Senior Consulting Engineer — Microsoft Purview & Collaboration Security

SilverSky is a global cyber security company with over 20 years of experience in the industry, dedicated to protecting their customers with adaptive security services. They are seeking a Senior Consulting Engineer to provide advisory consulting and hands-on delivery related to Microsoft Purview, collaboration security, and Microsoft 365 security governance. The role involves working directly with clients to clarify objectives, design solutions, and ensure operational readiness.

Responsibilities:

• Lead client discovery workshops and technical deep-dives; clarify objectives, identify constraints, surface tradeoffs, and translate ambiguity into executable decisions
• Design and implement Microsoft Purview and collaboration security solutions consistent with client requirements and delivery standards
• Deliver client-facing documentation that is clear, bounded, and decision-oriented, including problem statements, recommendations, rationale, expected outcomes, and operational implications
• Present recommendations to client stakeholders using clear rationale, assumptions, risks, and expected outcomes; support informed decision-making rather than one-way delivery
• Run technical working sessions and implementation calls; coordinate dependencies across client stakeholders and internal teams
• Participate in governance cadences covering status, risks, issues, decisions, and next steps, and support change control practices for production-impacting modifications
• Provide structured handoff and knowledge transfer, including runbooks, administrative guidance, and operational guardrails
• Design, implement, and optimize Microsoft Purview capabilities such as Information Protection, Data Loss Prevention, retention, records management, Insider Risk Management, Communication Compliance, eDiscovery, and data lifecycle controls as appropriate to client need and licensing posture
• Design and implement Defender for Office 365 protections including anti-phishing, anti-malware, Safe Links, Safe Attachments, campaign analysis, threat investigation, and policy tuning
• Secure Microsoft 365 collaboration workloads including Exchange Online, Microsoft Teams, SharePoint Online, and OneDrive with attention to both risk reduction and user experience
• Assess existing tenant configurations, identify control gaps, and define pragmatic remediation plans that account for operational readiness and change impact
• Support incident-informed hardening efforts by translating observed attack paths, risky behaviors, or governance failures into durable configuration improvements
• Develop implementation standards, decision frameworks, and repeatable patterns that improve consistency across consulting engagements
• Coordinate with identity, endpoint, and security operations stakeholders when control design or investigative workflows span multiple Microsoft security workloads
• Ensure delivery artifacts are traceable, including configuration decisions, change history, validation evidence, and client approvals where applicable
• Build and maintain practical implementation guides, standards, and reusable artifacts that reduce variance across engagements
• Continuously identify opportunities to improve delivery safety, speed, and quality without sacrificing clarity, governance, or compliance posture
• Support knowledge transfer and operational readiness by ensuring controls are supportable after implementation, not merely configured
• Contribute to internal capability development through documentation, peer collaboration, and refinement of repeatable delivery methods

Requirements:

• 5+ years of experience delivering Microsoft security and compliance engineering work in consulting, professional services, or a similarly client-facing environment
• Hands-on experience with Microsoft Purview and Microsoft 365 collaboration security capabilities in real client environments
• Hands-on experience with Defender for Office 365, Exchange Online Protection, and the security posture of Exchange Online, Teams, SharePoint Online, and OneDrive
• Strong understanding of Microsoft 365 compliance, information protection, and governance concepts including data classification, retention, DLP, and investigative workflows
• Ability to assess existing environments, identify meaningful control gaps, and design remediation approaches that balance risk, usability, and operational reality
• Ability to communicate clearly with client stakeholders, including presenting options, constraints, and tradeoffs without ambiguity
• Operational discipline in documentation, change control, implementation planning, and evidence-minded delivery
• Experience with Microsoft Defender XDR and adjacent security workloads that inform investigation, response, and control tuning
• Experience delivering in regulated environments such as financial services, healthcare, or public sector, and mapping technical controls to governance requirements
• Experience with tenant-to-tenant migration, collaboration governance, or post-compromise hardening in Microsoft 365 environments
• Experience building and maintaining reusable internal frameworks, standards, and accelerators rather than one-off implementations
• Relevant certifications such as SC-400, SC-200, SC-300, MS-102, or equivalent demonstrated expertise