Defender for Endpoint Engineer - Security

A Leading Financial Services business are looking to hire a Microsoft Defender Engineer - ideally with experience across build and implementations.

  • £650 - £800 per day (Inside IR35/Umbrella or PAYE only)
  • The role is an initial 12 month contract with scope to roll into a couple of years
  • The role is a Hybrid working (3 days a week in the office, 2 from home)
  • Based in London

Microsoft Defender Engineer/Consultant Description

The Microsoft Defender Engineer/Consultant will contribute to technical design, deployment, consultancy, changes and incidents management in customer's environment.

Duties and Responsibilities

The successful Security Engineer will be responsible for the following:

  • Create architectures (High Level Design and Low Level Design).
  • Manage the deployment, configuration, ongoing maintenance and troubleshooting Defender solutions.
  • Assess the health of assets directly and via the Defender portal
  • Collaborate with IT teams to integrate security solutions across the organization.
  • Provide support and knowledge transfer to staff on Defender best practices and tools.
  • Develop and maintain security policies, procedures, and documentation related to Defender implementations.
  • Stay up-to-date with the latest security threats and trends, and recommend improvements to security architecture.
  • Participate in security audits and compliance assessments.
  • Support creation of business as usual processes.

Qualifications, Skills and Experience

  • 3+ years of experience in IT security, specifically in designing and implementing endpoint protection and identity security solutions.
  • Demonstrable experience in end-to-end project life cycle of both Microsoft Defender for Endpoint and Defender for Identity. Design, Test, Implement and monitor for continuous improvement.
  • Knowledge of security frameworks and regulations (NIST, ISO 27001, GDPR, etc.).
  • Willingness to provide value at all levels within a project from actively troubleshooting an endpoint, to creating powershell scripts to designing solutions
  • Team-oriented and collaborative mindset.
  • Precise attention to detail and accuracy.
  • Relevant certifications (e.g., Microsoft Certified: Security, Compliance, and Identity Fundamentals, CompTIA Security+, etc.).
  • Experience with SIEM tools and incident response processes.
  • Familiarity with scripting languages (PowerShell, Python) for automation.
  • Endpoint - moving to Defender for Endpoint
  • Looking at end user devices.
  • Project will include a review of assets before even get there.
  • Deploy from beginning, design, configure, test and rollout

Role:

  • Defender for Endpoint Engineer
  • Very senior, experienced engineer
  • Lead design, roll sleeves up, do configuration, figure out why
  • Rollout and troubleshooting

Design vs Engineer - will start off with a lot more design and architecture, then will need to do more of the engineer work. Will move throughout the project.

  • Size of the estate - absolutely makes a difference - if rolled out to 300 - won't be enough.
  • Scale here is talking 1000's of assets.
  • Needs to be at volume and working across complex estate
  • Modern and old school tooling - need to be able to look at both.
  • Defender deployed in multiple different ways - need experienced individual
  • Azure Identity Protection - AIP - Security Professional
  • 2000 Assets plus (1000 laptops, desktops, servers)
  • Typically what seems to work - Security Engineer, Previously Microsoft Windows Engineer
Apply