With Intelligence

Azure Security Engineer – Contract

With Intelligence

contract

Posted on:

Location Type: Hybrid

Location: LondonUnited Kingdom

Visit company website

Explore more

AI Apply
Apply

Tech Stack

AzureCloudVault

About the role

  • **Core Responsibilities**
  • **Microsoft Defender Suite (Primary Requirement)**
  • Monitor and remediate vulnerabilities surfaced by **Defender for Cloud**
  • Manage and optimise **Defender for Endpoint**, attack surface reduction and device hardening
  • Operate and tune **External Attack Surface Management (EASM)** findings and asset exposure
  • Improve Secure Score and continuously reduce risk through technical remediation
  • Collaborate with SOC to triage, respond, and close findings
  • **Data Protection & Compliance (Purview-Led)**
  • Implement and manage **Purview** (DLP, sensitivity labels, insider risk, records)
  • Assist with compliance uplift against **ISO 27001, SOC2, GDPR, NIS2**
  • Maintain audit trails, evidence, runbooks, and security documentation
  • **Vulnerability & Configuration Hardening**
  • Hands-on remediation — patching, configuration fixes, policy deployments
  • Work with product teams to close findings rather than just escalate
  • Improve posture for identity, endpoints, networking, and cloud workloads
  • Implement conditional access, PIM, key vault, and encryption standards
  • **Detection, Monitoring & Response**
  • Tune Sentinel analytics, automation rules, alert noise reduction
  • Support incident investigation, triage, threat hunting as needed
  • Generate security metrics, reporting, and measurable improvement trends
  • **Collaboration & Delivery**
  • Work with DevOps, Infra, Desktop, and Cloud teams on real-world fixes
  • Translate risk into understandable action for stakeholders
  • Create repeatable processes to shorten future remediation cycles

Requirements

  • **Must-Have**
  • ✓ Strong hands-on experience with **Defender for Cloud, Defender for Endpoint, EASM**
  • ✓ Working knowledge of **Purview, DLP, sensitivity labels, insider risk**
  • ✓ Demonstrable history of closing vulnerabilities and improving posture
  • ✓ Azure identity & access security (Entra ID, Conditional Access, PIM)
  • ✓ PowerShell/MS Graph for automation or scripted remediation
  • **Nice to Have**
  • Sentinel exposure (analytic rules, workbooks, automation)
  • Understanding of Zero Trust principles and Microsoft Compliance Manager
  • Experience working in regulated or audited environments
  • **Certifications Required**
  • AZ-500 – Azure Security Engineer Associate
  • SC-100 (or commitment to completion within 12 months)
  • Plus one of → MS-500 or SC-400 or SC-900
Benefits
  • **3 month initial contract outside IR35**
Applicant Tracking System Keywords

Tip: use these terms in your resume and cover letter to boost ATS matches.

Hard Skills & Tools
Defender for CloudDefender for EndpointExternal Attack Surface ManagementData Loss Preventionsensitivity labelsinsider riskAzure identity & access securityPowerShellMS Graphvulnerability remediation
Soft Skills
collaborationcommunicationproblem-solvingstakeholder engagementprocess improvement
Certifications
AZ-500SC-100MS-500SC-400SC-900