Microsoft Defender for Endpoint
Mandatory Experience : 5+ Years
Location : India / Bangalore
Mode: Hybrid
Requirement:
As a Microsoft Defender for Endpoint and Defender for Cloud Specialist, you will design, deploy, manage, and optimize endpoint and cloud security solutions using the Microsoft Defender suite. Youll work closely with SOC teams, IT infrastructure, DevOps, and cloud teams to detect, investigate, respond to threats, and improve the security posture of corporate devices and cloud environments.
Required Skills & Competencies:
- Endpoint Security (Microsoft Defender for Endpoint)
- Deploy, configure, and manage Microsoft Defender for Endpoint across desktops, servers, and mobile endpoints.
- Monitor endpoint alerts, investigate threats, and lead incident response activities.
- Develop and tune EDR/XDR detection rules, analytic rules, and policies to reduce false positives and improve detection fidelity.
- Conduct advanced threat hunting, forensic analysis, and root cause investigation.
- Integrate endpoint telemetry with SIEM/SOAR (e.g., Microsoft Sentinel) for enhanced visibility and automation.
- Cloud Security (Microsoft Defender for Cloud)
- Implement and manage Microsoft Defender for Cloud to assess and improve security posture of Azure and other cloud workloads.
- Configure cloud security policies, hardening recommendations, and compliance controls.
- Conduct cloud risk assessments, vulnerability management, and recommend risk mitigation actions.
- Collaborate with cloud/DevOps teams on secure architecture practices and integration of Defender telemetry into monitoring solutions. Windows Management Experts Staffing
- Participate in cloud incident response part of broader security operations. Cross-Functional & Operational Duties
- Work closely with SOC, compliance, identity (Azure AD/Entra), and infrastructure teams.
- Produce regular security posture reports, incident reports, and documentation (SOPs, playbooks).
- Conduct threat modelling, security reviews, and improvement initiatives.
- Provide mentoring and knowledge transfer to junior security engineers and analysts.
- Stay up to date with emerging threats, MS security enhancements, and industry best practices.
