Security and Compliance Administrator

Summary

Join LeoTech, a company founded by former law enforcement officers, as a mid-level Microsoft 365 Security and Compliance Administrator. You will lead and implement secure collaboration practices across Microsoft 365 environments, emphasizing platform security and compliance readiness. SharePoint administration is a key aspect of this role. The ideal candidate possesses strong instincts for secure IT practices, understands compliance frameworks, and can independently execute tasks while knowing when to escalate. This position offers the opportunity to take ownership and make a significant impact on the company's security posture. You will work with a team of talented and collaborative coworkers in a dynamic and fast-paced environment. LeoTech offers a competitive salary and benefits package.

Requirements

• 5+ years total experience, including 3 years in an IT or security-related role where platform security or compliance was a consideration
• Hands-on experience with Microsoft 365 security administration, especially SharePoint and OneDrive
• Familiarity with compliance frameworks
• Working knowledge of Power Automate, Power BI, Dataverse, and identity & access management (IAM) concepts
• Able to work independently while knowing when to collaborate or escalate
• Strong written communication skills; able to write security-related SOPs, vendor assessments, and basic policy docs
• One or more security certifications (e.g., CompTIA Security+, SC-900, or equivalent) demonstrating foundational knowledge in cybersecurity

Responsibilities

• Implement and enforce security policies across Microsoft 365 tools, with a focus on access control, MFA, DLP, audit logging, and conditional access
• Contribute to compliance initiatives by executing policies, maintaining technical controls, and documenting internal processes
• Conduct and document access reviews, vendor security assessments, and recurring process checklists
• Support internal reviews of tools, third-party integrations, and platform changes, escalating risks as needed
• Communicate clearly between technical teams and non-security stakeholders to make expectations clear without unnecessary blockers
• Administer SharePoint Online: configure, review, and maintain sites, libraries, permission groups, content types, metadata, and document retention settings
• Enforce secure sharing practices, monitor site usage, and support collaboration needs across departments
• Integrate SharePoint with Power Automate, Power BI, and other platforms in a secure, governed manner
• Manage user lifecycle tasks: provisioning, deprovisioning, access audits, and enforcing least-privilege principles
• Build or review Power Automate flows for secure process automation
• Assist with integration of secure connectors to Dataverse, SQL, Egnyte, and external APIs
• Create and maintain clear, usable documentation, such as: Access control procedures, onboarding/offboarding checklists, change control and security procedures
• Support internal training and awareness related to secure platform usage
• Be comfortable saying “Let me check with InfoSec” and know when to pause, clarify, or escalate

Preferred Qualifications

• Experience with Microsoft Purview, Azure AD Conditional Access, or Microsoft Compliance Center
• Exposure to Egnyte, PowerShell, or advanced Power Platform governance
• Microsoft certifications such as PL-900

Benefits

• 3 weeks of paid vacation
• Competitive Salary
• Generous medical, dental, and vision plans
• Sick and paid holidays are offered