Responsible for the hands-on implementation, configuration, and ongoing management of security controls across ai2io’s Microsoft 365 and Azure environments.
Implements and maintains security controls across Microsoft Defender, Purview, Entra ID, Intune, and Azure services.
Remediates security gaps identified through risk assessments, vulnerability scans, compliance audits, and stakeholder security reviews.
Supports security operations by tuning alerts, building automation, developing runbooks, and providing Tier 2–3 incident response support.
Collaborates with the Rapid7 MDR team to ensure effective detection coverage, incident escalation, and agent health across all managed environments.
Assists in maintaining compliance with organizational security standards and applicable frameworks (NIST CSF, CIS Benchmarks, SOC 2).

Requirements

Hands-on experience with Microsoft Defender suite (Endpoint, Identity, Office 365, Cloud Apps) including policy configuration, alert tuning, and incident investigation.
Experience with Entra ID (Azure AD) including Conditional Access, PIM, RBAC, and application registrations.
Experience with Microsoft Intune for endpoint management, compliance policies, and configuration profiles.
Experience with Microsoft Purview controls including DLP, sensitivity labels, and retention policies.
Experience with Azure security services including Azure Policy, network security groups, Key Vault, and Azure Monitor.
Experience with vulnerability management or MDR platforms, preferably Rapid7 InsightVM/InsightIDR, including agent deployment and scan configuration.
Demonstrated understanding of endpoint hardening principles including CIS Benchmarks and Intune security baseline implementation.
Scripting capability (PowerShell preferred) for automation and administrative tasks.
Ability to work across multiple Microsoft 365 tenants simultaneously and maintain consistent configurations.
Strong troubleshooting and analytical skills with the ability to investigate and resolve complex security issues.
Clear written and verbal communication skills, including the ability to document procedures and explain technical issues to non-technical stakeholders.
Ability to manage multiple priorities and coordinate remediation activities across teams.
Ability to work effectively both independently and as part of a small, collaborative security team.

Benefits

Choice of comprehensive medical plans (including two PPO-style plans and a HDHP w/ HSA option)
Flex spending accounts (FSA)
Dental and vision plans
Comprehensive medical, dental and vision benefits extended to spouse / domestic partner and dependent children up to age 26
401k with company match and self-directed brokerage account option
PTO including additional paid time off during the last week of the year
Company paid life insurance coverage for employees and their eligible dependents
Short and long-term disability, AD&D coverage
Professional development opportunities, tuition reimbursement and professional licensing assistance
Paid parental leave after one year of employment

Applicant Tracking System Keywords

Tip: use these terms in your resume and cover letter to boost ATS matches.

Hard Skills & Tools

Microsoft DefenderEntra IDMicrosoft IntuneMicrosoft PurviewAzure security servicesvulnerability managementPowerShellendpoint hardeningincident responseautomation

Soft Skills

troubleshootinganalytical skillscommunication skillsdocumentationprioritizationcoordinationcollaborationindependence