End User Services – Digital Workplace Security Engineer

• Bachelor’s degree in IT, Computer Science, Information Systems, or related field.
  
• 5+ years experience in cybersecurity, security operations, Modern Workplace engineering, or identity management.
  
• Prior experience in enterprise IT environments, SOC operations, or security engineering.
  
• Hands‑on experience architecting and supporting Modern Workplace technologies.
  

Security Engineering & Governance

• Implement and maintain security baselines across identity, endpoints, messaging, data, and collaboration workloads (Microsoft Security Baselines, CIS Benchmarks).
  
• Deploy, configure, and operationalize: Microsoft Defender XDR, Defender for Cloud (cloud & hybrid posture management), Microsoft Sentinel (SIEM/SOAR operations and automation).
  
• Develop, tune, and maintain: SIEM/SOAR use cases, Detection rules, KQL-based analytics, Automation playbooks.
  
• Lead security incident investigations from detection, containment, root-cause analysis and remediation across identity, endpoints, messaging, and email security.
  
• Implement and maintain Microsoft Purview governance controls: Retention & records management, eDiscovery (Standard & Premium), Audit & Insider Risk, Information Protection & DLP.
  

Modern Workplace Architecture & Engineering

• Design secure architectures across: Entra ID, AD DS, hybrid identity, Intune & ManageEngine Endpoint Central, Conditional Access, Zero Trust policies, Role-based access & identity governance.
  
• Architect secure and resilient messaging solutions: Exchange Online & Exchange Server, Mimecast (email security, threat protection, continuity)
  
• Lead implementation and modernization projects including:
  
• Identity hardening & MFA/Conditional Access modernization
  
• Endpoint standardization (security baselines, configuration policies)
  
• Migration projects (identity, email, device, security platforms)
  
• Defender XDR and SIEM modernization
  
• ManageEngine platform rollout and optimization
  
• Conduct technical health checks, configuration assessments, risk evaluations, and environment hardening across all EUS technologies. undefined
  

Escalation, Operations & Service Reliability

• Serve as L3/L4 escalation authority for complex security, identity, endpoint, messaging, and cloud incidents.
  
• Ensure SLA compliance for P1/P2 incidents through advanced troubleshooting and root-cause analysis.
  
• Maintain operational reliability, security posture, and performance across all Digital Workplace platforms.
  
• Drive continuous improvement cycles to enhance availability, compliance alignment, and threat resilience.
  
• undefined
  

Presales, Advisory & Client Engagement

• Lead security-focused presales engagements including workshops, assessments, PoCs, and RFP technical responses.
  
• Produce secure, scalable solution architectures aligned with Microsoft security frameworks (Zero Trust, MCRA frameworks).
  
• Translate business risks and compliance requirements into actionable technical designs.
  
• Act as a trusted advisor on:
  
• Cyber posture improvement
  
• Microsoft security & compliance adoption
  
• Governance & data protection
  
• Workplace modernization strategies
  
• Participate in account planning with pre-sales teams.