National AI Awards 2025Discover AI's trailblazers! Join us to celebrate innovation and nominate industry leaders.

Nominate & Attend

M365 Security Design Engineer

Luton
3 weeks ago
Create job alert

A prominent client within the Defence & Security sector is seeking an experienced and proactive Microsoft 365 Security Design Engineer to architect and deliver robust security solutions across the M365 platform. This role demands deep technical proficiency in M365 security features, alongside a comprehensive understanding of contemporary cyber threats, compliance mandates, and enterprise security architectures.

Key Responsibilities:

Lead the design and deployment of security controls across Microsoft 365 E5 services, including Endpoint Security, Exchange Online, SharePoint Online, OneDrive for Business, and Microsoft Teams.
Provide subject matter expertise in the planning and implementation phases of Windows 11 and Exchange Online projects.
Develop, document, and maintain security configuration baselines in alignment with recognised standards such as NIST, CIS, and ISO/IEC 27001.
Configure and manage Microsoft security technologies, including Defender for Office 365, Defender for Cloud, Defender for Endpoint/Servers, Microsoft Purview (Information Protection, DLP), and Microsoft Entra ID (formerly Azure AD).
Integrate Microsoft Sentinel with existing SOC infrastructure and facilitate adoption of Sentinel capabilities within security operations.
Implement and administer Microsoft Privileged Identity Management (PIM) solutions.
Provide security leadership in areas of identity and access management, conditional access policies, and the implementation of Zero Trust principles.
Conduct security risk assessments, identify control gaps, and perform impact analyses on M365 deployments and integrations.
Collaborate with security operations and compliance stakeholders to detect, investigate, and respond to security threats and incidents.
Produce and maintain technical documentation and deliver knowledge transfer and training sessions to operational and support teams.

Required Skills & Qualifications:

Demonstrable experience in designing and securing Microsoft 365 environments at enterprise scale.
Expert knowledge of Microsoft 365 security tools and services, including the Microsoft Defender suite, Microsoft Purview, and Microsoft Entra ID.
Strong expertise in identity and access management concepts, including role-based access, conditional access, and multifactor authentication.
Solid understanding of regulatory and compliance frameworks such as GDPR, HIPAA, and ISO/IEC 27001.
Proficiency with Microsoft security and compliance centres, PowerShell scripting, and relevant automation techniques.
Industry-recognised certifications highly desirable, particularly: SC-100 (Cybersecurity Architect), SC-300 (Identity and Access Administrator), MS-500 (Security Administrator), and AZ-500 (Security Engineer Associate).Disclaimer:

This vacancy is being advertised by either Advanced Resource Managers Limited, Advanced Resource Managers IT Limited or Advanced Resource Managers Engineering Limited ("ARM"). ARM is a specialist talent acquisition and management consultancy. We provide technical contingency recruitment and a portfolio of more complex resource solutions. Our specialist recruitment divisions cover the entire technical arena, including some of the most economically and strategically important industries in the UK and the world today. We will never send your CV without your permission. Where the role is marked as Outside IR35 in the advertisement this is subject to receipt of a final Status Determination Statement from the end Client and may be subject to change

Related Jobs

View all jobs

Cyber Security Operations Lead

Cyber Security Operations Lead

Lead Cyber Security Engineer

Senior Cyber Security Engineer

Security and Information Security Architect

Security and Information Security Architect (London Area)

National AI Awards 2025

Subscribe to Future Tech Insights for the latest jobs & insights, direct to your inbox.

By subscribing, you agree to our privacy policy and terms of service.

Industry Insights

Discover insightful articles, industry insights, expert tips, and curated resources.

LinkedIn Profile Checklist for Cybersecurity Jobs: 10 Tweaks to Supercharge Recruiter Engagement

In the ever-evolving realm of cybersecurity, having a LinkedIn profile that reflects both your technical prowess and threat-hunting acumen is vital. Organisations are on the lookout for professionals skilled in penetration testing, incident response, security architecture and compliance. With hiring managers scanning dozens of profiles daily, your profile needs to not just rank in searches but convey your expertise in safeguarding digital assets. This step-by-step LinkedIn for cybersecurity jobs checklist offers ten practical tweaks to supercharge recruiter engagement. Whether you’re an aspiring security analyst, a seasoned penetration tester or a chief information security officer aiming for board-level roles, these actionable optimisations will sharpen your LinkedIn presence and position you as a top infosec candidate.

Part-Time Study Routes That Lead to Cyber Security Jobs: Evening Courses, Bootcamps & Online Masters

The frequency and sophistication of cyber-attacks have exploded in recent years, making cyber security one of the UK’s most in-demand skill sets. From safeguarding NHS patient data to defending FTSE 100 financial systems, organisations across sectors require qualified professionals—penetration testers, security analysts, incident responders and security architects—to protect critical infrastructure. Yet many professionals cannot pause their careers to upskill full time. Fortunately, an ecosystem of part-time learning pathways—evening courses, intensive bootcamps and flexible online master’s programmes—enables you to learn cyber security while working. This comprehensive guide explores every route: foundational CPD, immersive bootcamps, accredited online MScs, plus funding options, planning strategies and a real-world case study. Whether you’re an IT support technician, a software developer or a compliance manager aiming to pivot into security, you’ll discover how to build expertise at your own pace.

The Ultimate Assessment-Centre Survival Guide for Cyber Security Jobs in the UK

Assessment centres for cyber security positions in the UK are designed to mirror real-world threat landscapes and test both your technical acumen and soft skills under pressure. Across multiple stages—psychometric assessments, penetration testing exercises, incident response group tasks, case studies, interviews and even informal networking breaks—employers assess your ability to identify vulnerabilities, collaborate in high-stakes scenarios and communicate effectively. This guide walks you through each component, equipping you to stand out and secure your next role in cyber defence.