Information Security Engineer (Cloud Security Engineer) - 1 Year Contract

The Cloud Security Engineer is responsible for implementing, optimizing, and operating Numeris' Microsoft security ecosystem, with a primary focus on Microsoft 365 E5 security solutions. This role combines hands-on security engineering, automation, and day-to-day security operations to strengthen our security posture, improve operational efficiency, and reduce organizational risk.

The successful candidate will be a technical security practitioner who enjoys building, tuning, and maximizing security technologies while actively participating in incident response, threat detection, vulnerability management, and operational security activities. This role works closely with IT infrastructure, vendors, and business stakeholders to ensure security controls are effectively deployed, maintained, and continuously improved.

• Design, implement, and maintain Microsoft Entra ID security controls, including Conditional Access policies, identity governance, privileged access management, and authentication security controls.
• Review and validate access requests, identity exclusions, and security exceptions while ensuring alignment with security best practices.

• Configure and maintain Microsoft Intune security baselines, compliance policies, endpoint protection controls, and automated deployment workflows.
• Partner with IT teams to strengthen endpoint security and device management capabilities across the organization.

• Implement, administer, and optimize Microsoft Defender security solutions, including Defender for Endpoint, Defender for Identity, Defender for Office 365, and Defender for Cloud Apps.
• Continuously improve detection, prevention, and response capabilities across the Microsoft security ecosystem.

• Configure, manage, and tune Microsoft Purview Data Loss Prevention (DLP), information protection, and compliance controls.
• Support ongoing data governance and security compliance initiatives.

• Design and maintain Microsoft Sentinel detections, KQL queries, analytics rules, dashboards, and workbooks.
• Build and enhance automated response playbooks and SOAR workflows to reduce manual effort and improve response times.

• Participate in security operations activities including alert triage, investigation, containment, remediation, and post-incident analysis.
• Support incident response efforts and collaborate with infrastructure and business teams to resolve security events.

• Administer vulnerability scanning and security assessment tools.
• Coordinate remediation efforts with technical teams and validate corrective actions.
• Support continuous asset discovery and security posture improvement initiatives.

• Participate in a rotating on-call schedule to support security incidents and operational escalations.
• Continuously identify opportunities to automate processes, improve tooling effectiveness, and reduce operational overhead.

• Lead the implementation, integration, and optimization of security technologies to maximize platform capabilities and business value.
• Partner directly with vendors to evaluate new features, improve configurations, and support strategic security initiatives.

• Review vendor architectures and technical solutions to identify security risks and recommend appropriate controls.
• Support security reviews and assessments of third-party technologies and services.

• Administer the KnowBe4 platform, including phishing simulations, awareness campaigns, and user training initiatives.
• Contribute to fostering a strong security culture across the organization.

• Monitor cloud environments for security misconfigurations, compliance gaps, excessive permissions, and emerging risks, partnering with infrastructure teams to drive remediation.

 

Microsoft Entra ID, Intune, Microsoft Defender Suite, Microsoft Sentinel, Microsoft Purview, Microsoft 365 Security & Compliance capabilities, and cloud security best practices within AWS and Azure environments.

 

• Bachelor's degree in Computer Science, Cybersecurity, Information Technology, or a related field.
• Master's degree considered an asset.

• Minimum 5 years of hands-on experience in security engineering, cloud security, security operations, or a related cybersecurity role.
• Demonstrated experience implementing and administering Microsoft 365 E5 security technologies in an enterprise environment.
• Experience supporting security operations functions, including incident response, threat detection, vulnerability management, and security monitoring.
• Experience supporting security controls and monitoring within AWS environments.
• Familiarity with AWS security services such as IAM, Security Hub, GuardDuty, AWS Config, and related cloud security capabilities.
• Experience implementing or administering Cloud Security Posture Management (CSPM) solutions

• Microsoft Entra ID (Conditional Access, Identity Governance, Authentication Security)
• Microsoft Intune
• Microsoft Defender Suite
• Microsoft Sentinel
• Microsoft Purview
• Microsoft 365 Security & Compliance capabilities
• KQL (Kusto Query Language)
• PowerShell and/or Python automation
• Security monitoring, incident response, and vulnerability management practices

• Microsoft Certified: Security Operations Analyst Associate (SC-200)
• Microsoft Certified: Identity and Access Administrator Associate (SC-300)
• Microsoft Certified: Cybersecurity Architect Expert (SC-100)
• CISSP (Certified Information Systems Security Professional)
• Microsoft SC-200, SC-300, or SC-100
• CISSP
• AWS Certified Security – Specialty (asset)

The successful candidate is a hands-on security engineer who enjoys both building and operating security solutions. They are comfortable diving into technical details, automating repetitive tasks, improving security processes, and collaborating with stakeholders to strengthen the organization's overall security posture.