Senior Microsoft Security Engineer
Job Fit Check
Base Career helps you apply smarter for this job.
Key skills for this role
About the Role
Imbono is seeking a Senior Microsoft Security Engineer to own the Microsoft 365 E5 security environment, including identity, endpoint management, Defender suite, Sentinel, and Purview.
Key Skills for This Role
Responsibilities
- Configure the new Imbono Microsoft 365 E5 tenant from inception, including tenant settings, domain verification, authentication methods, Microsoft Secure Score baseline, and Microsoft licensing configuration.
- Design and implement the Imbono Entra ID environment: directory structure, Conditional Access policies (Zero Trust), Multi Factor Authentication (MFA/SSPR), Entra ID Privileged Identity Management (PIM), break glass account procedures, Identity Protection risk policies, and Entra ID Governance (access reviews).
- Configure the Cross Tenant Access Policy (XTAP) bilaterally between the Imbono and Gemcorp tenants.
- Deploy and operate Intune across the Imbono device estate, including Windows Autopilot, device compliance policies, configuration profiles, application deployment, App Protection Policies, and endpoint security baselines.
- Configure and operate the full Defender suite: Defender for Endpoint, Defender for Office 365, Defender for Identity, Defender for Cloud Apps, and Defender XDR portal.
- Deploy and operate Microsoft Sentinel as Imbono's central SIEM/SOAR, including onboarding log sources, building detection rules in KQL, configuring analytics rules, watchlists, and automated response playbooks.
- Configure Purview sensitivity labels, DLP policies, retention policies, and information governance aligned with Imbono's data classification policy and ISO 27001 Annex A.8 controls.
- Lead the technical execution of all migration workstreams (Waves 0–4), including identity migration, Exchange Online mailbox migration, SharePoint and OneDrive content migration, Teams channel migration, device re enrolment, and SSO integration reconfiguration.
- Operate as the primary technical responder for security incidents detected via Sentinel and the Defender suite, conducting triage, containment, evidence collection, forensic analysis, and post incident review.
- Manage day to day platform health, licence lifecycle, service health monitoring, and configuration change management for all M365 workloads.
Requirements
- 7–10 years of experience in Microsoft 365 security engineering (tenant hardening, admin, operations).
- Proven hands on experience in Microsoft Sentinel: KQL, analytics rules, Logic Apps playbooks, Log Analytics.
- Proven hands on experience in Microsoft Defender XDR: Endpoint, Office 365, Identity, Cloud Apps.
- Proven hands on experience in Intune & Entra ID: device compliance, Autopilot, Conditional Access, PIM, Identity Protection.
- Proven hands on experience in SOC operations: incident triage/response, playbooks; PowerShell & Graph API automation; Microsoft 365 tenant migrations.
- Bachelor's degree in Computer Science, Information Security, or a related discipline (or equivalent demonstrable experience).
- SC 200: Microsoft Security Operations Analyst
- SC 300: Microsoft Identity and Access Administrator
- AZ 500: Microsoft Azure Security Technologies
- SC 100: Microsoft Cybersecurity Architect
- MS 102: Microsoft 365 Administrator
- CISSP or equivalent
Full Job Posting
Role Summary
- The Senior Microsoft Security Engineer will be the primary technical owner of Imbono's Microsoft 365 E5 security environment.
- This role is responsible for designing, deploying, configuring, and operationally managing identity (Entra ID), endpoint management (Intune), the full Microsoft Defender XDR suite, Microsoft Sentinel (SIEM/SOAR), and Microsoft Purview (data protection).
- The engineer leads the technical execution of each migration wave, co ordinates with the incumbent MSP on source tenant actions, and operates as the primary security incident responder from within the Imbono SOC.
Responsibilities
- Configure the new Imbono Microsoft 365 E5 tenant from inception, including tenant settings, domain verification, authentication methods, Microsoft Secure Score baseline, and Microsoft licensing configuration.
- Design and implement the Imbono Entra ID environment: directory structure, Conditional Access policies (Zero Trust), Multi Factor Authentication (MFA/SSPR), Entra ID Privileged Identity Management (PIM), break glass account procedures, Identity Protection risk policies, and Entra ID Governance (acce
- Configure the Cross Tenant Access Policy (XTAP) bilaterally between the Imbono and Gemcorp tenants.
- Deploy and operate Intune across the Imbono device estate, including Windows Autopilot, device compliance policies, configuration profiles, application deployment, App Protection Policies, and endpoint security baselines.
- Configure and operate the full Defender suite: Defender for Endpoint, Defender for Office 365, Defender for Identity, Defender for Cloud Apps, and Defender XDR portal.
- Deploy and operate Microsoft Sentinel as Imbono's central SIEM/SOAR, including onboarding log sources, building detection rules in KQL, configuring analytics rules, watchlists, and automated response playbooks.
- Configure Purview sensitivity labels, DLP policies, retention policies, and information governance aligned with Imbono's data classification policy and ISO 27001 Annex A.8 controls.
- Lead the technical execution of all migration workstreams (Waves 0–4), including identity migration, Exchange Online mailbox migration, SharePoint and OneDrive content migration, Teams channel migration, device re enrolment, and SSO integration reconfiguration.
- Operate as the primary technical responder for security incidents detected via Sentinel and the Defender suite, conducting triage, containment, evidence collection, forensic analysis, and post incident review.
