M365 Security Design Engineer

Luton
5 days ago
Create job alert

A prominent client within the Defence & Security sector is seeking an experienced and proactive Microsoft 365 Security Design Engineer to architect and deliver robust security solutions across the M365 platform. This role demands deep technical proficiency in M365 security features, alongside a comprehensive understanding of contemporary cyber threats, compliance mandates, and enterprise security architectures.

Key Responsibilities:

Lead the design and deployment of security controls across Microsoft 365 E5 services, including Endpoint Security, Exchange Online, SharePoint Online, OneDrive for Business, and Microsoft Teams.
Provide subject matter expertise in the planning and implementation phases of Windows 11 and Exchange Online projects.
Develop, document, and maintain security configuration baselines in alignment with recognised standards such as NIST, CIS, and ISO/IEC 27001.
Configure and manage Microsoft security technologies, including Defender for Office 365, Defender for Cloud, Defender for Endpoint/Servers, Microsoft Purview (Information Protection, DLP), and Microsoft Entra ID (formerly Azure AD).
Integrate Microsoft Sentinel with existing SOC infrastructure and facilitate adoption of Sentinel capabilities within security operations.
Implement and administer Microsoft Privileged Identity Management (PIM) solutions.
Provide security leadership in areas of identity and access management, conditional access policies, and the implementation of Zero Trust principles.
Conduct security risk assessments, identify control gaps, and perform impact analyses on M365 deployments and integrations.
Collaborate with security operations and compliance stakeholders to detect, investigate, and respond to security threats and incidents.
Produce and maintain technical documentation and deliver knowledge transfer and training sessions to operational and support teams.

Required Skills & Qualifications:

Demonstrable experience in designing and securing Microsoft 365 environments at enterprise scale.
Expert knowledge of Microsoft 365 security tools and services, including the Microsoft Defender suite, Microsoft Purview, and Microsoft Entra ID.
Strong expertise in identity and access management concepts, including role-based access, conditional access, and multifactor authentication.
Solid understanding of regulatory and compliance frameworks such as GDPR, HIPAA, and ISO/IEC 27001.
Proficiency with Microsoft security and compliance centres, PowerShell scripting, and relevant automation techniques.
Industry-recognised certifications highly desirable, particularly: SC-100 (Cybersecurity Architect), SC-300 (Identity and Access Administrator), MS-500 (Security Administrator), and AZ-500 (Security Engineer Associate).Disclaimer:

This vacancy is being advertised by either Advanced Resource Managers Limited, Advanced Resource Managers IT Limited or Advanced Resource Managers Engineering Limited ("ARM"). ARM is a specialist talent acquisition and management consultancy. We provide technical contingency recruitment and a portfolio of more complex resource solutions. Our specialist recruitment divisions cover the entire technical arena, including some of the most economically and strategically important industries in the UK and the world today. We will never send your CV without your permission. Where the role is marked as Outside IR35 in the advertisement this is subject to receipt of a final Status Determination Statement from the end Client and may be subject to change

Related Jobs

View all jobs

Cloud Security Engineer

Information Security Engineer

Lead Cyber Security Engineer

Security Architect - M365 / Modern Workplace

Senior Information Security Analyst

Microsoft 365 Security Consultant

Get the latest insights and jobs direct. Sign up for our newsletter.

By subscribing you agree to our privacy policy and terms of service.

Industry Insights

Discover insightful articles, industry insights, expert tips, and curated resources.

Education Careers

Top 10 Best UK Universities for Cyber Security Degrees (2025 Guide)

Discover ten of the strongest UK universities for Cyber Security degrees in 2025. Compare entry requirements, course content, research strength and industry links to choose the right programme for you. Cyber Security has moved from IT back-room concern to critical national infrastructure. With growing threats from ransomware, state-sponsored attacks and supply-chain compromise, demand for well-trained cyber professionals has never been higher. The UK is home to a clutch of universities recognised globally for excellence in this field. Below, we profile ten institutions offering robust undergraduate or postgraduate cyber-security pathways. While league tables shift year on year, these universities have a consistent record of first-class teaching, research and industry collaboration.

Jobs

How to Write a Winning Cover Letter for Cyber Security Jobs: Proven 4-Paragraph Structure

Learn how to craft the perfect cover letter for cyber security jobs with this proven 4-paragraph structure. Ideal for entry-level candidates, career switchers, and professionals looking to advance in the cyber security sector. When applying for a cyber security job, your cover letter is an essential component of your application. The cyber security industry is continuously evolving, and organisations are always seeking professionals who can protect their networks, systems, and data. Your cover letter provides an opportunity to demonstrate your technical expertise, your enthusiasm for cyber security, and your ability to contribute to the protection of sensitive information. Whether you're just entering the field, transitioning from another career, or looking to advance in cyber security, this article will guide you through a proven four-paragraph structure to create a compelling cover letter. We’ll provide sample lines and tips to help you stand out in the competitive cyber security job market.

Jobs

Quantum-Enhanced AI in Cyber Security: Guarding the Digital Frontier

The cyber security landscape has evolved dramatically over the past decade. Long gone are the days when businesses primarily worried about simplistic phishing or basic website defacements. Today’s threats include nation-state attacks, sophisticated ransomware, AI-generated phishing campaigns, and a wide array of stealthy intrusion methods. Organisations must defend vast digital ecosystems that include cloud infrastructure, IoT devices, and critical operational technology—any of which can become high-value targets for malicious actors. Amid these escalating challenges, a new technological wave is emerging: quantum computing. Although still in its infancy, quantum computing promises capabilities that could surpass even the most advanced classical supercomputers for specific tasks. Simultaneously, in the world of Artificial Intelligence (AI)—where data volumes and model complexity are exploding—quantum’s parallelism could significantly boost analysis, training, and decision-making. What unfolds when quantum computing and AI converge in the realm of cyber security? On one hand, quantum technologies could introduce stronger encryption and faster threat detection. On the other, adversaries armed with quantum power might break today’s cryptographic protocols or develop more potent attacks at unimaginable speeds. This article explores the phenomenon of quantum-enhanced AI for cyber security: the possibilities it unlocks, the challenges it poses, and the reasons it could reshape both defensive and offensive operations in the digital world.

🍪 We use cookies to enhance your browsing experience on our website. By continuing to use this site, you consent to the use of cookies as described in our Cookie Policy. You can review our Cookie Policy for more information.