Cloud Security Engineer

Summary

Join GuidePoint Security as a Microsoft Cloud Security Engineer and contribute to the security of our clients' Azure and Microsoft 365 environments. You will assess security postures, develop roadmaps, design architecture for security service adoption, and implement solutions. This role requires strong experience with Azure IaaS and PaaS services, Microsoft Cloud services (Microsoft 365, Teams, SharePoint, etc.), and security best practices. You will work directly with clients, communicate compliance management, and contribute to technical design sessions. The ideal candidate possesses extensive experience in Microsoft Cloud technologies and security, along with strong communication and problem-solving skills. GuidePoint offers a remote-work environment and a comprehensive benefits package.

Requirements

• 6 or more years of IT experience or related field with at least 4 years of experience administering and supporting Azure/Office/M365 platform technologies including but not limited to Exchange, OneDrive, Windows 10, Outlook, SharePoint Online, Teams, etc
• Experience with Lifecycle Management
• Minimum 2 years of experience with M365 security suite capabilities such as: Defender for Cloud apps, Conditional Access, Microsoft XDR, Compliance Center, Insider Threat Management, DLP, MCAS, EOP, MFA, PIP, PIM, etc
• Minimum 2 years of experience with Microsoft Azure capabilities such as: Defender for Cloud. Sentinel, WAF, APIM, Azure Policy, etc
• Demonstrate a thorough understanding of Microsoft Cloud services including identity, security, data, application, infrastructure, networking and workplace collaboration services
• Candidate should have at least one Microsoft certification such as Microsoft 365 Security Administrator or Azure Security Engineer Associate, or be certified within 3 months of hire

Responsibilities

• Use knowledge of Microsoft Azure, M365, and EM+S products, methods, and solutions to design, engineer and make technical recommendations on Microsoft 365 Modern Workplace, Compliance and overall Microsoft Cloud Security for GuidePoint Security clients
• Work with client stakeholders by communicating compliance management for adopted M365 or Azure products and implement best practices for M365 and Azure Security
• Actively make contributions to technical design sessions and prepare technical design documentation for architectural reviews
• Utilize outside the box thinking to define new and improved solutions or optimize current processes and tools
• Manage and support Microsoft Entra ID, identity life-cycle management, process automation and improvement
• Demonstrate understanding of Zero Trust principles and how they apply to the Microsoft Azure and M365 platform
• Align business requirements with Azure, M365 applications, services and features
• Conduct security assessments of Azure, Microsoft 365 and Microsoft services by leveraging cloud security standards established by CSA CCM, CIS, NIST and GuidePoint Security’s own cloud controls framework
• Draft cloud security deliverables based on assessment findings
• Work with subject-matter experts from other GuidePoint Security Information Assurance practices to understand internal process and functional requirements (e.g., GRC, AppSec, IAM, DFIR, Penetration Testing)
• Accurately and consistently document findings and recommendations that are easily digested by clients, including procedural documentation and technical briefings
• Demonstrate strong interpersonal and verbal communication skills
• Proven ability to meet or exceed project objective and user expectations
• Possess strong client-facing and communication skills (written and verbal)
• Experience reading, writing, and interpreting technical documentation and procedure manuals
• Solid understanding of cloud computing concepts, architectures, virtualization, containers, infrastructure security, data security, encryption, management plane, business continuity, identity entitlement and access management

Preferred Qualifications

Preferred experience with Azure Resource Manager, PowerShell, KQL or Terraform

Benefits

• Remote workforce primarily (U.S. based only, some travel may be required for certain positions, working on-site may be required for Federal positions)
• 100% employer-paid medical premiums (employee only $0 deductible and HSA plans) along with 75% employer-paid family contributions
• 100% employer-paid dental premiums (employee only) along with 75% employer-paid family contributions
• 12 corporate holidays and a Flexible Time Off (FTO) program
• Healthy mobile phone and home internet allowance
• Eligibility for retirement plan after 2 months at open enrollment
• Pet Benefit Option