Security Architect

The primary responsibility of this role is to develop, configure, and implement a comprehensive security plan for our current Microsoft 365 E3 systems based on Microsoft's best practices and recommendations. This position requires a deep understanding of Microsoft security frameworks, Azure security features, and the ability to apply these solutions to enhance our organization's overall security posture.

Key Responsibilities:

• Develop and configure security plans for Microsoft 365 E3 systems, ensuring alignment with Microsoft's security recommendations.
• Collaborate with internal stakeholders to understand security needs and implement tailored security configurations for Microsoft 365 and Azure environments.
• Leverage Microsoft's security best practices, tools, and guidelines to enhance data protection, compliance, and overall security.
• Review and configure Microsoft 365 E3 security settings, including conditional access, identity protection, data loss prevention (DLP), and multi-factor authentication (MFA).
• Implement and manage Azure security features, such as Azure AD, Azure Security Center, Azure Sentinel, and Identity Governance.
• Ensure ongoing monitoring and risk assessments to maintain security compliance in the Microsoft 365 and Azure environments.
• Provide guidance and expertise in securing cloud workloads, identity management, access control, and data protection.
• Stay current with the latest Microsoft 365 and Azure security developments, best practices, and emerging threats.
• Work closely with IT and security teams to implement proactive measures to prevent, detect, and respond to security incidents.
• Develop documentation, security policies, and training materials for the team on best practices for maintaining Microsoft 365 and Azure security.
• Support compliance and auditing requirements, ensuring that all configurations meet industry standards and regulatory requirements.

Desired Skills:

• Proven experience in security architecture, with a focus on Microsoft 365 and Azure security solutions.
• In-depth knowledge of Microsoft 365 E3 features, security configurations, and best practices.
• Strong experience with Azure Security Center, Azure AD, Azure Sentinel, and related security services.
• Familiarity with Microsoft security frameworks, tools, and technologies (eg, Microsoft Defender for Endpoint, Microsoft Information Protection).
• Experience configuring security settings, policies, and governance controls in cloud environments, particularly within Microsoft ecosystems.
• Strong understanding of cloud security principles, access management, identity protection, and data privacy.
• Relevant security certifications (eg, Microsoft Certified: Azure Security Engineer, Microsoft Certified: Security, Compliance, and Identity Fundamentals, or equivalent certifications) are highly desirable.

This role is Outside IR35 and requires 2-3 days per week on-site in South London.