Key skills
Microsoft SentinelCopilot for SecurityMicrosoft Defender for CloudMicrosoft Defender XDRMicrosoft Defender for IdentityMicrosoft Defender for Office 365Microsoft Defender for EndpointMicrosoft Defender for Cloud AppsXDR technologiesSIEMSOARThreat huntingWorkbook creationKusto Query Language (KQL)Incident response workflowsPowerShellAzure Logic AppsZero TrustMITRE ATT&CKNISTCloud governanceCustomer-facing consultingCAIAnalyticsAzureLogic AppsSaaSPresentation SkillsCustomer SuccessCloud Security
About this role
JDA TSG equips major brands with specialized talent and technologies to drive organizational growth. They are seeking a Microsoft Security Customer Engineer to guide Fortune-1000 enterprises in securing their identity posture across hybrid and cloud environments, serving as a trusted technical advisor for Microsoft security solutions.
Responsibilities:
- Act as the customer’s security advisor, guiding their end-to-end journey with Microsoft’s cloud security architecture
- Drive technical conversations and hands-on solutioning across IaaS, PaaS, and SaaS security layers
- Deliver compelling technical presentations, live demos, and proof-of-concepts showcasing Microsoft Sentinel, Defender for Cloud, and Copilot for Security
- Lead clients’ implementation efforts focused on cloud-native SIEM (Sentinel), automated threat response (Copilot for Security), and security telemetry ingestion and analytics across IaaS, PaaS, SaaS, endpoint, and identity workloads
- Drive successful adoption of Microsoft security products, especially across hybrid cloud environments
- Stay ahead of the curve with AI-powered security tools and continuously upskill to align with Microsoft’s Security & Customer Success goals
Requirements:
- 10-15 years of progressive IT experience spanning enterprise infrastructure, cloud platforms, and security operations
- 5-7 years of hands-on expertise with Microsoft Security solutions, including Microsoft Sentinel, Microsoft Defender XDR, Defender for Cloud, Defender for Identity, Defender for Office 365, and 2+ years of experience with Security Copilot
- Strong background in cross-platform integration of cloud, endpoint, identity, and application security sources into Microsoft security platforms, enabling unified threat detection, investigation, and response
- Deep understanding of SIEM, XDR, threat detection engineering, security monitoring, incident response, and security operations best practices across hybrid and multi-cloud environments
- Trusted advisor with strong executive presence, capable of influencing technical decision-makers, security leaders, architects, and C-level stakeholders
- Strong customer-facing consulting and presentation skills, including requirements discovery, solution design workshops, architecture reviews, and technical enablement sessions
- Experience leading strategic customer engagements, driving platform adoption, operational excellence, and measurable security outcomes
- Hands-on expertise with automation and orchestration capabilities, including Microsoft Sentinel automation rules, playbooks, Logic Apps, and AI-driven security workflows
- Cloud Security Solutions: Microsoft Defender for Cloud (Azure IaaS, PaaS, SaaS security), Defender for Identity (MDI), Defender for Endpoint, Defender for Cloud Apps (MDA), XDR technologies
- SIEM/SOAR: Deep familiarity with Microsoft Sentinel architecture, threat hunting, workbook creation, KQL, and incident response workflows
- AI & Automation: Hands-on experience or working knowledge of CoPilot for Security
- Security Frameworks & Models: Understanding of Zero Trust, MITRE ATT&CK, NIST, and cloud governance best practices
- Customer-Facing Expertise: Proven ability to lead customer engagements, technical workshops, and deploy real-world solutions
- Scripting/Automation: PowerShell, Kusto Query Language (KQL), Azure Logic Apps preferred