Paramount Computer System
Role Overview: Technical Lead – Managed Security Operations
The Managed Security Operations (MSO) Lead will be responsible for managing advanced security operations for Microsoft Cloud environments. This role requires deep expertise in Microsoft security technologies, including Microsoft Defender suite, Entra, Intune, and Purview, to ensure proactive threat detection, compliance, Identity and endpoint protection across enterprise environments.
Key Responsibilities:
  • Security Operations Leadership
    • Lead day-to-day security operations for Microsoft 365 and Azure Security environments.
    • Oversee incident detection, triage, investigation, and response using Microsoft Defender XDR capabilities.
  • Lead day-to-day security operations for Microsoft 365 and Azure Security environments.
  • Oversee incident detection, triage, investigation, and response using Microsoft Defender XDR capabilities.
  • Microsoft Security Technology Management
    • Configure and optimize Microsoft Defender for Endpoint, Defender for Office 365, Defender for Identity, and Defender for Cloud Apps.
    • Manage Microsoft Intune for endpoint compliance, device security baselines, and application protection policies.
    • Manage Microsoft Purview for data security, compliance, and insider risk management.
    • Manage Microsoft Entra for Identity Governance, access management, strong authentication etc
  • Configure and optimize Microsoft Defender for Endpoint, Defender for Office 365, Defender for Identity, and Defender for Cloud Apps.
  • Manage Microsoft Intune for endpoint compliance, device security baselines, and application protection policies.
  • Manage Microsoft Purview for data security, compliance, and insider risk management.
  • Manage Microsoft Entra for Identity Governance, access management, strong authentication etc
  • Threat Intelligence & Response (Optional expertise)
    • Monitor and analyse security alerts from Microsoft Sentinel and Defender portals.
    • Conduct threat hunting and vulnerability assessments.
    • Coordinate remediation activities with IT and cloud teams.
  • Monitor and analyse security alerts from Microsoft Sentinel and Defender portals.
  • Conduct threat hunting and vulnerability assessments.
  • Coordinate remediation activities with IT and cloud teams.
  • Compliance & Governance
    • Ensure adherence to regulatory requirements (GDPR, ISO 27001, NIST).
    • Implement data loss prevention (DLP) and information protection policies using Purview.
    • Maintain audit readiness and reporting for security posture.
  • Ensure adherence to regulatory requirements (GDPR, ISO 27001, NIST).
  • Implement data loss prevention (DLP) and information protection policies using Purview.
  • Maintain audit readiness and reporting for security posture.
  • Stakeholder Engagement
    • Collaborate with architecture, cloud, and compliance teams to align security strategy.
    • Provide executive-level reporting on security incidents and risk posture.
  • Collaborate with architecture, cloud, and compliance teams to align security strategy.
  • Provide executive-level reporting on security incidents and risk posture.
  • Security Operations Leadership
    • Lead day-to-day security operations for Microsoft 365 and Azure Security environments.
    • Oversee incident detection, triage, investigation, and response using Microsoft Defender XDR capabilities.
  • Microsoft Security Technology Management
    • Configure and optimize Microsoft Defender for Endpoint, Defender for Office 365, Defender for Identity, and Defender for Cloud Apps.
    • Manage Microsoft Intune for endpoint compliance, device security baselines, and application protection policies.
    • Manage Microsoft Purview for data security, compliance, and insider risk management.
    • Manage Microsoft Entra for Identity Governance, access management, strong authentication etc
  • Threat Intelligence & Response (Optional expertise)
    • Monitor and analyse security alerts from Microsoft Sentinel and Defender portals.
    • Conduct threat hunting and vulnerability assessments.
    • Coordinate remediation activities with IT and cloud teams.
  • Compliance & Governance
    • Ensure adherence to regulatory requirements (GDPR, ISO 27001, NIST).
    • Implement data loss prevention (DLP) and information protection policies using Purview.
    • Maintain audit readiness and reporting for security posture.
  • Stakeholder Engagement
    • Collaborate with architecture, cloud, and compliance teams to align security strategy.
    • Provide executive-level reporting on security incidents and risk posture.
Required Skills & Qualifications:
  • Technical Expertise
    • Strong hands-on experience with Microsoft Defender suite, Entra, Intune, and Purview.
    • Knowledge of Zero Trust principles and Microsoft Security Baselines.
    • Knowledge in Microsoft Sentinel and security automation (Logic Apps, Playbooks) will be an added advantage
  • Strong hands-on experience with Microsoft Defender suite, Entra, Intune, and Purview.
  • Knowledge of Zero Trust principles and Microsoft Security Baselines.
  • Knowledge in Microsoft Sentinel and security automation (Logic Apps, Playbooks) will be an added advantage
  • Experience
    • 8 to12 years in cybersecurity / IT operations, with at least 3 years in Microsoft Cloud Security.
    • Experience in people management with cloud security / IT Security or SOC operations and leading security analysts.
  • 8 to12 years in cybersecurity / IT operations, with at least 3 years in Microsoft Cloud Security.
  • Experience in people management with cloud security / IT Security or SOC operations and leading security analysts.
  • Certifications (Preferred)
    • Microsoft Certified: Cybersecurity Architect Expert, Security Operations Analyst Associate, Microsoft 365 Certified: Security Administrator Associate.
    • CISSP, CISM, or equivalent will be an added advantage
  • Microsoft Certified: Cybersecurity Architect Expert, Security Operations Analyst Associate, Microsoft 365 Certified: Security Administrator Associate.
  • CISSP, CISM, or equivalent will be an added advantage
  • Soft Skills
    • Strong leadership and team management capabilities.
    • Excellent communication and stakeholder engagement skills.
  • Strong leadership and team management capabilities.
  • Excellent communication and stakeholder engagement skills.
  • Technical Expertise
    • Strong hands-on experience with Microsoft Defender suite, Entra, Intune, and Purview.
    • Knowledge of Zero Trust principles and Microsoft Security Baselines.
    • Knowledge in Microsoft Sentinel and security automation (Logic Apps, Playbooks) will be an added advantage
  • Experience
    • 8 to12 years in cybersecurity / IT operations, with at least 3 years in Microsoft Cloud Security.
    • Experience in people management with cloud security / IT Security or SOC operations and leading security analysts.
  • Certifications (Preferred)
    • Microsoft Certified: Cybersecurity Architect Expert, Security Operations Analyst Associate, Microsoft 365 Certified: Security Administrator Associate.
    • CISSP, CISM, or equivalent will be an added advantage
  • Soft Skills
    • Strong leadership and team management capabilities.
    • Excellent communication and stakeholder engagement skills.
Key Deliverables:
  • Maintain 24/7 security operations and maintain cloud security posture.
  • Achieve compliance with organizational and regulatory standards.
  • Continuous improvement of security posture through automation and advanced threat protection.
 

View all job openings