4 days ago Be among the first 25 applicants
This range is provided by DTS. Your actual pay will be based on your skills and experience — talk with your recruiter to learn more.
Base pay range
$70,000.00/yr - $120,000.00/yr
About DTS:
David T. Scott & Associates, LLC (DTS) is a Service-Disabled Veteran Owned Small Business (SDVOSB) that supports both public- and private-sector clients. We excel in tackling challenges in cybersecurity, program governance, strategic planning, business process efficiency, and learning enhancement. Our team is composed of seasoned professionals with military, civilian, and private-sector backgrounds. At DTS, we grow together—sharing knowledge, solving tough challenges, and providing certified cybersecurity services to federal and commercial organizations.
Position Summary:
As a Microsoft Security Engineer at DTS, you will design, implement, and maintain security solutions across Microsoft environments—including Azure, Microsoft 365, and hybrid infrastructure. You’ll secure our enterprise network, patch and update critical systems, and provide Tier 3 support for performance and outage issues. This role demands a mix of technical expertise, security knowledge, and analytical thinking to drive continuous improvement in a mission-critical setting.
Core Responsibilities:
* Security Design & Architecture: Design and implement security controls for Microsoft cloud and on-prem environments following Zero Trust and NIST frameworks.
* Cloud Operations & Identity Management: Manage corporate identity provisioning using Microsoft Entra, Active Directory, and Microsoft Identity Manager.
* Data Protection & Governance: Implement and manage Microsoft Purview solutions for data classification, retention, and compliance. Develop and maintain Data Loss Prevention (DLP) policies to protect sensitive information across Microsoft 365.
* Access Controls: Support Azure RBAC, PIM, MFA, and Conditional Access Policies to secure cloud infrastructure.
* Migration and Tenant Setup: Configure secure Azure tenants and perform tenant migrations using AvePoint, ensuring data integrity and minimal downtime.
* Threat Protection & SIEM: Deploy Microsoft Sentinel, Defender for Endpoint, and Defender for Cloud for proactive threat monitoring and incident response.
* Vulnerability Management: Monitor and remediate system vulnerabilities, applying patches and updates as necessary.
* Compliance & Audit: Conduct security assessments, support compliance with NIST SP 800-171, RMF, CMMC, and brief findings to non-technical stakeholders.
* Performance Monitoring & Troubleshooting: Identify root causes of outages and performance issues in Microsoft environments and implement corrective actions.
* Collaboration & Innovation: Work with IT and business partners to develop new solutions, drive innovation, and align IT capabilities with organizational goals.
* After-Hours Support: Occasionally respond to major incidents or planned changes outside regular business hours.
Required Skills & Technologies:
* Deep experience in the Microsoft security stack: Entra ID, Intune, Microsoft 365 Defender, Azure Security Center, Microsoft Sentinel, Microsoft Purview
* Microsoft 365 administration: Exchange Online, SharePoint Online, Teams, OneDrive
* Azure administration: RBAC, PIM, policies, and automation
* AvePoint: Expertise in tenant migration and cross-platform data transfer
* Security Compliance: Familiarity with CMMC, DoD RMF, NIST SP 800-171, and IA policies
* ITIL Change Management and incident response workflows
* Experience securing information systems/networks to NIST, CIS, ISO 27001, and other control sets
* Windows and *Nix systems administration
* Firewall administration (e.g., FortiGate, Palo Alto, SonicWall, Cisco Meraki)
* Scripting experience (e.g., PowerShell, Python preferred)
Education, Experience & Certifications:
* Bachelor’s Degree in Information Technology, Cybersecurity, or related field
* Minimum 3 years of directly related experience
* Required Certifications (or ability to obtain within 6 months):
1. AZ-500: Microsoft Azure Security Engineer
2. SC-300: Microsoft Identity and Access Administrator
3. SC-200: Microsoft Security Operations Analyst
Preferred Certifications:
* Certified Information Systems Auditor (CISA)
* CMMC Registered Practitioner
* CompTIA Security+
Seniority level
Mid-Senior level
Employment type
Full-time
Job function
Information Technology
Industries
Business Consulting and Services, IT Services and IT Consulting, and IT System Training and Support
#J-18808-Ljbffr