Microsoft 365 Security and Compliance Expert

I

IPEM SOLUTIONS INC

Microsoft 365 Security and Compliance Expert

Sacramento, CA
Part Time
Paid
  • Responsibilities

    Job Summary:

    We are seeking a highly skilled Microsoft 365 Security and Compliance Expert to join our IT Security team. This role focuses on implementing, managing, and enhancing security and compliance features within the Microsoft 365 environment. The ideal candidate will have deep expertise in Microsoft 365 Defender, Purview Compliance solutions, Azure AD (now Entra ID), and modern security frameworks.

    Key Responsibilities:

    Design, implement, and manage M365 security and compliance solutions including:

    Microsoft Purview Information Protection (sensitivity labels, DLP, etc.)

    Microsoft Defender for Office 365

    Microsoft Defender for Endpoint

    Microsoft Defender for Identity

    Microsoft Defender for Cloud Apps (MCAS)

    Implement and manage security baselines and secure configurations across M365 services.

    Define and enforce data loss prevention (DLP) policies, retention policies, and compliance labels.

    Monitor and respond to security alerts using Microsoft 365 Defender portal and Security & Compliance Center.

    Configure and manage conditional access policies, MFA, role-based access control (RBAC), and identity protection in Azure AD/Entra ID.

    Ensure compliance with regulatory frameworks (e.g., GDPR, HIPAA, ISO 27001) using Microsoft compliance tools.

    Collaborate with the SOC, legal, and risk teams to manage insider risk and eDiscovery workflows.

    Provide recommendations for continuous improvement in M365 security posture and compliance readiness.

    Lead or support incident response and forensic investigations related to M365.

    Required Skills and Qualifications:

    Overall 15+ years of experience in Microsoft stack

    Proven experience (5+ years) in M365 administration, with 3+ years focused on security and compliance.

    Strong expertise in Microsoft 365 Defender and Purview Compliance Portal.

    In-depth knowledge of Azure Active Directory / Entra ID, Conditional Access, and Identity Governance.

    Must be familiar with SAML and SCIM provisioning protocols

    Experience implementing DLP, data classification, retention labels, and eDiscovery.

    Familiarity with cloud security frameworks (e.g., CIS, NIST, Zero Trust, FedRAMP).

    Hands-on experience with Microsoft Secure Score and Compliance Score.

    Understanding of Microsoft Sentinel integration and threat intelligence.

    Strong analytical and problem-solving skills.

    Must be Microsoft Certified in the following:

    Microsoft 365 Certified: Enterprise Administrator Expert (MS-100, MS-101)

    Security Operations Analyst Associate (SC-200)

    Information Protection Administrator Associate (SC-400)

    Identity and Access Administrator Associate (SC-300)

    CISSP, CISM, or equivalent security certifications are a plus.

    Experience with Microsoft Sentinel or other SIEMs.

    Experience automating tasks using PowerShell or Microsoft Graph API.