Microsoft Defender Operations Support

Role: Microsoft Defender Operations Support

Location: Bangalore (Hybrid)

We are seeking a skilled Microsoft Defender Operations Support Specialist to join our IT Security Operations team. This role involves providing Level 2 and Level 3 support for endpoint management and identity protection using Microsoft Defender. The ideal candidate will have a strong background in cybersecurity, endpoint management, and identity protection, with experience in handling complex security incidents and optimizing security operations.

Key Responsibilities

• Endpoint Management:
• Monitor and manage endpoint security using Microsoft Defender for Endpoint.
• Perform advanced troubleshooting and remediation of endpoint security issues.
• Implement and maintain endpoint security policies and configurations.
• Conduct regular security assessments and vulnerability scans on endpoints.
• Identity Protection:
• Manage and support Microsoft Defender for Identity.
• Investigate and respond to identity-related security incidents.
• Implement identity protection policies and monitor for suspicious activities.
• Collaborate with the identity management team to enhance security posture.
• Incident Response:
• Provide L2/L3 support for security incidents, including malware outbreaks, phishing attacks, and unauthorized access.
• Conduct root cause analysis and develop mitigation strategies.
• Coordinate with other IT teams to resolve security incidents and implement preventive measures.
• Security Operations:
• Maintain and optimize security monitoring tools and systems.
• Develop and implement security automation and orchestration processes.
• Create and maintain documentation for security procedures and incident response.
• Collaboration and Communication:
• Work closely with the Security Operations Center (SOC) team to ensure seamless integration of Microsoft Defender solutions.
• Provide training and guidance to L1 support staff and other team members.
• Communicate effectively with stakeholders regarding security incidents and resolutions.
  

Qualifications

• Bachelor's degree in computer science, information technology, or a related field.
• Minimum of 3 years of experience in cybersecurity, endpoint management, and identity protection.
• Proficiency in Microsoft Defender for Endpoint and Microsoft Defender for Identity.
• Strong analytical and problem-solving skills.
• Excellent communication and collaboration abilities.
• Relevant certifications such as CISSP, CEH, or Microsoft Certified: Security, Compliance, and Identity Fundamentals are a plus.
  
  

Preferred Skills

• Experience with security automation and orchestration tools.
• Knowledge of SIEM solutions and threat intelligence platforms.
• Familiarity with cloud security and hybrid environments.
  
  

Simeio is an equal opportunity employer. If you require assistance with completing this application, interviewing, completing any pre-employment testing, or otherwise participating in the employee selection process, please direct your inquiries to any of the recruitment team at [email protected] or +1 404-882-3700.