Security Engineer

Role Summary

Senior Microsoft O365 Security Engineer & Subject Matter Expert responsible for designing, implementing, and managing Microsoft 365 security solutions across IT/OT environments. This role provides technical leadership, drives security architecture, ensures compliance, and supports secure deployment of M365 technologies within a federal environment.

Key Responsibilities

• Provide strategic guidance, oversight, and technical leadership for M365 application deployment across IT/OT environments
• Design, implement, and manage Microsoft 365 security solutions and compliance controls in a multi-tenant environment
• Lead security initiatives across MS Defender (EDR & Email Security) and Purview (DLP, compliance, governance)
• Architect and enhance M365 security solutions across on-premises and cloud environments (Azure & AWS)
• Perform risk assessments and identify gaps in security coverage
• Research emerging threats, vulnerabilities, and evasion techniques related to M365 security
• Configure and manage identity and access management using Entra ID
• Develop technical artifacts including requirements, architecture diagrams, test plans, and implementation plans
• Collaborate with cross-functional teams including program management, SOC, security engineering, compliance, and system owners
• Support Proof of Concept (PoC) initiatives and conduct analysis of alternatives (AoA)
• Develop scope, cost estimates, and implementation schedules for M365 deployments
• Participate in business continuity and disaster recovery planning
• Interface with stakeholders and lead technical discussions and working groups
• Apply systems and software development lifecycle (SDLC) practices

Required Technical Skills

• Microsoft 365 Security Architecture and Administration
• MS Defender (EDR, Email Security)
• Microsoft Purview (DLP, Compliance, Governance, eDiscovery)
• Microsoft Entra ID (Identity and Access Management)
• Microsoft Intune (GPO policy management)
• Microsoft Sentinel
• SharePoint, Teams, OneDrive
• Azure AD and cloud security services
• Experience with hybrid, on-premises, and cloud (Azure & AWS) environments
• PowerShell scripting
• Security frameworks and compliance standards (NIST, ISO 27001, SOC2)
• Risk assessment, threat detection, and incident response
• Documentation of architecture, procedures, and technical reports

Qualifications & Experience

• Bachelor’s degree in Information Technology, Computer Science, Engineering, or related field
• 10+ years of experience in M365 security administration, deployment, and architecture
• Strong hands-on experience designing end-to-end M365 security solutions
• Experience providing technical leadership and oversight
• Microsoft 365 certifications (e.g., MS-102, MS-900)
• U.S. Citizenship required
• Ability to obtain Public Trust clearance (active clearance preferred)
• Strong analytical, problem-solving, communication, and presentation skills
• Ability to work independently and in collaborative environments

Work Environment

• Location: Washington, DC (Hybrid – 1 day onsite per week)
• Work Site: Government/Customer site
• Schedule: Standard business hours, 40 hours/week
• Duration: 6 months with potential extension or conversion