Quisitive

Senior Security Consultant, Microsoft

Quisitive

full-time

Posted on:

Location Type: Remote

Location: United States

Visit company website

Explore more

AI Apply
Apply

Job Level

Senior

Tech Stack

AzureCloud

About the role

  • Participate in end‑to‑end delivery of roadmap items produced in Security Coaching and Advisement sessions (identity, endpoint, data, app, network control planes).
  • Translate Zero Trust principles into tangible controls and guardrails across Entra ID (CA, MFA, PIM), Intune (hardening, ASR), Defender (Endpoint/Identity/Cloud Apps/M365), Sentinel (analytics, automation), and Microsoft Purview (labels, policies, DLP, Insider Risk, eDiscovery).
  • Define success criteria and validation steps; capture outcomes in status reports and executive summaries for SAW/QBR meetings.
  • Design and tune Sentinel analytics rules, UEBA, data connectors, and KQL queries; implement playbooks (Logic Apps) for triage and automated response.
  • Integrate Defender signals and Purview events into incident workflows; reduce mean time to detect/respond via targeted automation.
  • Collaborate with MDR/SecOps to align call-trees/escalations with ticketing processes; rationalize alert sources to minimize noise and maximize fidelity.
  • Lead Information Protection implementations: sensitivity labels, automatic/manual labeling, label-scoped encryption, and policy scoping for prioritized data sets.
  • Deploy Purview DLP for Exchange/SharePoint/OneDrive/Endpoints; build rules, exclusions, incident routing, and user education workflows.
  • Stand up Insider Risk indicators, policies, and triage processes; ensure appropriate privacy/configuration baselines and stakeholder governance.
  • Guide eDiscovery (Standard/Premium): case design, hold/collection strategies, review workflows, legal/compliance stakeholder alignment.
  • Establish data lifecycle and retention policies that balance security, compliance, and usability.
  • Harden identity: Conditional Access, phishing‑resistant MFA, access reviews, privileged access management (PIM), break‑glass patterns.
  • Harden endpoints: Intune baselines, configuration profiles, ASR rules, endpoint DLP, device compliance gates; integrate with Defender for Endpoint.
  • Harden cloud services: Defender for Cloud Apps (discovery, session policies), secure collaboration and guest access, email security in Defender for Office 365.
  • Assist with mapping controls to NIST CSF, CIS, HIPAA, SOC 2, and customer‑specific requirements; produce evidence, control narratives, and remediation plans.
  • Partner with Security Coaches to convert framework gaps into a sequenced, budget‑aware case backlog and measurable milestones.
  • Assist and/or lead technical workshops, discovery sessions, and monthly stand‑ups; present findings and recommendations to both technical and executive audiences.
  • Create clear artifacts (runbooks, standard operating procedures, reference architectures) and mentor associate consultants on delivery quality.
  • Proactively identify account growth opportunities and collaborate with CSMs to shape scope.

Requirements

  • 5–8+ years in cloud/security consulting or operations, with 3+ years focused on Microsoft security across M365 & Azure.
  • Demonstrable depth in at least three of the following:
  • Microsoft Purview: Information Protection (labels/auto-labeling), DLP (service & endpoint), Insider Risk, eDiscovery (Std/Premium), Records/Retention.
  • Microsoft Sentinel: data connectors, KQL analytics, UEBA, playbooks/Logic Apps, SOAR patterns.
  • Microsoft Defender: Endpoint, Identity, Office 365, Cloud Apps; configuration and tuning at scale.
  • Entra ID (Azure AD): Conditional Access, MFA, PIM, Access Reviews, identity governance.
  • Intune/Endpoint Management: baselines, device compliance, ASR, policy hardening.
  • Experience mapping controls to HIPAA, NIST CSF, CIS, SOC 2 and producing audit-ready artifacts.
  • Scripting/automation fundamentals: ability to operationalize repeatable patterns.
  • Strong consulting competencies: customer discovery, backlog creation, estimation, and status/reporting; executive communication skills.
Benefits
  • continuous learning opportunities
  • certifications
  • career development programs
Applicant Tracking System Keywords

Tip: use these terms in your resume and cover letter to boost ATS matches.

Hard Skills & Tools
Microsoft PurviewMicrosoft SentinelMicrosoft DefenderEntra IDIntuneKQLDLPASRConditional AccessIdentity governance
Soft Skills
consulting competenciesexecutive communicationcustomer discoverybacklog creationstatus reportingmentoringcollaborationpresentation skillsleadershipproblem-solving