HiringCafe
Posted 1w ago

M365 Security Consultant

@ Avanade
View All Jobs
London, England, United Kingdom
OnsiteFull Time
Responsibilities:designing security, threat hunting, implementing siem
Requirements Summary:Experience with Microsoft 365 security stack; Defender for Endpoint/Cloud, Microsoft Sentinel; SIEM/SOC operations; Azure Logic Apps; threat hunting; incident response; strong collaboration and client-facing skills.
Technical Tools Mentioned:Microsoft Defender for Endpoint, Microsoft Defender for Cloud, Microsoft Sentinel, Azure Logic Apps, KQL
Save
Mark Applied
Hide Job
Report & Hide
Job Description

As an M365 Consultant/Senior Consultant, you will help transform clients’ cybersecurity posture by designing and implementing advanced Microsoft Threat Protection technologies. You will work directly with clients in a consulting capacity, supporting medium to large enterprise environments and contributing to robust Cyber Defence strategies across endpoints, identities, cloud, and collaboration platforms.

Key Responsibilities

  • Design and implement AV/EDR solutions (e.g., Microsoft Defender for Endpoint) to detect and respond to cyber threats across major operating systems.

  • Protect email, messaging, and collaboration platforms from phishing, spear phishing, BEC, and identity-related attacks.

  • Develop and maintain cyber defence use cases, correlation rules, and attack chain detections across disparate systems.

  • Design, implement, and integrate SIEM solutions—particularly Microsoft Sentinel—into Security Operations.

  • Perform threat hunting across endpoints, identities, networking, cloud, and collaboration platforms in the Microsoft ecosystem.

  • Handle L2-level incidents leveraging Microsoft Sentinel and Microsoft Defender tools.

  • Support incident response, triage, threat modelling, and vulnerability remediation within Azure-hosted environments.

  • Create, run, and troubleshoot Azure Logic Apps, playbooks, and Sentinel automation components.

  • Collaborate with business and security stakeholders to define and enhance security standards and improve security posture.

.

  • Technical Expertise: Proven experience with Microsoft Sentinel (architecture, deployment, analytics rules, workbooks, playbooks); Microsoft Defender for Endpoint and Defender for Cloud; SIEM/SOC operations; Azure Logic Apps; vulnerability remediation; incident response.

  • Threat Hunting & Detection: Hands-on experience using KQL, Microsoft Defender XDR, and threat intelligence sources to hunt threats and support investigations.

  • Cyber Defence & Infrastructure Security: Strong understanding of cyber defence concepts, infrastructure security, and troubleshooting across the Microsoft ecosystem.

  • Methodology: Familiarity with agile methodologies and backlog management.

  • Collaboration & Communication: Strong communication skills, ability to work with cross-functional teams, and experience in client-facing environments.

  • Technologies: Knowledge of Microsoft 365, Azure, Windows, Linux, and mobile operating systems.

  • SC100 or equivalent desirable

Characteristics for Success

  • Consultative and collaborative mindset; strong relationship builder.

  • Resilient, adaptable, intellectually curious.

  • Passionate about Microsoft security technologies (M365 Threat Protection, Defender suite, O365, Identity).

  • Problem-solver, quality-driven, self-motivated, and innovative.

.