Key skills
AzureCloudEntra IDOAuthSAMLIdentity ManagementSSOSingle Sign-OnSaaSLeadership
About this role
Role Overview
- Design and implement security configurations within Azure and M365 to mitigate identity-based threats.
- Manage and audit Microsoft Entra ID, including Conditional Access policies, Privileged Identity Management (PIM), and Identity Protection.
- Conduct regular security assessments of the M365 tenant using Microsoft Secure Score and industry benchmarks.
- Lead the integration of all internal SaaS applications behind Single Sign-On (SSO) via Entra ID.
- Enforce Multi-Factor Authentication (MFA) and passwordless strategies across all corporate platforms.
- Monitor and secure API-based integrations between SaaS products to prevent data leakage and unauthorized access.
- Oversee the deployment and management of Mobile Device Management (MDM) via Microsoft Intune for a diverse fleet of devices.
- Administer and tune SentinelOne (or equivalent EDR) for proactive threat hunting, automated response, and endpoint hardening.
- Develop automated remediation scripts to address non-compliant devices in real-time.
- Act as the primary technical lead for internal security alerts, investigating potential breaches and coordinating response efforts.
- Configure and monitor logging and alerting systems to identify anomalous behavior across the cloud environment.
- Perform root cause analysis (RCA) following security incidents to improve defensive layers.
- Ensure the organization’s technical controls align with relevant compliance frameworks (e.g., SOC2, ISO 27001, or NIST).
- Maintain comprehensive documentation of security architectures, policies, and standard operating procedures (SOPs).
- Coordinate internal audits and vulnerability scans, ensuring timely remediation of discovered weaknesses.
Requirements
- Bachelor’s or Master’s degree in Computer Science, Information Systems, or a related technical field.
- 10+ years of progressive leadership experience in IT operations, systems architecture, or engineering management.
- Deep technical knowledge of Azure, Microsoft Entra ID, and the M365 Security & Compliance Centers.
- Hands-on experience with EDR/XDR platforms (SentinelOne preferred) and MDM solutions (Intune).
- Proficiency in SAML 2.0, OAuth 2.0, and OIDC for SaaS integrations.
Tech Stack
- Azure
- Cloud