To Apply for this Job Click Here
Job Title: Microsoft 365 Security Engineer (Remote)
At Nuuaa, you will be supporting our growing operations and clients. We are now seeking an Microsoft 365 Security Engineer to join our team. This is a fully remote role, but some client site visits in the West of Ireland will be required. Salary to be determined based on experience level.
Overview: The Microsoft 365 Security Engineer is responsible for securing and managing a fully cloud‑native, serverless environment built on Microsoft 365, Entra ID, Intune, Defender, and Sentinel. The role focuses on identity security, Conditional Access, device compliance, collaboration governance, and continuous security posture improvement. The engineer ensures stable operations, strong security controls, and alignment with cyber‑security and compliance requirements, without any on‑premises or Azure infrastructure administration.
Key Responsibilities
Identity & Security Management
Maintain, monitor, and continuously improve MFA, Conditional Access, identity protection policies, and privileged access controls.
Conduct monthly reviews to improve Microsoft Secure Score and maintain cyber‑security alignment.
Manage Microsoft Defender for Endpoint, Defender for Office 365, Defender for Cloud Apps, and Defender for Identity.
Administer Microsoft Sentinel including analytics rules, automation runbooks, incident correlation, and integration with SOC processes.
Support the implementation and governance of Information Barriers to control communication and collaboration between defined groups.
Maintain Data Loss Prevention (DLP) policies to protect sensitive information and prevent unauthorised data leakage.
Compliance & Governance
Support the development and governance of Data Classification policies and the use of sensitivity labels.
Manage retention policies to support secure information lifecycle management.
Operate within a Zero Trust governance model across identity, device, and application access.
Microsoft 365 Administration
Administer Exchange Online, SharePoint, OneDrive, Teams, and related cloud workloads.
Manage RBAC, licence assignments, dynamic groups, admin units, access reviews, and delegated permissions.
Administer Teams Phone, including call queues, routing, device setups, and analytics.
Manage enterprise applications and app registrations, including service principals, API permissions, SSO configuration, consent policies, and ongoing security reviews.
Endpoint & Intune Management
Manage Windows, iOS, and Android devices through Intune MDM/MAM.
Maintain compliance baselines, configuration profiles, security baselines, and app protection policies.
Oversee application updates, PatchMyPC Cloud integration, Windows Update for Business, and driver policies.
Maintain BitLocker enforcement, local admin removal automation, onboarding/offboarding processes, and geo‑fencing.
Support device governance standards including single‑device or restricted‑device policies.
Windows & Office Management
Maintain Windows Autopilot deployment profiles and provisioning workflows.
Manage Microsoft 365 Apps updates, Edge browser controls, store restrictions, and application policies.
Backup & Recovery
Monitor and maintain cloud‑to‑cloud backup solutions for Microsoft 365 workloads.
Contribute to business continuity and disaster recovery planning for critical cloud services.
Support & Operations
Provide tier 2/3 support across Microsoft 365, identity, security, and device management.
Troubleshoot identity issues, Conditional Access conflicts, device compliance failures, mail flow problems, and collaboration platform issues.
Maintain up‑to‑date documentation, runbooks, and operational procedures.
Cloud‑Native Identity & Application Governance
Support identity governance workflows including secure provisioning and deprovisioning.
Manage licence usage, optimisation, and reporting.
Ensure secure operation of enterprise applications without any server, VM, or Azure infrastructure responsibilities.
Continuous Improvement
Monitor Microsoft roadmap developments, feature changes, and deprecations.
Implement process and configuration improvements based on audit findings and evolving cyber‑security standards.
Enhance automation, standardisation, and self‑service features to reduce operational overhead.
Preferred Certifications
MS‑102 – Microsoft 365 Administrator
SC‑300 – Identity and Access Administrator
MS‑500 – Security Administrator
SC‑200 – Security Operations Analyst
To Apply for this Job Click Here
#J-18808-Ljbffr