Cloud & Hybrid Security Engineer (Microsoft Focus)

We are seeking a skilled Cloud & Hybrid Security Engineer with a strong emphasis on Microsoft cloud security solutions (Defender Family), including Azure, Microsoft 365, Intune, and Microsoft Entra. This role will be responsible for the design, implementation, and ongoing management of security solutions across our cloud and hybrid environments, focusing on the Microsoft ecosystem. You will ensure the protection of our digital assets while maintaining compliance with industry standards.

Key Responsibilities:

• Design and implement security architectures for Microsoft Azure, hybrid environments, and Microsoft 365 (Defender Family).
• Configure and manage security solutions across Microsoft products, including Azure Security Center, Microsoft Defender for Cloud, and Microsoft 365 Security & Compliance Center.
• Manage Identity and Access Management (IAM) through Azure Active Directory (AAD), Microsoft Entra, Conditional Access, Multi-Factor Authentication (MFA), and Privileged Identity Management (PIM).
• Implement and monitor security controls for Microsoft Intune, ensuring compliance with mobile device management (MDM) and mobile application management (MAM) policies.
• Deploy and manage endpoint security measures using Microsoft Defender for Endpoint and Microsoft Intune for device management and protection.
• Establish and enforce Data Loss Prevention (DLP) policies, encryption, information protection, and email security across Microsoft 365 services (Exchange Online, SharePoint Online, OneDrive, Teams).
• Configure and maintain Microsoft Entra for securing user identities and managing access to resources across cloud and hybrid infrastructures.
• Configuring and implementing Microsoft Sentinel and other security monitoring tools.
• Ensure compliance with relevant security standards and regulations, including ISO 27001, NIST, and GDPR, particularly within the Azure and Microsoft 365 ecosystems.
• Collaborate with IT teams to secure on-premice configurations in Windows Servers and roles Active Directory, SCCM.
• Provide ongoing recommendations for security enhancements across cloud and hybrid platforms using Microsoft’s security tools.
• Stay updated on the latest developments in Microsoft security products and industry trends to enhance the organization’s security posture.

• Bachelor’s degree in Cybersecurity, Information Technology, or a related field.
• 1-3 years of experience in cloud security, with a specific focus on Microsoft Azure, Microsoft 365, Intune, and Microsoft Entra (Defender Family).
• Expertise in Azure Security Center, Microsoft Defender for Cloud, Microsoft 365 Security & Compliance Center, and Microsoft Entra.
• Strong knowledge of Intune for device management and Microsoft Defender for Endpoint for endpoint security.
• Hands-on experience with Identity and Access Management (IAM), particularly in Azure AD, Conditional Access, and MFA.
• Proficiency in securing Microsoft 365 services through DLP, encryption, and information protection policies.
• Experience performing security audits, ensuring compliance with standards like ISO 27001, NIST, and CIS.
• Any relevant certifications in Microsoft Certified
• Excellent problem-solving and analytical skills.
• Strong communication skills with the ability to collaborate effectively across teams.

• Work schedule 5/2; 09:00 - 18:00 Offline in Almaty office
• Official employment in accordance with the Labor Code of the Republic of Kazakhstan;
• Corporate fitness