Senior Security Engineer - Microsoft Defender and Purview

Help AG is looking for a talented and experienced Senior Security Engineer - Microsoft Defender and Purview who will be responsible for designing, implementing, and managing enterprise security solutions using Microsoft security technologies across cloud and hybrid environments.

Responsibilities

• Design, implement, and manage Microsoft Defender security solutions across enterprise environments.

  
  

• Configure and optimize Microsoft Purview policies including DLP, sensitivity labels, retention, and compliance controls.

  
  

• Perform threat hunting, incident investigation, and response using Microsoft Defender XDR and Sentinel.

  
  

• Integrate security logs and onboard cloud/on-premise workloads into Microsoft Sentinel.

  
  

• Develop and tune analytics rules, workbooks, automation playbooks, and alert correlation use cases.

  
  

• Implement Zero Trust security controls using Entra ID, Conditional Access, and PIM.

  
  

• Conduct security assessments, gap analysis, and recommend remediation actions aligned with Microsoft security best practices.

  
  

• Support compliance initiatives related to data protection, governance, and audit requirements.

  
  

• Collaborate with SOC, infrastructure, cloud, and application teams for security operations and remediation activities.

  
  

• Prepare technical documentation, SOPs, HLD/LLD, and operational handover documents.

  
  

Qualifications & Skills

• Bachelor’s degree in Computer Science, Information Security, Information Technology, or related field.

  
  

• 5+ years of experience in cybersecurity with minimum 3+ years focused on Azure and Microsoft Security technologies.

  
  

• Preferred Certifications:

  
  

  • Microsoft Certified: Cybersecurity Architect Expert

    
    

  • Microsoft Certified: Security Operations Analyst Associate (SC-200)

    
    

  • Microsoft Certified: Information Protection and Compliance Administrator Associate (SC-400)

    
    

  • Microsoft Certified: Identity and Access Administrator Associate (SC-300)

    
    

  • Microsoft Certified: Azure Security Engineer Associate (AZ-500)

    
    

• Strong hands-on experience with Microsoft Defender Suite and Microsoft Purview.

  
  

• Experience in Microsoft Sentinel deployment, onboarding, and SIEM operations.

  
  

• Good understanding of cloud security architecture and enterprise security operations.

  
  

• Experience with KQL, PowerShell scripting, and automation is preferred.

  
  

• Knowledge of compliance standards such as ISO 27001, NIST, GDPR, or CIS benchmarks is an advantage.

  
  

• Expertise in the Following Technologies

  
  

  • Microsoft Defender XDR

    
    

    • Microsoft Defender for Endpoint (MDE)

      
      

    • Microsoft Defender for Office 365

      
      

    • Microsoft Defender for Identity

      
      

    • Microsoft Defender for Cloud Apps

      
      

    • Microsoft Defender for Cloud

      
      

  • Microsoft Purview

    
    

    • Data Loss Prevention (DLP)

      
      

    • Information Protection & Sensitivity Labels

      
      

    • Insider Risk Management

      
      

    • Data Governance & Compliance

      
      

    • eDiscovery & Audit

      
      

  • Microsoft Sentinel (Backup Skill)

    
    

    • SIEM & SOAR integration

      
      

    • Analytics Rules & Playbooks

      
      

    • KQL Query Development

      
      

    • Incident Investigation & Automation

      
      

  • Azure Security Technologies

    
    

    • Microsoft Entra ID (Azure AD)

      
      

    • Conditional Access & MFA

      
      

    • Privileged Identity Management (PIM)

      
      

    • Azure Policy & Secure Score

      
      

    • Key Vault & Managed Identities

      
      

  • Security & Infrastructure Skills

    
    

    • Incident Response & Threat Hunting

      
      

    • Security Monitoring & Log Analysis

      
      

    • Identity & Access Management (IAM)

      
      

    • Cloud Security Posture Management (CSPM)

      
      

    • PowerShell / KQL Scripting

      
      

    • Windows & Linux Security Administration

      
      

• Strong troubleshooting, analytical, and communication skills.

  
  

Benefits

• Health insurance with one of the leading global providers for medical insurance.

  
  

• Career progression and growth through challenging projects and work.

  
  

• Employee engagement and wellness campaigns activities throughout the year.

  
  

• Annual Flight tickets to home country.

  
  

• Excellent learning and development opportunities.

  
  

• Flexible/Hybrid working environment.

  
  

• Inclusive and diverse working environment.

  
  

• Open door policy

  
  

About Us:

Help AG is the cybersecurity arm of e& enterprise (formerly Etisalat Digital) and provides leading enterprise businesses and governments across the Middle East with strategic consultancy combined with tailored information security services and solutions that address their diverse requirements, enabling them to evolve securely with a competitive edge.

Present in the Middle East since 2004, Help AG was strategically acquired by e& (formerly Etisalat Group) in Feb 2020, hence creating a cybersecurity and digital transformation powerhouse in the region.

Help AG has firmly established itself as the region's trusted IT security advisor by remaining vendor-agnostic, trustworthy, independent, and cybersecurity focused. With best-of-breed technologies from industry-leading vendor partners, expertly qualified service delivery teams and a state-of-the-art consulting practice, Help AG delivers unmatched value to its customers by strengthening their cyber defenses and safeguarding their business.