- Manage day to day platform health, licence lifecycle, service health monitoring, and configuration change management for all M365 workloads.
Experience
- 7–10 years of experience in Microsoft 365 security engineering (tenant hardening, admin, operations).
- Proven hands on experience in Microsoft Sentinel: KQL, analytics rules, Logic Apps playbooks, Log Analytics.
- Proven hands on experience in Microsoft Defender XDR: Endpoint, Office 365, Identity, Cloud Apps.
- Proven hands on experience in Intune & Entra ID: device compliance, Autopilot, Conditional Access, PIM, Identity Protection.
- Proven hands on experience in SOC operations: incident triage/response, playbooks; PowerShell & Graph API automation; Microsoft 365 tenant migrations.
Qualification
- Bachelor's degree in Computer Science, Information Security, or a related discipline (or equivalent demonstrable experience).
- SC 200: Microsoft Security Operations Analyst
- SC 300: Microsoft Identity and Access Administrator
- AZ 500: Microsoft Azure Security Technologies
- SC 100: Microsoft Cybersecurity Architect
- MS 102: Microsoft 365 Administrator
- CISSP (Certified Information Systems Security Professional) or equivalent
Skills
- Deep technical expertise across the Microsoft E5 security stack: Entra ID, Defender suite (MDE/MDO/MDI/MDCA/XDR), Microsoft Sentinel, Microsoft Intune, and Microsoft Purview.
- KQL (Kusto Query Language); proficient for detection rule development, threat hunting, and incident investigation in Sentinel and Defender Advanced Hunting.
- PowerShell; scripting and automation of M365 administration tasks, Intune configuration, migration workstreams, and security baseline enforcement.
- Microsoft Graph API; tenant configuration automation, user lifecycle management, and reporting.
- Zero Trust architecture; practical understanding of and ability to implement Zero Trust principles in M365 (Verify Explicitly, Least Privilege, Assume Breach).
- Email security architecture; SPF, DKIM, DMARC, MX routing, mail connectors, transport rules, and coexistence mail flow during migration.
- MITRE ATT&CK framework; familiarity for detection rule mapping and adversary emulation in Sentinel.
- Endpoint security; CIS benchmarks, Microsoft security baselines, attack surface reduction, BitLocker, and Windows Defender Firewall policy.
- Regulatory awareness; ISO/IEC 27001:2022 Annex A controls as they apply to cloud platforms; basic awareness of UAE PDPL and data sovereignty requirements for cloud services.
About Imbono
- We are Imbono. A leading operator and provider of infrastructure and essential goods and services across emerging markets.
- We combine global capital and operational expertise in a single, integrated model.
- Our mission is delivering integrated, high impact solutions that expand access to essential services combining operational execution, local presence, strategic partnerships, and sustainable capital.
Apply for this job in 1 click
Skip the repetitive application forms
Install the Base Career Chrome Extension and autofill job applications across major job boards with your profile.
Trusted by over 500,000 job seekers on Base Career
More from this employer
More jobs at Imbono
Senior Governance, Risk and Compliance Analyst
Dubai, UAE
Imbono is hiring a Senior GRC Analyst to manage the ISMS, risk register, policy governance, and compliance for ISO 27001 and NIST CSF. The role requires 5-7 years of GRC experience, ISO 27001 Lead Implementer and Lead Au
Junior Oil Trader
Dubai, UAE
Imbono seeks a Junior Oil Trader to support senior traders in executing physical and paper transactions in crude oil and refined products. This entry-level front-office role involves market analysis, deal execution, and
Logistics Analyst
Dubai, UAE
Imbono seeks a Logistics Analyst to analyze logistics operations, optimize supply chain processes, and ensure timely delivery of goods. The role involves data analysis, shipment tracking, and coordination with suppliers
Business Development Specialist
Dubai, UAE
Imbono seeks a Business Development Specialist for its Commodities, Oil and Gas team to identify and secure new business opportunities in crude oil, products, and gas sectors. The role involves strategic planning, relati
Business Development Manager
Dubai, UAE
About Us We are Imbono. A leading operator and provider of infrastructure and essential goods and services across emerging markets. There is no other emerging markets player like us. We combine global capital and operati
Market Analyst
Dubai, UAE
We are Imbono. A leading operator and provider of infrastructure and essential goods and services across emerging markets. There is no other emerging markets player like us. We combine global capital and operational expe
Letter of Credit Senior Specialist
Dubai, UAE
We are Imbono. A leading operator and provider of infrastructure and essential goods and services across emerging markets. There is no other emerging markets player like us. We combine global capital and operational expe
Senior Supply Chain and Logistics Manager
Dubai, UAE
We are Imbono. A leading operator and provider of infrastructure and essential goods and services across emerging markets. There is no other emerging markets player like us. We combine global capital and operational expe
Senior Governance, Risk and Compliance Analyst
Dubai, UAE
Junior Oil Trader
Dubai, UAE
Logistics Analyst
Dubai, UAE
Business Development Specialist
Dubai, UAE
Business Development Manager
Dubai, UAE
Market Analyst
Dubai, UAE
Letter of Credit Senior Specialist
Dubai, UAE
Senior Supply Chain and Logistics Manager
Dubai, UAE