800-53, 800-207, 8140/8570)
  • IAM / DoD Certification IAT Level II (e.g., Security+ CE, SSCP, GSEC)
Job Responsibility
Job Responsibility
  • Execute engineering solutions for identity credential and access management for Zero Trust implementation across enterprise systems
  • Design and maintain an enterprise-wide identity and access management strategy aligned with DoD Zero Trust principles, NIST 800-207, and DoD ICAM Reference Design
  • Lead integration of federated identity, single sign-on (SSO), and multi-factor authentication (MFA) across cloud and on-prem environments
  • Develop and maintain policies, standards, and reference architectures to enforce least-privilege and attribute-based access control (ABAC)
  • Conduct the implementation of Privileged Access Management (PAM) and Identity Governance and Administration (IGA) solutions
  • Collaborate with cybersecurity, network, and cloud teams to align ICAM solutions with Zero Trust pillars (identity, device, network, application, and data)
  • Ensure compliance with DoD 8140/8570, RMF, FedRAMP, and other applicable frameworks
  • Lead proof-of-concepts (POCs) and technology evaluations for emerging identity
Read More
Arrow Right
Remote jobs Jobs by Category
Art and Entertainment Jobs Banking Jobs Call Center Jobs Construction Jobs Consulting Jobs Customer Service Jobs Education Jobs Energy Jobs Finance Jobs Gastronomy Jobs Health and Beauty Jobs Hospitality and Tourism Jobs Human Resources Jobs Insurance Jobs IT - Administration Jobs IT - Software Development Jobs Legal Jobs Logistics Jobs Manufacturing Jobs Marketing, Digital Marketing, SEO, SEM Jobs Media Jobs Nursing Jobs Office Administration Jobs Pharmacy Jobs Physical Work Jobs Public Relations Jobs Public Sector Jobs Purchasing Jobs Quality Control Jobs Real Estate Jobs Research and Development Jobs Sales Jobs
Job Positions Jobs by Country
United States Jobs United Kingdom Jobs India Jobs Canada Jobs Australia Jobs Germany Jobs Ireland Jobs Poland Jobs
Company
Blog Salaries Tools About Us FAQ Contact
Follow Us
Facebook
X (Twitter)
LinkedIn
Instagram
CrawlJobs Group
ITFlashcards AllDevBlogs
© 2026 CrawlJobs Ltd. All Rights Reserved
Terms & Conditions Privacy Policy