Security Operations & Architecture Manage the administration and optimization of Microsoft 365 Defender, Microsoft Defender for Endpoint, Defender for Identity, and Defender for Office 365 Configure and manage Microsoft Intune for secure endpoint management, application protection policies, and device compliance Develop and manage Microsoft Sentinel workbooks, analytics rules, and playbooks for security incident response and automation Implement Azure AD Conditional Access, MFA policies, role-based access control (RBAC), and Identity Protection Cloud Security & Governance Manage and audit Azure Security Center, Microsoft Purview, Compliance Manager, and M 365 Security Center Lead and conduct regular security baselines, risk assessments, and vulnerability scans Create and maintain policies for data loss prevention (DLP), information protection, and compliance reporting Experience in Azure networking include creating V - Ms, AVD, NSG. Compliance & Framework Alignment Support internal/external audits and assessments related to NIST 800-171, CMMC, and DFARS Maintain compliance evidence repositories and remediation documentation Assist in SSP, POA&M, and security control implementation documentation Collaboration & Incident Response Work with IT, DevOps, and Compliance teams to support secure deployment practices. Investigate security incidents and assist in root cause analysis and response. Develop SOPs, runbooks, and training materials for internal security awareness. Qualifications:Required:6 years of hands-on experience with Microsoft 365 and Azure security tools. Deep understanding of Microsoft Intune, Defender XDR, Azure AD, and Microsoft Sentinel. Familiarity with Microsoft Purview, Compliance Manager, and M 365 DLP - Knowledge of NIST SP 800-171 and CMMC Level 2 requirements. Experience with regulatory/compliance documentation (SSP, POA&M)Excellent troubleshooting and analytical skills. Bachelor s degree in Cybersecurity, Information Technology, or related field. Preferred:Microsoft certifications such as:SC-300 (Identity and Access Administrator)SC-200 (Security Operations Analyst)MS-500 (Security Administrator)AZ-500 (Azure Security Engineer)Experience with GCC High cloud environments. EOE/ ADAIND 123