M365 Security Consultant

As an M365 Consultant/Senior Consultant, you will help transform clients’ cybersecurity posture by designing and implementing advanced Microsoft Threat Protection technologies. You will work directly with clients in a consulting capacity, supporting medium to large enterprise environments and contributing to robust Cyber Defence strategies across endpoints, identities, cloud, and collaboration platforms.

Key Responsibilities

• Design and implement AV/EDR solutions (e.g., Microsoft Defender for Endpoint) to detect and respond to cyber threats across major operating systems.

• Protect email, messaging, and collaboration platforms from phishing, spear phishing, BEC, and identity-related attacks.

• Develop and maintain cyber defence use cases, correlation rules, and attack chain detections across disparate systems.

• Design, implement, and integrate SIEM solutions—particularly Microsoft Sentinel—into Security Operations.

• Perform threat hunting across endpoints, identities, networking, cloud, and collaboration platforms in the Microsoft ecosystem.

• Handle L2-level incidents leveraging Microsoft Sentinel and Microsoft Defender tools.

• Support incident response, triage, threat modelling, and vulnerability remediation within Azure-hosted environments.

• Create, run, and troubleshoot Azure Logic Apps, playbooks, and Sentinel automation components.

• Collaborate with business and security stakeholders to define and enhance security standards and improve security posture.

.

• Technical Expertise: Proven experience with Microsoft Sentinel (architecture, deployment, analytics rules, workbooks, playbooks); Microsoft Defender for Endpoint and Defender for Cloud; SIEM/SOC operations; Azure Logic Apps; vulnerability remediation; incident response.

• Threat Hunting & Detection: Hands-on experience using KQL, Microsoft Defender XDR, and threat intelligence sources to hunt threats and support investigations.

• Cyber Defence & Infrastructure Security: Strong understanding of cyber defence concepts, infrastructure security, and troubleshooting across the Microsoft ecosystem.

• Methodology: Familiarity with agile methodologies and backlog management.

• Collaboration & Communication: Strong communication skills, ability to work with cross-functional teams, and experience in client-facing environments.

• Technologies: Knowledge of Microsoft 365, Azure, Windows, Linux, and mobile operating systems.

• SC100 or equivalent desirable

Characteristics for Success

• Consultative and collaborative mindset; strong relationship builder.

• Resilient, adaptable, intellectually curious.

• Passionate about Microsoft security technologies (M365 Threat Protection, Defender suite, O365, Identity).

• Problem-solver, quality-driven, self-motivated, and innovative.

.