Senior Cybersecurity Consultant leading IT - Security projects for SMBs and key accounts in Germany. Responsibilities include project planning, client advisory, and technical implementation.
About the role
- Azure Security Engineer required to remediate vulnerabilities in a hybrid environment. Focusing on Microsoft Defender Suite and improving security posture across Azure and endpoints.
Responsibilities
- **Core Responsibilities**
- **Microsoft Defender Suite (Primary Requirement)**
- Monitor and remediate vulnerabilities surfaced by **Defender for Cloud**
- Manage and optimise **Defender for Endpoint**, attack surface reduction and device hardening
- Operate and tune **External Attack Surface Management (EASM)** findings and asset exposure
- Improve Secure Score and continuously reduce risk through technical remediation
- Collaborate with SOC to triage, respond, and close findings
- **Data Protection & Compliance (Purview-Led)**
- Implement and manage **Purview** (DLP, sensitivity labels, insider risk, records)
- Assist with compliance uplift against **ISO 27001, SOC2, GDPR, NIS2**
- Maintain audit trails, evidence, runbooks, and security documentation
- **Vulnerability & Configuration Hardening**
- Hands-on remediation — patching, configuration fixes, policy deployments
- Work with product teams to close findings rather than just escalate
- Improve posture for identity, endpoints, networking, and cloud workloads
- Implement conditional access, PIM, key vault, and encryption standards
- **Detection, Monitoring & Response**
- Tune Sentinel analytics, automation rules, alert noise reduction
- Support incident investigation, triage, threat hunting as needed
- Generate security metrics, reporting, and measurable improvement trends
- **Collaboration & Delivery**
- Work with DevOps, Infra, Desktop, and Cloud teams on real-world fixes
- Translate risk into understandable action for stakeholders
- Create repeatable processes to shorten future remediation cycles
Requirements
- **Must-Have**
- ✓ Strong hands-on experience with **Defender for Cloud, Defender for Endpoint, EASM**
- ✓ Working knowledge of **Purview, DLP, sensitivity labels, insider risk**
- ✓ Demonstrable history of closing vulnerabilities and improving posture
- ✓ Azure identity & access security (Entra ID, Conditional Access, PIM)
- ✓ PowerShell/MS Graph for automation or scripted remediation
- **Nice to Have**
- Sentinel exposure (analytic rules, workbooks, automation)
- Understanding of Zero Trust principles and Microsoft Compliance Manager
- Experience working in regulated or audited environments
- **Certifications Required**
- AZ-500 – Azure Security Engineer Associate
- SC-100 (or commitment to completion within 12 months)
- Plus one of → MS-500 or SC-400 or SC-900
Benefits
- **3 month initial contract outside IR35**
Job title
Job type
Experience level
Salary
Not specified
Degree requirement
Tech skills
Location requirements
Security Content Engineer at Securonix building analytics content and threat detection models for their SIEM platform. Collaborating with the Detection Engineering team to combat advanced cyber threats.
IT Infrastructure and Security Administrator for a dynamic construction company ensuring IT security and infrastructure optimization. Responsibilities include project planning, team collaboration, and monitoring security incidents.
Red Team Security Consultant conducting complex Red - Team operations, including technical attacks and security checks for various clients. Collaborating with clients to enhance security measures and reporting findings effectively.
Senior IT Consultant SAP - Security implementing tailored SAP security solutions and compliance measures. Collaborating on enhancing security policies and advising on IT projects.
(Senior) Consultant SAP Security managing security for modern SAP infrastructures and cloud platforms. Collaborating with clients for SAP system security strategies and implementations.
Senior Cybersecurity Consultant managing IT - Security projects for medium - sized companies and key accounts. Consulting, technical implementation, and acting as a trusted advisor throughout all project phases.
Tech Lead - Information Security role at Ameriprise India, focusing on OWASP vulnerabilities and code remediation. Collaborating with teams to ensure secure and high - quality applications.
Managing Consultant leading the planning and execution of cybersecurity assessments for federal clients. Responsible for managing a team and ensuring compliance with security policies and regulations.
Consultant in Technology and Cybersecurity at Guidehouse supporting federal clients. Focus on business processes, compliance, and project management within a dynamic and innovative environment.